Exam SY0-501 topic 1 question 190 discussion

The answer must be C as the question states that the server "joined the company domain."

Its C. Because there is no such thing as "Gray box vulnerability testing" its Gray box penetration testing. And also no "vulnerability testing" only vulnerability scan. Remember its vulnerability scan (scans is doing only basic things)vs penetration testing (testing is going deeper not only scanning) Hope makes sense

It is C

there are many attributes to the question that points to a credential scan. Domain, visibility over entire company clients. Elimination process, option B&D are out. A is not as this is not pertaining to testing. the Answer is C - credential scan.

Security administrators often run credentialed scans with the privileges of an administrator account. This allows the scan to check security issues at a much deeper level than a non- credentialed scan. Additionally, because the credentialed scan has easier access to internal workings of systems, it results in a lower impact on the tested systems, along with more accurate test results and fewer false positives. (Darril Gibson’s Get Certified Get Ahead p. 574)

C. Credentialed scan - key company domain.

it's C : Credentialed scan "Vulnerability scanners can run as a credentialed scan using the credentials of an account, or as non-credentialed without any user credentials. Security administrators often run credentialed scans with the privileges of an administrator account. This allows the scan to check security issues at a much deeper level than a non- credentialed scan. Additionally, because the credentialed scan has easier access to internal workings of systems, it results in a lower impact on the tested systems, along with more accurate test results and fewer false positives" Gibson book. Patch posture of all clients of the company so it can only be credential

B. Passive scanners...can check the current software and patch versions on networked devices. https://smallbusiness.chron.com/difference-between-active-passive-vulnerability-scanners-34805.html

B. A passive scan can provide basic - but not detailed - information regarding the patches on each computer scanned. The question says "to provide visibility over the patch posture of all company's clients."

The vulnerability scanner is able to provide visibility over the patch posture of "ALL" company's clients. I think by the use of "ALL" in the above statement, it is credentialed scan that can give such a result so although it was not mentioned that the technician used known credentials it is somehow implied by the result he/she got. Since grey box testing has limited knowledge of the details of the program is unlike to give "ALL" information on clients

Can someone explain why is it C and not A?

I believe the correct answer is: A. Gray box vulnerability testing Gray box testing, also called gray box analysis, is a strategy for software debugging in which the tester has limited knowledge of the internal details of the program. A gray box is a device, program or system whose workings are partially understood. Credentialed scans are scans in which the scanning computer has an account on the computer being scanned that allows the scanner to do a more thorough check looking for problems that can not be seen from the network.