How is the scanning phase best described?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

How is the scanning phase best described?

Explanation:
Scanning is the phase where you map what’s reachable on the network: you identify live hosts, open ports, the services listening on those ports, and any obvious vulnerabilities or misconfigurations. This discovery work creates a picture of the attack surface and helps you decide where to focus subsequent testing, such as vulnerability assessment or exploitation attempts. It’s about gathering actionable information to plan the next steps, not about gaining higher privileges or writing exploits yet, and not about manipulating people. In practice, you’d use scanning tools to perform network discovery, port scanning, service version detection, and vulnerability checks to build a baseline of targets and potential entry points.

Scanning is the phase where you map what’s reachable on the network: you identify live hosts, open ports, the services listening on those ports, and any obvious vulnerabilities or misconfigurations. This discovery work creates a picture of the attack surface and helps you decide where to focus subsequent testing, such as vulnerability assessment or exploitation attempts. It’s about gathering actionable information to plan the next steps, not about gaining higher privileges or writing exploits yet, and not about manipulating people. In practice, you’d use scanning tools to perform network discovery, port scanning, service version detection, and vulnerability checks to build a baseline of targets and potential entry points.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy