Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CompTIA CS0-003 Exam - Topic 2 Question 27 Discussion

Actual exam question for CompTIA's CS0-003 exam
Question #: 27
Topic #: 2
[All CS0-003 Questions]

An analyst investigated a website and produced the following:

Starting Nmap 7.92 ( https://nmap.org ) at 2022-07-21 10:21 CDT

Nmap scan report for insecure.org (45.33.49.119)

Host is up (0.054s latency).

rDNS record for 45.33.49.119: ack.nmap.org

Not shown: 95 filtered tcp ports (no-response)

PORT STATE SERVICE VERSION

22/tcp open ssh OpenSSH 7.4 (protocol 2.0)

25/tcp closed smtp

80/tcp open http Apache httpd 2.4.6

113/tcp closed ident

443/tcp open ssl/http Apache httpd 2.4.6

Service Info: Host: issues.nmap.org

Service detection performed. Please report any incorrect results at https://nmap .org/submit/ .

Nmap done: 1 IP address (1 host up) scanned in 20.52 seconds

Which of the following syntaxes did the analyst use to discover the application versions on this vulnerable website?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Maybelle at Aug 26, 2024, 01:24 PM

Limited Time Offer

25%

Off

Get Premium CS0-003 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Reynalda
4 months ago
Not sure about that, but I thought -A was for aggressive scans?
upvoted 0 times
...
Frederica
5 months ago
I think option D could work too, but C is more specific.
upvoted 0 times
...
Marilynn
5 months ago
Wait, how did they get the rDNS info? That's interesting!
upvoted 0 times
...
Tequila
5 months ago
Definitely option C! Makes the most sense.
upvoted 0 times
...
Gerardo
5 months ago
Looks like the analyst used -sV for version detection.
upvoted 0 times
...
India
6 months ago
I feel like `-sS` is more for stealth scanning, so it probably wouldn’t show the application versions. I’m leaning towards `-sV` as well.
upvoted 0 times
...
Emerson
6 months ago
I’m a bit confused about the options. I know `-A` does more than just version detection, but could it also be the right answer?
upvoted 0 times
...
Bok
6 months ago
I remember practicing with similar questions, and I feel like `-sV` is definitely the right choice here since it specifically mentions version detection.
upvoted 0 times
...
Marva
6 months ago
I think the analyst used the `-sV` option to get the service versions, but I'm not completely sure if it was `-A` instead.
upvoted 0 times
...
Annmarie
6 months ago
This is a good one. The key here is to look at the Nmap flags used to get the version information. I think the answer is C, but I'll double-check the Nmap man page just to be sure.
upvoted 0 times
...
Trina
6 months ago
Okay, let's see here. The output indicates that version detection was performed, so I'm guessing the answer is either C or D. I'll have to double-check the Nmap flags to be sure.
upvoted 0 times
...
Adelle
6 months ago
Hmm, I'm a bit unsure about this one. The question is asking about the specific syntax used, but the output doesn't show the full command. I'll have to think this through carefully.
upvoted 0 times
...
Thad
6 months ago
This looks like a pretty straightforward Nmap scan. I'm pretty confident the answer is C, since the output shows the version information for the services running on the target.
upvoted 0 times
...
Evangelina
6 months ago
I'm a little confused by this question. The output seems to show a standard Nmap scan, but I'm not sure which specific syntax was used. I'll have to review the Nmap documentation to make sure I understand the different options.
upvoted 0 times
...
Blondell
6 months ago
I feel like the parallel builds on the master are a problem, so maybe option D is correct?
upvoted 0 times
...
Alyssa
6 months ago
I seem to recall a practice question like this where hypoglycemia was the answer due to similar symptoms. I'm leaning towards that, but I'm a little hesitant.
upvoted 0 times
...
Kenny
2 years ago
Haha, 'issues.nmap.org' - I wonder what kind of issues they're dealing with over there. Hopefully not too many security problems!
upvoted 0 times
...
Iraida
2 years ago
I'm a bit surprised the analyst didn't use the more comprehensive -A option to get even more information. But -sV is the right call for just version discovery.
upvoted 0 times
Rhea
1 year ago
The analyst probably chose -sV to specifically target version discovery.
upvoted 0 times
...
Marica
1 year ago
Using -sV is more focused on discovering application versions.
upvoted 0 times
...
Jeanice
1 year ago
I agree, but -sV is the right choice for just version discovery.
upvoted 0 times
...
Latanya
1 year ago
It's all about choosing the right tool for the job. -sV was the right choice in this case.
upvoted 0 times
...
Valentin
1 year ago
Yeah, -A would have provided more information, but -sV is more specific for application versions.
upvoted 0 times
...
Maybelle
1 year ago
I think the analyst should have used the -A option for more information.
upvoted 0 times
...
My
2 years ago
I think the analyst chose -sV to just focus on version discovery.
upvoted 0 times
...
...
Adria
2 years ago
Yep, I agree with Buck. The -sV option is definitely the way to go for version detection. Good catch!
upvoted 0 times
Xochitl
2 years ago
D) nmap -A insecure.org
upvoted 0 times
...
Stevie
2 years ago
C) nmap -sV -T4 -F insecure.org
upvoted 0 times
...
Jettie
2 years ago
B) nmap -0 insecure.org
upvoted 0 times
...
Noe
2 years ago
A) nmap -sS -T4 -F insecure.org
upvoted 0 times
...
...
Cruz
2 years ago
I'm not sure, but I think option D) nmap -A insecure.org could also be a possibility to discover application versions.
upvoted 0 times
...
Bobbye
2 years ago
I agree with Crista, option C) makes sense because it includes version detection.
upvoted 0 times
...
Buck
2 years ago
The use of the -sV flag to discover application versions is a clear giveaway here. C is the correct answer.
upvoted 0 times
Fatima
2 years ago
That makes sense, the -sV flag is specifically used for version detection.
upvoted 0 times
...
Fatima
2 years ago
C) nmap -sV -T4 -F insecure.org
upvoted 0 times
...
...
Crista
2 years ago
I think the analyst used option C) nmap -sV -T4 -F insecure.org to discover the application versions.
upvoted 0 times
...

Save Cancel