ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-501 All Questions

View all questions & answers for the SY0-501 exam
Go to Exam

Exam SY0-501 topic 1 question 428 discussion

Actual exam question from CompTIA's SY0-501
Question #: 428
Topic #: 1
[All SY0-501 Questions]

Which of the following should a security analyst perform FIRST to determine the vulnerabilities of a legacy system?

  • A. Passive scan
  • B. Aggressive scan
  • C. Credentialed scan
  • D. Intrusive scan
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by bigwilly69 at March 3, 2020, 12:06 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MelvinJohn
Highly Voted 5 years, 1 month ago
Question refers to "legacy system", implying a legacy computer rather than a legacy network? Passive scans are network oriented - not computer oriented. Need a credentialed scan to get down into a computer's vulnerabilities.
upvoted 8 times
...
meg999
Most Recent 4 years, 2 months ago
From comptia book "A scanning technique to passively test security controls operates by sniffing network traffic to identify assets communicating on the network, service ports used, and potentially some types vulnerabilities." So, if they key word in this question is "first" then passive scan is the correct answer.
upvoted 3 times
...
jinjection
4 years, 6 months ago
C. Credentialed
upvoted 2 times
CTK246
3 years, 11 months ago
Disagree. You don't need credentials for every type of attack.
upvoted 1 times
...
...
Teza
4 years, 8 months ago
I thought the answer should be C
upvoted 1 times
...
Jayson_U
4 years, 9 months ago
Thus the answer is correct. A.
upvoted 1 times
...
Jayson_U
4 years, 9 months ago
I think the keyword here is "FIRST", tho passive scanning scans network traffic it doesn't mean that it doesn't detect end points vulnerabilities.
upvoted 2 times
BillyKidd
4 years, 5 months ago
Agree. You can do a credentialed scan later.
upvoted 1 times
...
...
PeteL
4 years, 10 months ago
Credentialed scans are meant to highlight known vulnerabilities on older, unpatched systems.
upvoted 3 times
...
MelvinJohn
5 years, 1 month ago
Passive scans are good for identifying asset inventory, and active directory configurations. Passive scanners can monitor activity to determine the network's vulnerabilities.
upvoted 1 times
who__cares123456789___
4 years, 3 months ago
https://subscription.packtpub.com/book/cloud_and_networking/9781789348019/8/ch08lvl1sec91/credentialed-versus-non-credentialed-scans Non-credentialed: A non-credentialed scan will monitor the network and see any vulnerabilities that an attacker would easily find; we should fix the vulnerabilities found with a non-credentialed scan first, as this is what the hacker will see when they enter your network.For example, an administrator runs a non-credentialed scan on the network and finds that there are three missing patches.
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago