CompTIA Security+ (SY0-501) — Question 640

A penetration tester is checking to see if an internal system is vulnerable to an attack using a remote listener. Which of the following commands should the penetration tester use to verify if this vulnerability exists? (Choose two.)

Answer options

• A. tcpdump
• B. nc
• C. nmap
• D. nslookup
• E. tail
• F. tracert

Correct answer: B, C

Explanation

The correct answers are B (nc) and C (nmap) because both tools are designed to check for open ports and services, which can indicate a vulnerability to remote listeners. Options A (tcpdump) and D (nslookup) do not directly test for vulnerabilities, while E (tail) and F (tracert) serve different purposes and are not suitable for this specific task.