CertNexus Certified Cyber Secure Coder (CSC) — Question 89

After a security breach, a security consultant is hired to perform a vulnerability assessment for a company’s web application. Which of the following tools would the consultant use?

Answer options

• A. Nikto
• B. Kismet
• C. tcpdump
• D. Hydra

Correct answer: A

Explanation

Nikto is a web server scanner that detects vulnerabilities in web applications, making it the right choice for a vulnerability assessment. Kismet is a wireless network detector, tcpdump is a packet analyzer, and Hydra is a password cracking tool, none of which are specifically designed for assessing web application vulnerabilities.