CompTIA PenTest+ (PT0-002) — Question 265

A penetration tester wants to identify the most common TCP ports on 10.7.8.69. Which of the following is the best Nmap command for this task?

Answer options

• A. nmap 10.7.8.69 -sS -sA -sV -F
• B. nmap 10.7.8.69 -sT -sA -p1-65535
• C. nmap 10.7.8.69 -sC -sV -Pn
• D. nmap 10.7.8.69 -sX -sU --top-ports

Correct answer: C

Explanation

The correct answer is C, as it uses the -sC option for default scripts and -sV for version detection, which are effective for identifying common services on TCP ports without scanning all ports. The other options either scan all ports, which is not necessary for identifying common ones, or use inappropriate scan types that do not focus on TCP ports.