Exam CS0-003 topic 1 question 97 discussion

Correct. Registry key values are specific to Windows operating systems and are not typically scanned directly as part of vulnerability assessments. Registry key values might contain configuration settings, but vulnerability scans usually focus on the broader picture of identifying weaknesses in software, services, and configurations rather than specific values within the Windows registry.

It would have been clearer to be if it was phrased.. what would be missing from the scan results - instead of. Anyway, I agree with B.

A scanner should scan the entire registry considering that it has the proper credentials. I've never had to specify a registry key nonetheless a key value. I personally do not like the answer given but, if I have to pick one, I'm going with the IP address. I will usually specify an IP address or range of IP addresses when configuring/performing a scan.

B. Registry key values A vulnerability scan performed by a scanner appliance on a network typically focuses on identifying vulnerabilities related to open ports, services, and known software vulnerabilities. It may also gather information about the operating system versions running on target hosts. However, registry key values are specific to Windows operating systems and are not typically part of a standard vulnerability scan. Registry information is typically not directly exposed or accessible via network scanning, so it's not a common target for such scans.