exam questions

Exam PT0-002 All Questions

View all questions & answers for the PT0-002 exam

Exam PT0-002 topic 1 question 159 discussion

Actual exam question from CompTIA's PT0-002
Question #: 159
Topic #: 1
[All PT0-002 Questions]

A penetration tester is examining a Class C network to identify active systems quickly. Which of the following commands should the penetration tester use?

  • A. nmap -sn 192.168.0.1/16
  • B. nmap -sn 192.168.0.1-254
  • C. nmap -sn 192.168.0.1 192.168.0.1.254
  • D. nmap -sN 192.168.0.0/24
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Neolot
Highly Voted 1 year, 2 months ago
Selected Answer: B
B is correct. The switch -sN in D is not correct.
upvoted 12 times
Anarckii
6 months, 1 week ago
I agree with this was questioning D and saw the cap "N"
upvoted 1 times
...
...
cy_analyst
Highly Voted 8 months, 3 weeks ago
Selected Answer: B
Option A uses a /16 CIDR notation, which covers a Class B network and will scan a much larger range of IP addresses than necessary. Option C includes an extra dot in the IP range, which will cause an error in the nmap command. Option D uses the -sN flag, which is used for TCP NULL scans, and does not scan for active systems.
upvoted 6 times
KingIT_ENG
8 months, 3 weeks ago
Yes B is the answer
upvoted 2 times
...
...
mehewas855
Most Recent 1 day, 10 hours ago
Selected Answer: B
it is B
upvoted 1 times
...
solutionz
4 months, 1 week ago
Selected Answer: B
A Class C network typically has a /24 subnet mask, and if the goal is to quickly identify active systems within that network, the penetration tester would likely want to perform a ping sweep. Among the provided options, the correct command for this task is: B. nmap -sn 192.168.0.1-254 Explanation: Option B: This command uses the "-sn" flag (No port scan) to perform a ping sweep, targeting all IP addresses in the range from 192.168.0.1 to 192.168.0.254. This range encompasses the entire Class C network.
upvoted 2 times
...
nickwen007
9 months, 1 week ago
This command would be used to run a network scan on the IP range 192.168.0.1 through 254. It would do a simple scan to determine active hosts on the local subnet without performing port scans or service enumeration.
upvoted 2 times
[Removed]
9 months, 1 week ago
B is the answer your right
upvoted 2 times
...
...
beamage
9 months, 3 weeks ago
Selected Answer: B
B is a faster scan no ports -sN is a real switch but it's slower gives you ports
upvoted 3 times
...
[Removed]
10 months ago
B is correct 100%
upvoted 2 times
...
2Fish
10 months ago
Selected Answer: B
Gonna have to go with B. Running this on my Kali VM, it was "fast" and returned Active (host is up) hosts. D returned "Host is up"on all hosts, and required sudo.
upvoted 3 times
...
Vikt0r
10 months, 1 week ago
ChatGPT says B
upvoted 3 times
...
RRabbit
10 months, 3 weeks ago
D. nmap -sN 192.168.0.0/24 A class C network IP address range is from 192.168.0.0 to 192.168.255.255. To identify active systems quickly in a Class C network, a penetration tester could use the Nmap command 'nmap -sN 192.168.0.0/24' which performs a "ping scan" (-sN) on the entire Class C network range (192.168.0.0/24). This will identify all active systems that are responding to ping requests in the network. Option A is not correct, because it uses the wrong CIDR notation. option B is not correct because it uses incorrect range of IP address. Option C is not correct because it uses incorrect syntax.
upvoted 2 times
...
ronniehaang
11 months, 3 weeks ago
Selected Answer: B
-sn is faster than -sN
upvoted 3 times
...
masso435
1 year ago
Selected Answer: B
-sN isn't a valid switch. /16 is a class B. It just says examine a class C network. It doesn't specify the IP range it has to be as it doesn't say a whole class C IP range.
upvoted 3 times
...
som3onenooned1
1 year, 1 month ago
Answer A is B class - NO Answer B does not consist of a whole /24 class network, it lacks .0 .255 IPs which are not intended to be used by normal host broadcast IPs. So it contains all USABLE ip addresses in C class - MAYBE it is correct. nmap states that by default, likely network/broadcast addresses like .0 and .255 are not scanned, but the '-A' option allows you to do this if you wish. But -sn scans allow you to check this. Look at the results below. In my opinion it lacks 2 addresses in C class. Answer C scans only 2 addresses - NO D is a complete C class, but it uses -sN which is not a quick way to identify if the host is up, it also scans ports which is more than is asked in the question. - Probably NO sudo nmap -sN 10.0.0.1/24 Nmap done: 256 IP addresses (11 hosts up) scanned in 21.99 seconds What would you choose, based on this observations? D contains all IPs but is slow and does more than asked B is quick, but does not contain .0 and .255 broadcast IP
upvoted 1 times
...
Manzer
1 year, 2 months ago
Selected Answer: D
D is the only class C network. /24
upvoted 3 times
cy_analyst
8 months, 3 weeks ago
You are right.
upvoted 1 times
...
...
ryanzou
1 year, 2 months ago
I think A is correct
upvoted 3 times
Mr_BuCk3th34D
11 months, 3 weeks ago
A is a /16, class B address, so it can't be the right answer. B is correct.
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago