312-50V13 · Question #549
312-50V13 Question #549: Real Exam Question with Answer & Explanation
The correct answer is A: snmp-check (snmp_enum Module) to gather a wide array of information about the target. Explanation snmp-check (snmp_enum Module) is the ideal tool here because it is specifically designed for SNMP enumeration, allowing an ethical hacker to passively gather extensive network information - such as system details, interfaces, routing tables, and open ports - using def
Question
An ethical hacker has been tasked with assessing the security of a major corporation's network. She suspects the network uses default SNMP community strings. To exploit this, she plans to extract valuable network information using SNMP enumeration. Which tool could best help her to get the information without directly modifying any parameters within the SNMP agent's management information base (MIB)?
Options
- Asnmp-check (snmp_enum Module) to gather a wide array of information about the target
- BNmap, with a script to retrieve all running SNMP processes and associated ports
- COputits, are mainly designed for device management and not SNMP enumeration
- DSnmpWalk, with a command to change an OID to a different value
Explanation
Explanation
snmp-check (snmp_enum Module) is the ideal tool here because it is specifically designed for SNMP enumeration, allowing an ethical hacker to passively gather extensive network information - such as system details, interfaces, routing tables, and open ports - using default community strings like "public," without writing to or modifying the MIB in any way.
Option B is incorrect because while Nmap has SNMP-related scripts (e.g., snmp-processes), it is a general-purpose scanner and is not the best or most comprehensive tool specifically optimized for deep SNMP enumeration in this context. Option C is incorrect because "Oputits" (likely referring to OpUtils) is a network management suite focused on device administration and IP management, not passive SNMP enumeration for security assessments. Option D is incorrect because SnmpWalk is a legitimate read-only enumeration tool; however, the description of "changing an OID to a different value" describes an SNMP SET operation, which would modify the MIB - directly violating the question's constraint.
Memory Tip: Think "Check before you wreck" - snmp-check is the read-only reconnaissance tool that checks (enumerates) without touching (modifying) anything in the MIB, making it perfect for passive, non-intrusive SNMP assessment.
Topics
Community Discussion
No community discussion yet for this question.