Certified Ethical Hacker (CEH v12) — Question 316

Your company was hired by a small healthcare provider to perform a technical assessment on the network. What is the best approach for discovering vulnerabilities on a Windows-based computer?

Answer options

• A. Use the built-in Windows Update tool
• B. Use a scan tool like Nessus
• C. Check MITRE.org for the latest list of CVE findings
• D. Create a disk image of a clean Windows installation

Correct answer: B

Explanation

Using a scan tool like Nessus is the most effective method for discovering vulnerabilities, as it performs comprehensive scans and identifies security issues. The built-in Windows Update tool only addresses updates and patches, while checking MITRE.org provides information but does not actively scan for vulnerabilities. Creating a disk image of a clean installation does not help in identifying current vulnerabilities on the system.