nerdexam
ExamsPT0-002Questions#552
CompTIACompTIA

PT0-002 · Question #552

PT0-002 Question #552: Real Exam Question with Answer & Explanation

The correct answer is B: nmap 10.0.0.1/24 -p 27017 --script=mong*. The penetration tester is tasked with identifying non-relational databases on the subnet. Non- relational databases, such as MongoDB, CouchDB, and others, do not use the structured schema of relational databases like MySQL or PostgreSQL. MongoDB is a popular non-relational databa

Information Gathering and Vulnerability Scanning

Question

A penetration tester is working to identify non-relational databases on the 10.0.0.1/24 subnet as well as the version of software. Which of the following commands should the tester use to achieve the objective?

Options

  • Anmap 10.0.0.1/24 -p 3306 --script=mysql*
  • Bnmap 10.0.0.1/24 -p 27017 --script=mong*
  • Cnmap 10.0.0.1/24 -p 5432--script=pgsql*
  • Dnmap 10.0.0.1/24 -p 1433 --script=ms-sql*

Explanation

The penetration tester is tasked with identifying non-relational databases on the subnet. Non- relational databases, such as MongoDB, CouchDB, and others, do not use the structured schema of relational databases like MySQL or PostgreSQL. MongoDB is a popular non-relational database, and it typically listens on port 27017 by default. Using Nmap with the --script=mong* option enables MongoDB-related Nmap scripts, which can help identify the database and its version.

Topics

#Nmap#Database enumeration#Non-relational databases#Port scanning

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PT0-002 PracticeBrowse All PT0-002 Questions