CompTIA PenTest+ (PT0-001) — Question 54

A penetration tester, who is not on the client's network. is using Nmap to scan the network for hosts that are in scope. The penetration tester is not receiving any response on the command: nmap 100.100/1/0-125
Which of the following commands would be BEST to return results?

Answer options

• A. nmap -Pn -sT 100.100.1.0-125
• B. nmap -sF -p 100.100.1.0-125
• C. nmap -sV -oA output 100.100.10-125
• D. nmap 100.100.1.0-125 -T4

Correct answer: A

Explanation

The correct answer is A because the -Pn option tells Nmap to skip host discovery and treat all hosts as online, which is crucial when there are no responses from the initial scan. The other options either do not include this critical flag or use different scanning techniques that may not be effective in this scenario.