SY0-701 · Question #391
SY0-701 Question #391: Real Exam Question with Answer & Explanation
The correct answer is A: Non-credentialed scan. A non-credentialed scan (A) is correct because it describes a vulnerability scan performed without supplying system credentials - exactly what "without a system account" means. The scanner probes from an external, unauthenticated perspective, simulating what an outside attacker w
Question
An analyst is performing a vulnerability scan against the web servers exposed to the internet without a system account. Which of the following is most likely being performed?
Options
- ANon-credentialed scan
- BPacket capture
- CPrivilege escalation
- DSystem enumeration
- EPassive scan
Explanation
A non-credentialed scan (A) is correct because it describes a vulnerability scan performed without supplying system credentials - exactly what "without a system account" means. The scanner probes from an external, unauthenticated perspective, simulating what an outside attacker would see.
Why the others are wrong:
- B. Packet capture - passive traffic interception, not active scanning for vulnerabilities
- C. Privilege escalation - an attack technique to gain higher access after initial compromise, not a scan type
- D. System enumeration - gathering info about a system (users, services, shares), which can be part of a scan but isn't the scan type being described
- E. Passive scan - observes existing network traffic without sending probes; this question describes active probing of web servers
Memory tip: Think of "credentials = account." No account = non-credentialed. Credentialed scans go deeper (inside the OS); non-credentialed scans see only what an outsider sees. If the question mentions "internet-facing" + "no system account," that's your non-credentialed scan signal.
Topics
Community Discussion
No community discussion yet for this question.