Certified Ethical Hacker (CEH v12) — Question 31
John, a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker installed a scanner on a machine belonging to one of the victims and scanned several machines on the same network to identify vulnerabilities to perform further exploitation.
What is the type of vulnerability assessment tool employed by John in the above scenario?
Answer options
- A. Agent-based scanner
- B. Network-based scanner
- C. Cluster scanner
- D. Proxy scanner
Correct answer: A
Explanation
The correct answer is A, an Agent-based scanner, as it runs on individual devices to assess vulnerabilities on the local machine and the network. The other options, such as B (Network-based scanner), typically do not require installation on the target device, while C (Cluster scanner) is irrelevant here, and D (Proxy scanner) does not fit the described method of exploitation.