EC-Council
312-50V9 · Question #346
312-50V9 Question #346: Real Exam Question with Answer & Explanation
The correct answer is B: Vulnerability scanner. A vulnerability scanner actively probes network systems for known weaknesses and misconfigurations, making it the standard tool for comprehensive security audits across diverse network environments.
Question
Which of the following tools would MOST LIKELY be used to perform security audit on various of forms of network systems?
Options
- AIntrusion Detection System
- BVulnerability scanner
- CPort scanner
- DProtocol analyzer
Explanation
A vulnerability scanner actively probes network systems for known weaknesses and misconfigurations, making it the standard tool for comprehensive security audits across diverse network environments.
Common mistakes.
- A. An Intrusion Detection System passively monitors traffic for known attack signatures in real time and does not actively probe systems to enumerate vulnerabilities for an audit.
- C. A port scanner identifies open ports and running services but does not assess whether those services are vulnerable or misconfigured, providing only a fraction of the data required for a full security audit.
- D. A protocol analyzer captures and decodes network traffic for troubleshooting or forensic purposes but does not scan for vulnerabilities or misconfigurations across network systems.
Concept tested. Vulnerability scanner role in network security audits
Reference. https://csrc.nist.gov/publications/detail/sp/800-115/final
Community Discussion
No community discussion yet for this question.