CompTIA CySA+ (CS0-003) — Question 481

A company that has a geographically diverse workforce and dynamic IPs wants to implement a vulnerability scanning method with reduced network traffic. Which of the following would best meet this requirement?

Answer options

• A. External
• B. Agent-based
• C. Non-credentialed
• D. Credentialed

Correct answer: B

Explanation

The agent-based approach is ideal for this scenario as it allows for vulnerability scanning to occur locally on devices without generating significant network traffic. In contrast, external scans may not be as effective for a dynamic IP setup, while non-credentialed scans provide limited visibility into system vulnerabilities, and credentialed scans can also create unnecessary traffic.