nerdexam
ExamsPT0-002Questions#15
CompTIACompTIA

PT0-002 · Question #15

PT0-002 Question #15: Real Exam Question with Answer & Explanation

The correct answer is C: Create a script in the Lua language and use it with NSE.. The Nmap Scripting Engine (NSE) is one of Nmap's most powerful and flexible features. It allows users to write (and share) simple scripts (using the Lua programming language ) to automate a wide variety of networking tasks. https://nmap.org

Vulnerability discovery and analysis

Question

A penetration tester is looking for a vulnerability that enables attackers to open doors via a specialized TCP service that is used for a physical access control system. The service exists on more than 100 different hosts, so the tester would like to automate the assessment. Identification requires the penetration tester to: Have a full TCP connection Send a "hello" payload Walt for a response Send a string of characters longer than 16 bytes Which of the following approaches would BEST support the objective?

Options

  • ARun nmap -Pn -sV -script vuln <IP address>.
  • BEmploy an OpenVAS simple scan against the TCP port of the host.
  • CCreate a script in the Lua language and use it with NSE.
  • DPerform a credentialed scan with Nessus.

Explanation

The Nmap Scripting Engine (NSE) is one of Nmap's most powerful and flexible features. It allows users to write (and share) simple scripts (using the Lua programming language ) to automate a wide variety of networking tasks. https://nmap.org

Topics

#Nmap Scripting Engine#Custom Vulnerability Scripting#Protocol Interaction#Automated Discovery

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PT0-002 PracticeBrowse All PT0-002 Questions