CompTIA PenTest+ (PT0-002) — Question 386

A penetration tester is required to perform a vulnerability scan that reduces the likelihood of false positives and increases the true positives of the results. Which of the following would MOST likely accomplish this goal?

Answer options

• A. Using OpenVAS in default mode
• B. Using Nessus with credentials
• C. Using Nmap as the root user
• D. Using OWASP ZAP

Correct answer: B

Explanation

Using Nessus with credentials allows for authenticated scanning, which provides more accurate results by identifying vulnerabilities that may not be visible during unauthenticated scans, thus reducing false positives and increasing true positives. The other options either do not provide the same level of accuracy or do not focus on minimizing false positives effectively.