A tester connects to a service on a custom port and sees a welcome message that reveals the product name and version. Which method would identify this information?
Request the text that the service sends when a connection is opened
Capture raw traffic flows for encrypted handshake data
Examine DNS records to find a pointer to the running platform
Review archived postings that describe server technology roles
Collecting the welcome message, also known as a banner, reveals product details like version and vendor. This helps testers plan further analysis. Sending specialized requests or capturing network traffic can indicate that a service is listening, but these steps alone may not reveal the full version details. Examining job postings is a social technique that might show insights about technologies used by a company, but it does not retrieve precise version data from the specific host. DNS lookups can map hostnames, but do not expose detailed service information.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a banner in cybersecurity?
Open an interactive chat with Bash
Why is banner grabbing useful in penetration testing?