CompTIA PenTest+ (PT0-002) — Question 173

The output from a penetration testing tool shows 100 hosts contained findings due to improper patch management. Which of the following did the penetration tester perform?

Answer options

• A. A vulnerability scan
• B. A WHOIS lookup
• C. A packet capture
• D. An Nmap scan

Correct answer: A

Explanation

The correct answer is A, as a vulnerability scan identifies weaknesses in systems, including those caused by improper patch management. Options B and C are not relevant to identifying vulnerabilities, while D, although useful for network discovery, does not specifically assess the patch status of hosts.