During an assessment of industrial equipment, one automated tool reports multiple open ports on a controller, while another scanner does not list them. Which action best clarifies the discrepancy and reveals the actual open ports on that controller?
Exclude the second scanner's findings from further analysis
Run the first tool again with unchanged settings
Review the controller's logs and monitor network traffic
Investigate the equipment documentation for possible scanning issues
Examining logs and reviewing live traffic for the device provides clear evidence of which ports are active. Repeating a previous scan with the same parameters often produces the same results without new data, discarding one tool's output risks missing genuine vulnerabilities, and researching the documentation does not confirm the real-time network condition.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why do different scanning tools report different open ports?
Open an interactive chat with Bash
What are the benefits of reviewing logs and monitoring live network traffic?
Open an interactive chat with Bash
Why might investigating documentation not confirm real-time port activity?