ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 141 discussion

Actual exam question from CompTIA's CS0-003
Question #: 141
Topic #: 1
[All CS0-003 Questions]

A cybersecurity analyst is tasked with scanning a web application to understand where the scan will go and whether there are URIs that should be denied access prior to more in-depth scanning. Which of following best fits the type of scanning activity requested?

  • A. Uncredentialed scan
  • B. Discovery scan
  • C. Vulnerability scan
  • D. Credentialed scan
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by kmordalv at Sept. 1, 2023, 7:54 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kmordalv
Highly Voted 1 year, 8 months ago
Selected Answer: B
Correct A discovery scan is typically used to identify the scope of a web application and understand where the scan will go. This type of scan is often the first step in assessing a web application's security and helps the analyst determine which areas should be further examined or tested in-depth.
upvoted 12 times
...
FoeMarc
Highly Voted 1 year, 6 months ago
Discovery Scan: A discovery scan, also known as a reconnaissance scan or a footprinting scan, is a type of scanning activity that aims to gather information about a target system or network. It is typically the initial phase of a security assessment or penetration testing. In the context of a web application, a discovery scan would focus on identifying the structure of the application, including the URIs (Uniform Resource Identifiers) or URLs that can be accessed. It helps in mapping out the application's layout and identifying potential entry points for further testing.
upvoted 8 times
...
Lilik
Most Recent 8 months, 3 weeks ago
B is correct. A discovery scan finds information about your web application without performing vulnerability testing. This is a good way to understand where the scan will go and whether there are URIs you should blacklist for vulnerability scans.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago