Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 58

An engineer needs to discover alive hosts within the 192.168.1.0/24 range without triggering intrusive portscan alerts on the IDS device using Nmap. Which command will accomplish this goal?

Answer options

• A. nmap --top-ports 192.168.1.0/24
• B. nmap ג€"sP 192.168.1.0/24
• C. nmap -sL 192.168.1.0/24
• D. nmap -sV 192.168.1.0/24

Correct answer: B

Explanation

The correct answer is B, as the '-sP' option in Nmap performs a ping scan to identify live hosts without performing a full port scan, thus minimizing the chance of triggering IDS alerts. Option A scans the top ports which could be intrusive, while C lists the targets without scanning for live hosts, and D checks for service versions, which may also raise alerts.