CompTIA PenTest+ (PT0-003) — Question 104

A penetration tester is searching for vulnerabilities or misconfigurations on a container environment. Which of the following tools will the tester most likely use to achieve this objective?

Answer options

• A. Nikto
• B. Trivy
• C. Nessus
• D. Nmap

Correct answer: B

Explanation

Trivy is specifically designed for scanning container images for vulnerabilities, making it the most suitable choice for this task. Nikto focuses on web server vulnerabilities, Nessus is a general vulnerability scanner for various systems, and Nmap is primarily a network scanning tool, which makes them less appropriate for container-specific assessments.