CompTIA Security+ (SY0-501) — Question 542

Which of the following BEST explains the difference between a credentialed scan and a non-credentialed scan?

Answer options

• A. A credentialed scan sees devices in the network, including those behind NAT, while a non-credentialed scan sees outward-facing applications.
• B. A credentialed scan will not show up in system logs because the scan is running with the necessary authorization, while non-credentialed scan activity will appear in the logs.
• C. A credentialed scan generates significantly more false positives, while a non-credentialed scan generates fewer false positives.
• D. A credentialed scan sees the system the way an authorized user sees the system, while a non-credentialed scan sees the system as a guest.

Correct answer: D

Explanation

The correct answer is D because a credentialed scan has access to the system as an authorized user, allowing it to detect vulnerabilities and configurations that a non-credentialed scan, which operates with limited access, cannot see. Options A and B misunderstand the nature of the scans regarding access levels and logging, while option C incorrectly states the relationship between credentialed scans and false positives.