Which tool can operate as a Nessus plugin while focusing on web server vulnerabilities?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

Which tool can operate as a Nessus plugin while focusing on web server vulnerabilities?

Explanation:
Web server vulnerability scanning is the focus here. Nikto is a dedicated web server vulnerability scanner that checks for outdated software, dangerous files and scripts, misconfigurations, and a wide range of common CGI vulnerabilities across many server types. It can operate as a Nessus plugin, allowing Nessus to incorporate Nikto’s web-focused checks into a single scan and report. This combination provides targeted coverage for web servers that general network scanners might miss. The other options don’t fit because they aren’t web server vulnerability scanners that integrate with Nessus in this way, or they’re not tools at all.

Web server vulnerability scanning is the focus here. Nikto is a dedicated web server vulnerability scanner that checks for outdated software, dangerous files and scripts, misconfigurations, and a wide range of common CGI vulnerabilities across many server types. It can operate as a Nessus plugin, allowing Nessus to incorporate Nikto’s web-focused checks into a single scan and report. This combination provides targeted coverage for web servers that general network scanners might miss. The other options don’t fit because they aren’t web server vulnerability scanners that integrate with Nessus in this way, or they’re not tools at all.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy