Q: 12
A security analyst suspects a remote server is running vulnerable network applications. The analyst
does not have administrative credentials for the server. Which of the following would MOST likely
help the analyst determine if the applications are running?
Options
Discussion
Its D, port scanner is the classic move for figuring out what's running remotely if you don't have admin creds.
Pretty sure C. Packet sniffers can catch network activity and sometimes reveal what apps are in use, especially without admin rights. D is tempting but I think people miss how much info a sniffer can give if there's traffic already. D is the trap here.
C or D here, but I think D is right. You don't need admin creds to run a port scan from your own machine, and open ports are a huge giveaway about what apps are available. Anyone disagree?
Wouldn’t this depend on whether the apps listen on standard ports? If everything’s moved to high random ports, even a port scanner (D) might not show obvious info. Has anyone seen this tested where only obscure ports are open?
Be respectful. No spam.
