nerdexam
ExamsGCIHQuestions#320
GIAC

GCIH · Question #320

GCIH Question #320: Real Exam Question with Answer & Explanation

The correct answer is B: Nessus. Nessus is a widely used vulnerability scanner that uses a signature database to detect vulnerabilities across UNIX, Windows, web CGI scripts, DDoS zombies, and Trojans.

Reconnaissance, Scanning, and Enumeration

Question

Which of the following tools is described in the statement given below? "It has a database containing signatures to be able to detect hundreds of vulnerabilities in UNIX, Windows, and commonly used web CGI scripts. Moreover, the database detects DdoS zombies and Trojans as well."

Options

  • ASARA
  • BNessus
  • CAnti-x
  • DNmap

Explanation

Nessus is a widely used vulnerability scanner that uses a signature database to detect vulnerabilities across UNIX, Windows, web CGI scripts, DDoS zombies, and Trojans.

Common mistakes.

  • A. SARA (Security Auditor's Research Assistant) is a vulnerability scanner but has a narrower scope and is not known for DDoS zombie or Trojan detection via a signature database.
  • C. Anti-x is not a recognized standard vulnerability scanning tool associated with the described signature-based detection capabilities for UNIX, Windows, CGI, and DDoS zombies.
  • D. Nmap is a network discovery and port scanning tool, not a vulnerability scanner with a signature database for detecting CGI flaws, Trojans, or DDoS zombies.

Concept tested. Nessus vulnerability scanner capabilities and use case

Reference. https://docs.tenable.com/nessus/Content/GetStarted.htm

Topics

#Nessus#vulnerability scanner#signature database#CGI vulnerability detection

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice