Exam 312-50v13 topic 1 question 14 discussion

This approach focuses on identifying and assessing the services running on different ports. James builds an inventory of protocols to determine which services (like email servers, web servers, and database servers) are available and then executes tests relevant to those specific services. This aligns directly with his methodology.

Inference-based vulnerability assessment starts by identifying protocols on a machine, then detects associated ports and services, and finally selects and executes relevant vulnerability tests based on the identified services.

Inference-Based Assessment: This approach begins by cataloging the protocols present on a machine. Once a protocol is identified, the scanning process detects the associated ports and services, such as an email, web server, or database server. Upon identifying services, it targets specific vulnerabilities on each machine and executes tests that are only relevant to the discovered services.

The key point in the scenario is that James identified the services (like email, web, or database servers) and then selected the relevant vulnerabilities for each service. This approach is characteristic of service-based solutions, where vulnerabilities are chosen based on the specific services identified on the machine. In Inference-Based Assessment, there would typically be more of a focus on deducing or inferring vulnerabilities from the services, rather than directly selecting known vulnerabilities tied to those services. So, based on the scenario, A. Service-based solutions is the correct choice.

Inference-Based Assessment: In an inference-based assessment, scanning starts by building an inventory of the protocols found on the machine. After finding a protocol, the scanning process starts to detect which ports are attached to services, such as an email server, web server, or database server. After finding services, it selects vulnerabilities on each machine and starts to execute only those relevant tests. Page 582