Question

Tiffany needs to assess the patch level of a Windows 2012 server and wants to use a freely available tool to check the system for security issues. Which of the following tools will provide the most detail about specific patches installed or missing from her machine?

A. nmap
B. Nessus
C. MBSA
D. Metasploit

Answer 1

Microsoft Baseline Security Analyzer (MBSA) provides the most detail about specific patches installed or missing on a Windows 2012 server. So the correct answer is option B.

Step-by-step explanation:

To assess the patch level of a Windows 2012 server and check for security issues, Tiffany can utilize several tools. Of the options provided, Nessus would give the most detailed information about specific patches installed or missing from the machine.

Nessus is a comprehensive vulnerability scanning tool that can detect missing patches, and vulnerabilities and provide detailed remediation steps. Nmap can identify open ports and services but isn't tailored for patches.

Microsoft Baseline Security Analyzer (MBSA) specifically checks for missing Microsoft patches but may not provide as extensive detail as Nessus. Metasploit is used primarily for penetration testing and may help in verifying the existence of a particular vulnerability rather than patch assessment.