CompTIA PenTest+ (PT1-002) — Question 39

A penetration tester wants to scan a target network without being detected by the client's IDS. Which of the following scans is MOST likely to avoid detection?

Answer options

• A. nmap ג€"p0 ג€"T0 ג€"sS 192.168.1.10
• B. nmap ג€"sA ג€"sV --host-timeout 60 192.168.1.10
• C. nmap ג€"f --badsum 192.168.1.10
• D. nmap ג€"A ג€"n 192.168.1.10

Correct answer: A

Explanation

The correct answer is A, as the nmap command specifies a SYN scan (-sS) with a timing template of 0 (-T0), which is the slowest speed and helps to avoid detection by IDS. The other options, like -sA and -A, conduct more aggressive scans that are more easily detected by IDS systems.