CompTIA PenTest+ (PT0-003) — Question 76

A tester is working on an engagement that has evasion and stealth requirements. Which of the following enumeration methods is the least likely to be detected by the IDS?

Answer options

• A. curl https://api.shodan.io/shodan/host/search?key=&query=hostname:
• B. proxychains nmap -sV -T2
• C. for i in; do curl -k $i; done
• D. nmap -sV -T2

Correct answer: A

Explanation

Option A is the least likely to be detected by the IDS because it utilizes a direct API call without sending multiple packets that could trigger alerts. In contrast, options B, C, and D involve network scanning techniques or multiple requests that are more easily recognized by intrusion detection systems due to their patterns and traffic volume.