CompTIA PenTest+ (PT0-002) — Question 138

A penetration tester has been given an assignment to attack a series of targets in the 192.168.1.0/24 range, triggering as few alarms and countermeasures as possible. Which of the following Nmap scan syntaxes would BEST accomplish this objective?

Answer options

• A. nmap ג€"sT ג€"vvv ג€"O 192.168.1.0/24 ג€"PO
• B. nmap ג€"sV 192.168.1.0/24 ג€"PO
• C. nmap ג€"sA ג€"v ג€"O 192.168.1.0/24
• D. nmap ג€"sS ג€"O 192.168.1.0/24 ג€"T1

Correct answer: D

Explanation

The correct answer is D because the -sS (SYN scan) is stealthier and less likely to trigger alarms compared to other scan types. Options A, B, and C utilize methods that are more intrusive, such as TCP connect scans or service version detection, which can easily be detected by security systems.