ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-601 All Questions

View all questions & answers for the SY0-601 exam
Go to Exam

Exam SY0-601 topic 1 question 256 discussion

Actual exam question from CompTIA's SY0-601
Question #: 256
Topic #: 1
[All SY0-601 Questions]

An organization is concerned that its hosted web servers are not running the most updated version of the software. Which of the following would work BEST to help identify potential vulnerabilities?

  • A. hping3 -S comptia-org -p 80
  • B. nc -l -v comptia.org -p 80
  • C. nmap comptia.org -p 80 -sV
  • D. nslookup –port=80 comptia.org
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by passmemo at Oct. 11, 2022, 8:26 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
[Removed]
Highly Voted 2 years, 8 months ago
Selected Answer: C
Nmap -sV flag detects the (s)ervice (V)ersion on what you are scanning Source: personal pentesting experience
upvoted 28 times
...
Yawannawanka
Highly Voted 2 years, 2 months ago
Selected Answer: C
Option C, "nmap comptia.org -p 80 -sV", would work BEST to help identify potential vulnerabilities. This command performs a port scan on the web server (port 80 is used for HTTP) and identifies the software and version running on the server (using the "-sV" flag). This information can be used to determine if the software is outdated and if there are known vulnerabilities associated with that version. Option A, "hping3 -S comptia-org -p 80", sends a SYN packet to the specified host and port to test if the host is listening on that port. This is not specifically designed to identify potential vulnerabilities. Option B, "nc -l -v comptia.org -p 80", listens on port 80 for incoming connections. This is not designed to identify potential vulnerabilities. Option D, "nslookup –port=80 comptia.org", performs a DNS lookup on the specified host and port. This is not designed to identify potential vulnerabilities.
upvoted 9 times
...
ganymede
Most Recent 1 year, 7 months ago
Selected Answer: C
C. nmap -sV gets version information
upvoted 1 times
...
ApplebeesWaiter1122
1 year, 11 months ago
Selected Answer: C
The best option for identifying potential vulnerabilities on the hosted web servers is to use the "nmap" tool with the "-p" and "-sV" options. The command "nmap comptia.org -p 80 -sV" will scan the target domain "comptia.org" on port 80 (the default HTTP port) and use version detection ("-sV") to determine the software and its version running on that port. Nmap is a powerful network scanning tool that can help identify open ports, services, and their versions on a target system. By using version detection, the organization can determine if the web server software is up-to-date or if there are known vulnerabilities associated with the specific version in use. This information can help the organization prioritize software updates and patching to address any potential security issues.
upvoted 3 times
...
SophyQueenCR82
2 years, 3 months ago
C. nmap comptia.org -p 80 -sV nmap scans for open networks and its used for vulnerability checking and security auditing
upvoted 1 times
...
[Removed]
2 years, 8 months ago
Nmap -sV flag detects the (s)ervice (V)ersion on what you are scanning Source: personal pentesting experience
upvoted 2 times
...
passmemo
2 years, 8 months ago
Selected Answer: C
Nmap on port 80
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel