A security analyst sees building sensors on a network that respond on a non-standard port. They suspect there is a custom communication in use. Which action would best confirm the actual service on that port?
Check DNS records and see if any service reference matches the suspected protocol
Rely on a standard port enumeration method to match the displayed banners
Inspect certificate information on the port to identify the device’s service
Use a script that tests known commands and checks for specific responses
Using a specialized scan or script that issues recognized command sequences for these devices reveals the real service. Simple DNS checks only identify publicly registered information, general port enumeration often provides minimal details, and reviewing certificate information helps little if the service is not relying on encryption methods.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why are scripts useful for testing non-standard ports?
Open an interactive chat with Bash
What are examples of non-standard ports and why are they used?
Open an interactive chat with Bash
How do general port enumeration methods differ from using scripts in service discovery?