A security analyst needs to perform a scan for SMB port 445 over a/16 network. Which of the following commands would be the BEST option when stealth is not a concern and the task is time sensitive?
B. Nmap -p 445 -n -T4 –open 172.21.0.0/16
Explanation:
• -p 445: Specifies that only port 445 should be scanned.
• -n: Disables DNS resolution, speeding up the scan.
• -T4: Sets the timing template to “aggressive,” which balances speed and accuracy without being overly intrusive.
• --open: Only shows ports that are open, reducing the amount of data to sift through and making the results more relevant.
• 172.21.0.0/16: Specifies the target network to scan.
A. Nmap -s 445 -Pn -T5 172.21.0.0/16:
• -s 445 is not a valid Nmap option. The correct syntax for specifying a port is -p 445.
• -Pn: Disables host discovery and treats all hosts as online, which can be useful in some situations but is not necessary here.
• -T5: The most aggressive timing template, which may cause network disruptions and is generally overkill compared to -T4.
C. Nmap -sV –script=smb 172.21.0.0/16*:
• -sV: Attempts to determine the version of the services running on open ports, which is not necessary if the task is to quickly identify open SMB ports.
• --script=smb*: Runs all smb-related NSE scripts, which can provide detailed information but is not the fastest approach.
D. Nmap -p 445 -max -sT 172. 21.0.0/16:
• -max is not a valid Nmap option.
• -sT: Specifies a TCP connect scan, which is the default scan type for privileged users but not necessarily the fastest option.
The BEST choice for this scenario:
A. Nmap -sT 445 -Pn -T5 172.21.0.0/16
Nmap: The command-line tool for network discovery and security auditing.
-sT 445: Specifies a TCP SYN scan for port 445 (SMB).
-Pn: Disables the initial ping sweep, assuming stealth isn't a concern. This saves time.
-T5: Sets the timing template to level 5 (aggressive). This speeds up the scan compared to slower timing templates.
172.21.0.0/16: Defines the target network range (/16 specifies all hosts within the 172.21.0.0 subnet).
Reasoning for being the BEST option:
Stealth is not a concern: The prompt mentions stealth is not a priority, so disabling the ping sweep with -Pn is appropriate.
Time sensitive: Using an aggressive timing template (-T5) speeds up the scan compared to slower templates.
Given the requirements, option B would be the most suitable command to scan for SMB port 445 over a /16 network. The other options contain either syntax errors, unnecessary options, or slower scanning techniques that wouldn't be suitable for a time-sensitive task when stealth is not a concern.
The best option for quickly scanning an SMB port on a /16 network when stealth is not a concern is to use option B: "Nmap -p 445 -n -T4 -open 172.21.0.0/16".
Explanation:
Option A ("-s 445 -Pn -T5") will scan for the SMB port, disable host discovery (-Pn), and set the timing template to aggressive (-T5). However, this command will not scan the entire /16 network, but only the single port 445.
Option B ("-p 445 -n -T4 -open") will scan for the SMB port, skip the host discovery (-n), set the timing template to normal (-T4), and only show open ports (-open). This command will scan the entire /16 network for the specified port.
Option C ("-sV --script=smb*") will scan for the SMB port and attempt to detect the version of the SMB protocol in use, as well as run all SMB-related Nmap scripts. However, this command may take longer to execute and may not be as time-sensitive as option B.
Option D ("-p 445 -max -sT") will scan for the SMB port using the TCP SYN scan (-sT) method and use the maximum number of parallel probes (-max). However, this command may take longer to execute and may not be as time-sensitive as option B.
. Nmap -p 445 -max -sT 172.21.0.0/16 will take longer to complete the task since the scan speed (-sT) is set to slower than recommended and the '-max' flag increases the time taken to complete the scan process.
A. Nmap -s 445 -Pn -T5 172.21.0.0/16 is the best option when stealth is not a concern and the task is time sensitive. This command utilizes a number of flags that ensure that a scan for port 445 is completed quickly and accurately. The flags used in this command are "-s 445", which instructs Nmap to perform a SYN scan on port 445, "-Pn", which skips any host discovery and proceeds with the port scan, and "-T5", which sets the timing template to the maximum speed.
Nmap -p 445 -max -sT 172.21.0.0/16 is a command used to perform a scan of port 445 on the specified network. This command uses flags that instruct Nmap to scan only port 445 using the TCP protocol, so any other ports will not be scanned. However, this command does lack the necessary flags for speed and accuracy, making it a less optimal option when time is of the essence.
B. Nmap -p 445 -n -T4 -open 172.21.0.0/16 will not provide a complete scan of the /16 network since it only checks for open ports (-open). Additionally, the scan speed is set to slower than the recommended level (-T4).
"Nmap -p 445 -n -T4 -open 172.21.0.0/16" will perform a TCP connect scan on port 445 with no DNS resolution (-n), medium timing (-T4), and will only show open ports (-open). This option is suitable when the task is time-sensitive and the stealth is not a concern.
This section is not available anymore. Please use the main Exam Page.PT0-002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Excalibur_1
Highly Voted 1Â year, 1Â month agoj904
1Â year, 1Â month agoER1
1Â year agoEtc_Shadow28000
Highly Voted 10Â months, 3Â weeks agoEtc_Shadow28000
10Â months, 3Â weeks agopepgua
Most Recent 11Â months, 2Â weeks agoDarkWingDuck138
1Â year, 1Â month agovazq77
1Â year, 5Â months ago581777a
1Â year, 6Â months agosolutionz
1Â year, 9Â months agoRAMI_PAL
2Â years ago[Removed]
2Â years, 1Â month ago[Removed]
2Â years, 1Â month agoManiact165
2Â years, 1Â month agoSebatian20
1Â year agoabdelhadiahmed1
1Â year, 3Â months agoKingIT_ENG
2Â years, 2Â months ago[Removed]
2Â years, 2Â months agonickwen007
2Â years, 2Â months ago[Removed]
2Â years, 2Â months agonickwen007
2Â years, 2Â months ago[Removed]
2Â years, 2Â months agonickwen007
2Â years, 2Â months ago[Removed]
2Â years, 2Â months agocy_analyst
2Â years, 2Â months agobeamage
2Â years, 3Â months agokloug
2Â years, 3Â months ago