Which system uses scanning software to detect known security issues such as bad passwords and ongoing attacks?

The correct choice relates to systems specifically designed to monitor and analyze network traffic for signs of security breaches, vulnerabilities, and ongoing attacks. Intrusion detection systems (IDS) are specialized tools that utilize scanning software to examine data packets and network activity, identifying patterns that may indicate known security threats like poor password usage or active exploitation attempts.

What sets IDS apart is their capability to not only recognize and log these events but also to alert administrators about potential threats in real-time. They often utilize signatures based on previously identified security issues, making them effective at catching known vulnerabilities before they can be exploited further. This proactive monitoring is vital for maintaining a secure IT environment and mitigating risks to sensitive data and infrastructure.

In contrast, stateful inspections focus more on tracking the state of active connections and are not primarily aimed at detecting ongoing attacks. Application proxy filtering technologies provide a level of security by controlling and filtering application-level traffic but do not specifically scan for known security issues. Packet filtering technologies inspect packets at a basic level without the advanced detection capabilities that characterize intrusion detection systems.