What does a credentialed vulnerability scan aim to achieve?

A credentialed vulnerability scan aims to gather more in-depth information about vulnerabilities present in a system or network. By using valid credentials, the scanner can access system configurations, installed software, and security baselines that are typically not visible during uncredentialed scans. This access provides a holistic view of the vulnerabilities that might exist beyond surface-level findings, as it evaluates not just network exposure but also potential weaknesses within the authenticated environment, such as outdated software versions, misconfigurations, or compliance issues.

In contrast, the other options do not accurately represent the purpose or benefit of a credentialed scan. Finding usernames and passwords is not the focus, as the goal is to assess security vulnerabilities rather than extract sensitive information. Performing scans infrequently contradicts the need for regular assessments to keep up with evolving threats. Limiting network scanning does not align with the comprehensive nature of credentialed scans, which aim to maximize the depth of vulnerability assessment rather than restrict the scanning process.