CompTIA CySA+ (CS0-001) — Question 262

A new policy requires the security team to perform web application and OS vulnerability scans. All of the company's web applications use federated authentication and are accessible via a central portal. Which of the following should be implemented to ensure a more thorough scan of the company's web application, while at the same time reducing false positives?

Answer options

• A. The vulnerability scanner should be configured to perform authenticated scans.
• B. The vulnerability scanner should be installed on the web server.
• C. The vulnerability scanner should implement OS and network service detection.
• D. The vulnerability scanner should scan for known and unknown vulnerabilities.

Correct answer: A

Explanation

Configuring the vulnerability scanner to perform authenticated scans allows it to access deeper layers of the web application, leading to a more comprehensive assessment and fewer false positives. Installing the scanner on the web server (option B) does not inherently improve the scan quality. OS and network service detection (option C) is important but does not specifically address the needs of the web application in this scenario. Scanning for known and unknown vulnerabilities (option D) is valuable, but without authentication, the scanner may miss critical vulnerabilities that require deeper access.