I am confused about the Vulnerabilities scans, what does it mean credential and non credential vulnerabilities scans???
And what does it mean intrusive and non-intrusive vulnerabilities scans????
Could you please simplify as much as you can!!!!!!
A non-credentialed scan simply means that you don't have a username:password or security token that would allow you to access areas of the network that are protected by an authentication mechanism like a login.
A credentialed scan means that you do have a username:password or security token to access protected network assets.
A non-intrusive scan is basically a simple vulnerability scan. It includes things like checking for open ports, security configurations, update/patch compliance. etc.
An intrusive scan will go further by attempting to actually exploit known vulnerabilities.
I hope that helps clear things up for you.
As usual your explanations are so clear and useful, I do thank you so much.