SY0-501 Question #202: Real Exam Question with Answer & Explanation

The correct answer is A: Credentialed scan.. A credentialed scan uses supplied credentials or service-level access to authenticate to target systems, enabling deeper visibility into vulnerabilities that unauthenticated scans would miss.

Submitted by katya_ua· Mar 4, 2026

Question

A vulnerability scanner that uses its running service's access level to better assess vulnerabilities across multiple assets within an organization is performing a:

Options

ACredentialed scan.
BNon-intrusive scan.
CPrivilege escalation test.
DPassive scan.

Explanation

A credentialed scan uses supplied credentials or service-level access to authenticate to target systems, enabling deeper visibility into vulnerabilities that unauthenticated scans would miss.

Common mistakes.

B. A non-intrusive scan refers to a scan that avoids sending potentially disruptive or harmful probes, which is about scan aggressiveness, not about using authenticated access to assess vulnerabilities.
C. Privilege escalation testing is an active exploitation technique used to gain higher-level permissions than initially granted, not a method of scanning assets using existing service account access.
D. A passive scan involves monitoring network traffic without actively sending probes to targets, which is entirely different from using authenticated credentials to assess systems directly.

Concept tested. Credentialed vs. non-credentialed vulnerability scanning

Reference. https://docs.tenable.com/nessus/Content/CredentialedChecksOnWindows.htm

Community Discussion

No community discussion yet for this question.

Full SY0-501 Practice Browse All SY0-501 Questions