CompTIA PenTest+ (PT0-002) — Question 332

A security engineer is working to identify all email servers on a network. Which of the following commands should the engineer use to identify the servers as well as the software version the servers are running?

Answer options

• A. nmap 10.0.0.1/24 -sT -sV -p 25,110,143,465,993,995
• B. nmap 10.0.0.1/24 -sT -v -p 21,22,23,53,110,135
• C. nmap 10.0.0.1/24 -sS -sV -p 37,110,119,161,445,3389
• D. nmap 10.0.0.1/24 -sA -sU -p 80,110,443,209,389,464

Correct answer: A

Explanation

The correct answer, A, uses the nmap command with options that specifically target email ports (25, 110, 143, 465, 993, 995) and includes version detection (-sV). The other options either do not target the correct email ports or lack the version detection feature, making them ineffective for identifying email servers and their software versions.