Jim is having no luck performing a penetration test in company’s network. He is running the tests from home and has downloaded every security scanner that he could lay his hands on. Despite knowing the IP range of all the systems, and the exact network configuration, Jim is unable to get any useful results.
Why is Jim having these problems?
A.
Security scanners are not designed to do testing through a firewall.
B.
Security scanners cannot perform vulnerability linkage.
C.
Security scanners are only as smart as their database and cannot find unpublished vulnerabilities.
D.
All of the above.
Explanation:
The Security scanners available online are often to "outdated" to perform a live pentest against a victim.