CompTIA CySA+ (CS0-003) — Question 428

A cybersecurity analyst is tasked with scanning a web application to understand where the scan will go and whether there are URIs that should be denied access prior to more in-depth scanning. Which of following best fits the type of scanning activity requested?

Answer options

• A. Uncredentialed scan
• B. Discovery scan
• C. Vulnerability scan
• D. Credentialed scan

Correct answer: B

Explanation

The correct answer is B, as a Discovery scan is designed to identify all accessible parts of a web application, including URIs. An Uncredentialed scan (A) does not provide detailed insights into user-accessible areas, while a Vulnerability scan (C) primarily focuses on finding vulnerabilities rather than mapping out the application's structure. A Credentialed scan (D) offers deeper insights but is not focused on determining access restrictions beforehand.