CompTIA PenTest+ (PT0-003) — Question 135
While performing reconnaissance, a penetration tester attempts to identify publicly accessible ICS and IoT systems. Which of the following tools is most effective for this task?
Answer options
- A. theHarvester
- B. Shodan
- C. Amass
- D. Nmap
Correct answer: B
Explanation
Shodan is specifically designed to search for Internet-connected devices, making it highly effective for discovering ICS and IoT systems. While theHarvester, Amass, and Nmap have their own strengths in gathering information, they are not as specialized for identifying publicly accessible IoT and ICS systems as Shodan is.