Exam SY0-501 topic 1 question 761 discussion

Given answer is correct.. One of the uses of Nmap is the network inventory and maintainance. By using the Nmap tool, a script called nmap ssl-enum-ciphers script is made to run and the output will result in a set of cipher suites. Under the nmap tool, the file rdp-enum-encryption determines the encryption protocols and security layers supported.

Nmap is used to discover hosts and services on a computer network by sending packets and analyzing the response. Provided answer is correct.

nmap is correct here is professor messer replay about nmanp https://youtu.be/octwJaf6vAM?t=942

What of B

this is for Nmap

Detect the live host on the network (host discovery) Detect the open ports on the host (port discovery or enumeration) Detect the software and the version to the respective port (service discovery) Detect the operating system, hardware address and software version Detect the vulnerability and security holes (Nmap scripts)

Wireshark is a protocol analyzer. It can parse the headers network protocols and list their contents and derive purpose. This can help pinpoint the dropped packets and on what network adapter, so further troubleshooting can take place A protocol analyzer (or packet analyzer) works in conjunction with a sniffer to perform traffic analysis. You can either analyze a live capture or open a saved capture (.pcap) file. Protocol analyzers can decode a captured frame to reveal its contents in a readable format.

Nmap is a protocol analyzer itself

Nmap doesn't reveal encryption protocols

... The open-source nmap tool can list the cipher suites and protocols supported by a process that listens on a given port. ... (https://kc.mcafee.com/corporate/index?page=content&id=KB91115)

yes, it a protocol analyzer

Is it not protocol analyzer?