Question

Tiffany needs to assess the patch level of a Windows 2012 server and wants to use a freely available tool to check the system for security issues. Which of the following tools will provide the most detail about specific patches installed or missing from her machine?

A.Add a note hereAdd a note here nmap
B.Add a note hereAdd a note hereNessus
C.Add a note hereAdd a note hereMBSA
D.Add a note hereAdd a note hereMetasplo

Answer 1

To assess the patch level of a Windows 2012 server, Nessus would provide detailed information on vulnerabilities, while MBSA is a free tool tailored for Windows systems to check for missing updates and configurations.

Step-by-step explanation:

Tiffany is looking to assess the patch level of a Windows 2012 server and identify security issues by checking for specific patches that are installed or missing. Among the options provided, Nessus is a robust tool that can scan for vulnerabilities and provide detailed reports on patch levels, configuration issues, and other security weaknesses. On the other hand, MBSA (Microsoft Baseline Security Analyzer) is also a viable option specifically designed for Windows systems to check for missing security updates and common security misconfigurations. While nmap is a network scanner that can detect open ports and services, it is not specifically designed for patch assessment. Metasploit is more of an exploitation framework rather than a tool for assessing patch levels. For comprehensive patch and vulnerability management, Nessus would provide the most detailed information, whereas MBSA is a good free alternative for Windows-specific assessments.