QUESTION 5 NMAP and NESSUS both can be used for port scanning. NESSUS also gives

Question

QUESTION 5 NMAP and NESSUS both can be used for port scanning. NESSUS also gives an output about the vulnerabilities. But it's not free, like NMAP The NMAP can get information about OS and Application versions this information can be used along with CVE to find 0-day vulnerabilities in the OS and applications. this information can be used along with CVE to find known vulnerabilities in the OS and applications. this information can't be used to find known vulnerabilities in the OS and applications this information is useful for an attacker but can't help in patch management. QUESTION 6 Penetration testing is a better way of testing than vulnerability scanners, as you can also test for the attack vectors, such as access weaknesses and privilege escalation. In fact vulnerability scanner will be part of penetration testing. vulnerability scanner has nothing to do with penetration testing penetration testing can't be done for your own organization and can only be done through a third party who can brealk into your system externally. Openetration testing is another name for vulnerability scanning QUESTION 7 Sandboxing, Intrusion Detection Systems, Honey pots and data back ups are ways of OS patching vulnerability management. penetration testing. countermeasures against attacks.

Explanation / Answer

Answer 5: This information can be used along with CVE to find vulnearablities in the OS and application

Answer 6: penetration testing cant be done for yourown organisation and can only be done through a third party who can break into your system externally.

Answer 7: Countermeasures against attacks

Related Questions

Navigate

• Browse (All)
• Browse Q
• Subjects

---

---

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.