CompTIA PenTest+ (PT0-002) — Question 234

A security engineer is trying to bypass a network IPS that isolates the source when the scan exceeds 100 packets per minute. The scope of the san is to identify web servers in the 10.0.0.0/16 subnet. Which of the following commands should the engineer use to achieve the objective in the least amount of time?

Answer options

• A. nmap –T3 –p 80 10.0.0.0/16 ––max-hostgroup 100
• B. nmap –T0 –p 80 10.0.0.0/16
• C. nmap –T4 –p 80 10.0.0.0/16 ––max-rate 60
• D. nmap –T5 –p 80 10.0.0.0/16 ––min-rate 80

Correct answer: B

Explanation

The correct answer is B because using -T0 applies a very slow timing template, which helps to stay under the threshold of 100 packets per minute and avoids triggering the IPS. The other options either exceed the packet rate limit or do not provide a slow enough scan rate to bypass the IPS effectively.