CompTIA PenTest+ (PT1-002) — Question 49

The results of an Nmap scan are as follows:
Starting Nmap 7.80 ( https://nmap.org ) at 2021-01-24 01:10 EST
Nmap scan report for ( 10.2.1.22 )
Host is up (0.0102s latency).

Not shown: 998 filtered ports -

Port State Service -
80/tcp open http
|_http-title: 80F 22% RH 1009.1MB (text/html)
|_http-slowloris-check:
| VULNERABLE:
| Slowloris DoS Attack
| <..>
Device type: bridge|general purpose
Running (JUST GUESSING) : QEMU (95%)

OS CPE: cpe:/a:qemu:qemu -
No exact OS matches found for host (test conditions non-ideal).
OS detection performed. Please report any incorrect results at https://nmap.org/submit/.
Nmap done: 1 IP address (1 host up) scanned in 107.45 seconds
Which of the following device types will MOST likely have a similar response? (Choose two.)

Answer options

• A. Network device
• B. Public-facing web server
• C. Active Directory domain controller
• D. IoT/embedded device
• E. Exposed RDP
• F. Print queue

Correct answer: B, D

Explanation

The correct answers are B and D because a public-facing web server typically has open ports and can be vulnerable to attacks like Slowloris, similar to what the scan showed. IoT/embedded devices may also respond similarly due to their networking capabilities and potential exposure, unlike the other options which are less likely to have the same open port configuration or vulnerabilities.