Which of the following business challenges could be solved by using a vulnerability scanner?
A.
Auditors want to discover if all systems are following a standard naming convention.
B.
A web server was compromised and management needs to know if any further systems were
compromised.
C.
There is an emergency need to remove administrator access from multiple machines for an
employee that quit.
D.
There is a monthly requirement to test corporate compliance with host application usage and
security policies.
D
I think it’s B. You run a vulnerability scanner to look for further vulnerabilities in other systems. The answer D is just something you do in a regular basis, with or without vulnerability scanner.
You could use it for B, to look for example other services running that should not be.
But D is a better answer since “security policies”, which would alert for running of irregular services and compliance with patch management.
you don’t use a vuln scanner to see if a system was breached. unless you know that vuln they used, write/incorp into your own scanner and run it.