A security manager has tasked the security operations center with locating all web servers that respond to an unsecure protocol. Which of the following commands could an analyst run to find the requested servers?
Answer: nmap -p 80 10.10.10.0/24 - Nmap or network mapper is a network discovery and security auditing tool mainly used to find services, hosts, and open ports on a network. In this case, nmap will check for the HTTP port 80.
====================================
Other Choices
Nslookup - This command queries DNS servers to obtain DNS records
Pathping - This command provides information about network latency and packet loss at hops between a source and destination. Used for troubleshooting network issues.
ne - Honestly not 100% here
I agree the answer is nmap but I'll also say that the command would not find "all web servers" It would only find web servers on the 10.10.10.0/24 subnet.
Because of this fact and my not being familiar with that "ne" command, I chose it initially. Which I think is why it's there. To trick people like me that get hung up on the word phrase "all web servers." As far as my search goes, I've not found a system that uses the "ne" command.
The ne command would be used to see traffic on one specific interface, while nmap would scan the entire network and show which ports are open on discovered IP addresses. For this question, nmap would be a more comprehensive scan and would show any IP address on the network which has port 80 open.
1. nmap: nmap is a powerful network scanning tool used to discover hosts and services on a computer network.
2. -p 80: This option specifies that nmap should scan for open ports on port 80, which is the default port used for HTTP (unsecure web) communication.
3. 10.10.10.0/24: This is the target network range or IP address range that the analyst wants to scan. The /24 indicates a subnet mask of 255.255.255.0, meaning it will scan all IP addresses in the 10.10.10.0 network.
By running this command, the security operations center analyst can identify all web servers within the specified network range (10.10.10.0/24) that are responding on port 80, which is indicative of unsecure HTTP services. This information can then be used to further investigate and secure those servers if needed.
To find web servers that respond to an unsecure protocol, an analyst can run the command "nmap -p 80 10.10.10.0/24".
Explanation:
"nmap" is a popular network scanning tool used for host discovery and service enumeration.
"-p 80" specifies the port to scan, in this case, port 80, which is the default port for HTTP.
"10.10.10.0/24" represents the IP address range to scan. The "/24" denotes a CIDR notation indicating all IP addresses within the subnet.
By running this command, the analyst will scan the IP range 10.10.10.0/24 for open port 80. If a web server is listening on port 80, it indicates that it is responding to unsecure HTTP requests.
B. nmap -p 80 10.10.10.0/24
The nmap command is a powerful network exploration and security auditing tool, which can be used to scan a range of IP addresses to determine which ports are open and which services are running on those ports. In this case, the security operations center has been tasked with locating web servers that respond to an unsecure protocol. Port 80 is the standard port for HTTP, which is an unsecure protocol. Therefore, the nmap command can be used to scan the IP range specified (10.10.10.0/24) and check if any servers are running an HTTP service on port 80.
This section is not available anymore. Please use the main Exam Page.SY0-601 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
rodwave
Highly Voted 2 years, 6 months agoTinyTrexArmz
2 years, 4 months agoCTE_Instructor
2 years, 3 months agovarun0
Highly Voted 2 years, 9 months agoEromons
Most Recent 1 year agoRr_Jay
1 year, 4 months agoProtract8593
1 year, 10 months agoApplebeesWaiter1122
1 year, 11 months agoprincajen
2 years, 2 months agoxxxdolorxxx
2 years, 4 months agocomeragh
2 years, 9 months agostoneface
2 years, 9 months ago