CompTIA CySA+ (CS0-001) — Question 3
An analyst wants to use a command line tool to identify open ports and running services on a host along with the application that is associated with those services and port. Which of the following should the analyst use?
Answer options
- A. Wireshark
- B. Qualys
- C. netstat
- D. nmap
- E. ping
Correct answer: D
Explanation
The correct tool for this task is nmap, as it is specifically designed for network discovery and security auditing, allowing users to identify open ports and associated services. While netstat can list open connections, it does not provide the same level of detail or scanning capability as nmap. Wireshark is a packet analyzer, Qualys is a vulnerability management tool, and ping is used only for checking network connectivity.