Correct answer should be B, see https://subscription.packtpub.com/book/networking_and_servers/9781789348019/8/ch08lvl1sec91/credentialed-versus-non-credentialed-scans
Ian Neil guide says:
Non-credentialed: A non-credentialed scan will monitor the network and see any vulnerabilities that an attacker would easily find; we should fix the vulnerabilities found with a non-credentialed scan first, as this is what the hacker will see when they enter your network. For example, an administrator runs a non-credentialed scan on the network and finds that there are three missing patches. The scan does not provide many details on these missing patches. The administrator installs the missing patches to keep the systems up to date as they can only operate on the information produced for them.
•Credentialed scan: A credentialed scan is a much safer version of the vulnerability scanner. It provides more detailed information than a non-credentialed scan. You can also set up the auditing of files and user permissions.
Exam tip:
A credentialed scan can produce more information and can audit the network. A non-credentialed scan is primitive and can only find missing patches or updates.
you must know what is that scan can do. i will tell you what exactly why they choose D. because inactive local account can be compromise by attackers. And i did some research and that is why choice D is related to this explanation: Non-credentialed scans enumerate ports, protocols, and services that are exposed on a host and identifies vulnerabilities and misconfigurations that could allow an attacker to compromise your network.
Cons:
Misses client-side vulnerabilities such as detailed patch information.
https://docs.tenable.com/nessusagent/Content/TraditionalScansUncredentialed.htm
Answer is B from this site:
https://subscription.packtpub.com/book/cloud_and_networking/9781789348019/8/ch08lvl1sec91/credentialed-versus-non-credentialed-scans
the answer to this question is so confusing!
The question says, "MOST LIKELY..." All the options could be part of the result but one of them would most likely be seen with a non-credential scan. Inactive users...
this has to be B because it isn't a credentialed scan. Banner grabbing allows for an attacker to determine the software patch running on a device and device type
To know if a system is patched you need to run a credential scan. A non-credential scan che find out a NTLM service with inactive accounts! Answer is D!
Not true at all, that's why banner grabbing shows versions of software and Operating Systems, which do not require credentials. Do patches not change version numbers?
I think this place has more people that do damage instead of helping.
If you took the exam already, how many times did it take you to pass it?
D, is arguably the best option for this question.
No need to insult someone's intelligence because it differs from your opinion. B, is incorrect due to non-credentialed vulnerability scans "Misses client-side vulnerabilities such as detailed patch information." C, is incorrect, non-credentialed scans will not audit. Furthermore, Non-credentialed scan assess what normal users can see, regardless of privileges'. Finding self-signed certs require privilege (admin).
I go with missing patches --> Non-credentialed: A non-credentialed scan will monitor the network and see any vulnerabilities that an attacker would easily find; we should fix the vulnerabilities found with a non-credentialed scan first, as this is what the hacker will see when they enter your network. For example, an administrator runs a non-credentialed scan on the network and finds that there are three missing patches. The scan does not provide many details on these missing patches. The administrator installs the missing patches to keep the systems up to date as they can only operate on the information produced for them.
This section is not available anymore. Please use the main Exam Page.SY0-501 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
emilykaldwin
Highly Voted 6 years agoDrui
4 years, 10 months agofrededel
5 years, 4 months agotoenose
Highly Voted 4 years, 6 months agoStickyMac231
Most Recent 4 years, 1 month agotroxel
4 years agoaSabz
4 years, 5 months agoHanzero
4 years, 10 months agoOmario944
4 years, 10 months agotrairi
4 years, 11 months agotrairi
4 years, 11 months agodieglhix
4 years, 9 months agorobopips
4 years, 11 months agomlonz
4 years, 11 months agoGJEF
5 years agojowen
5 years agocallmethefuz
5 years agoNicker92
5 years, 1 month agoDookyBoots
4 years, 8 months agoEliCash
4 years, 1 month agotroxel
4 years agovirtualwalker
5 years, 2 months agoibernal01
5 years, 2 months agocolamix
5 years, 2 months ago