CompTIA Cloud+ (CV0-003) — Question 108

A company has hired a security firm to perform a vulnerability assessment of its environment. In the first phase, an engineer needs to scan the network services exposed by the hosts. Which of the following will help achieve this with the LEAST privileges?

Answer options

• A. An agent-based scan
• B. A credentialed scan
• C. A network-based scan
• D. An application scan

Correct answer: C

Explanation

A network-based scan is effective for identifying exposed services without requiring access to the hosts themselves, thus maintaining minimal privileges. In contrast, an agent-based scan and a credentialed scan necessitate higher levels of access to the systems being scanned, while an application scan focuses specifically on application vulnerabilities rather than network services.