Containers (e.g., Docker, Kubernetes) require specialized scanning tools to detect vulnerabilities.
Trivy (Option B):
Trivy is an open-source vulnerability scanner designed specifically for containers and Kubernetes environments.
It scans container images, repositories, and running containers for known vulnerabilities (CVEs).
[Reference: CompTIA PenTest+ PT0-003 Official Study Guide - "Container Security and Vulnerability Scanning", Incorrect options:, Option A (Nikto): Web server scanner, not container-focused., Option C (Nessus): General network vulnerability scanner, but lacks container-specific scanning., Option D (Nmap): Network mapper, not a vulnerability scanner., ]
Submit