Exam N10-008 topic 1 question 161 discussion

A vulnerability scan is conducted frequently to maintain an updated list of a system's weaknesses. A vulnerability scan is an automated process that checks a system or network for known vulnerabilities, such as outdated software versions, misconfigured settings, and unpatched systems. It checks the system against a database of known vulnerabilities and generates a report of any weaknesses that are found. This process is usually done periodically, such as weekly or monthly, to ensure that the system stays up-to-date with the latest patches and security updates.

D: Vulnerability scanning, also commonly known as ‘vuln scan,' is an automated process of proactively identifying network, application, and security vulnerabilities. Vulnerability scanning is typically performed by the IT department of an organization or a third-party security service provider. This scan is also performed by attackers who try to find points of entry into your network.

A vulnerability scan is an automated, high-level test that looks for and reports potential vulnerabilities. A penetration test is a detailed hands-on examination by a real person that tries to detect and exploit weaknesses in your system. https://www.securitymetrics.com/blog/pentesting-vs-vulnerability-scanning-whats-difference#:~:text=A%20vulnerability%20scan%20is%20an,exploit%20weaknesses%20in%20your%20system.

GPT says that a vulnerability scan is conducted frequently to maintain an updated list of a system's weaknesses. Vulnerability scanning is an automated process that identifies and assesses vulnerabilities in a system or network. It involves the use of scanning tools and software to discover and report on potential security issues. This process is typically performed regularly to ensure that an organization is aware of any new vulnerabilities that may have emerged and to maintain an up-to-date list of weaknesses that need to be addressed.