ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CNX-001 All Questions

View all questions & answers for the CNX-001 exam
Go to Exam

Exam CNX-001 topic 1 question 56 discussion

Actual exam question from CompTIA's CNX-001
Question #: 56
Topic #: 1
[All CNX-001 Questions]

A network engineer is working on securing the environment in the screened subnet. Before penetration testing, the engineer would like to run a scan on the servers to identify the OS, application versions, and open ports. Which of the following commands should the engineer use to obtain the information?

  • A. tcpdump -ni eth0 src net 10.10.10.0/28
  • B. nmap -A 10.10.10.0/28
  • C. nc -v -n 10.10.10.x 1-1000
  • D. hping3 -1 10.10.10.x -rand-dest -I eth0
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by SuntzuLegacy at May 19, 2025, 3:19 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
SuntzuLegacy
1 month, 1 week ago
Selected Answer: B
Answer: B. nmap -A 10.10.10.0/28 Explanation: nmap -A performs a comprehensive scan that includes OS detection, service version detection, script scanning, and traceroute by default, giving you the detailed information (OS, application versions, open ports) the engineer needs. tcpdump, nc, and hping3 can be used for specialized tasks (packet capture, port scanning, or custom packet crafting), but they do not provide the in-depth OS/application fingerprinting that nmap -A does.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel