최신 CAS-005 무료덤프 - CompTIA SecurityX Certification

문제1

A senior security engineer flags the following log file snippet as having likely facilitated an attacker's lateral movement in a recent breach:
qry_source: 19.27.214.22 TCP/53
qry_dest: 199.105.22.13 TCP/53
qry_type: AXFR
| in comptia.org
------------ directoryserver1 A 10.80.8.10
------------directoryserver2 A 10.80.8.11
------------ directoryserver3 A 10.80.8.12
------------ internal-dns A 10.80.9.1
----------- www-int A 10.80.9.3
------------ fshare A 10.80.9.4
------------ sip A 10.80.9.5
------------ msn-crit-apcs A 10.81.22.33
Which of the following solutions, if implemented, would mitigate the risk of this issue reoccurring?

A. Disabling DNS zone transfers

B. Implementing DNS masking on internal servers

C. Permitting only clients from internal networks to query DNS

D. Restricting DNS traffic to UDP/53

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제2

A security analyst is reviewing the following vulnerability assessment report:
192.168.1.5, Host = Server1, CVSS 7.5, Web Server, Remotely Executable = Yes, Exploit = Yes
205.1.3.5, Host = Server2, CVSS 6.5, Bind Server, Remotely Executable = Yes, Exploit = POC
207.1.5.7, Host = Server3, CVSS 5.5, Email Server, Remotely Executable = Yes, Exploit = Yes
192.168.1.6, Host = Server4, CVSS 9.8, Domain Controller, Remotely Executable = Yes, Exploit = Yes Which of the following should be patched first to minimize attacks against internet-facing hosts?

A. Server1

B. Server3

C. Server4

D. Server2

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제3

A security team is responding to malicious activity and needs to determine the scope of impact the malicious activity appears to affect certain version of an application used by the organization Which of the following actions best enables the team to determine the scope of Impact?

A. Inspecting egress network traffic

B. Performing a port scan

C. Reviewing the asset inventory

D. Analyzing user behavior

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제4

An external threat actor attacks public infrastructure providers. In response to the attack and during follow-up activities, various providers share information obtained during response efforts. After the attack, energy sector companies share their status and response data:
Company
SIEM
UEBA
DLP
ISAC Member
TIP Integration
Time to Detect
Time to Respond
1
Yes
No
Yes
Yes
Yes
10 minutes
20 minutes
2
Yes
Yes
Yes
Yes
No
20 minutes
40 minutes
3
Yes
Yes
No
No
Yes
12 minutes
24 minutes
Which of thefollowing is the most important issue to address to defend against future attacks?

A. Failure to implement a DLP system

B. Failure to implement a UEBA system

C. Failure to join the industry ISAC

D. Failure to integrate with the TIP

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제5

Users must accept the terms presented in a captive petal when connecting to a guest network. Recently, users have reported that they are unable to access the Internet after joining the network A network engineer observes the following:
* Users should be redirected to the captive portal.
* The Motive portal runs Tl. S 1 2
* Newer browser versions encounter security errors that cannot be bypassed
* Certain websites cause unexpected re directs
Which of the following mow likely explains this behavior?

A. The TLS ciphers supported by the captive portal ate deprecated

B. An attacker is redirecting supplicants to an evil twin WLAN.

C. Allowed traffic rules are causing the NIPS to drop legitimate traffic

D. Employment of the HSTS setting is proliferating rapidly.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제6

A company implemented a NIDS and a NIPS on the most critical environments. Since this implementation, the company has been experiencing network connectivity issues. Which of the following should the security architect recommend for a new NIDS/NIPS implementation?

A. Implementing the NIDS in the bastion host and the NIPS in the branch network router

B. Implementing a NIDS without a NIPS to increase the detection capability

C. Implementing the NIDS and the NIPS together with the main firewall

D. Implementing the NIDS with a port mirror in the core switch and the NIPS in the main firewall

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제7

A recent security audit identified multiple endpoints have the following vulnerabilities:
* Various unsecured open ports
* Active accounts for terminated personnel
* Endpoint protection software with legacy versions
* Overly permissive access rules
Which of the following would best mitigate these risks? (Select three).

A. Enabling BIOS password

B. Removal of unused accounts

C. Logging

D. Address space layout randomization

E. Patching

F. Unneeded services disabled

G. Secure boot

H. Local drive encryption

정답: B,E,F

설명: (DumpTOP 회원만 볼 수 있음)

문제8

A company wants to invest in research capabilities with the goal to operationalize the research output. Which of the following is the best option for a security architect to recommend?

A. Dark web monitoring

B. Honeypots

C. Continuous adversary emulation

D. Threat intelligence platform

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제9

Which of the following are risks associated with vendor lock-in? (Select two).

A. The client experiences increased interoperability.

B. The client can leverage a multicloud approach.

C. The vendor canchange product offerings.

D. The client receives a sufficient level of service.

E. The client experiences decreased quality of service.

F. The client can seamlessly move data.

정답: C,E

설명: (DumpTOP 회원만 볼 수 있음)

문제10

A company wants to modify its process to comply with privacy requirements after an incident involving PII data in a development environment. In order to perform functionality tests, the QA team still needs to use valid data in the specified format. Which of the following best addresses the risk without impacting the development life cycle?

A. Encrypting the data before moving into the QA environment

B. Utilizing tokenization for sensitive fields

C. Using a large language model to generate synthetic data

D. Truncating the data to make it not personally identifiable

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제11

A company is preparing to move a new version of a web application to production. No issues were reported during security scanning or quality assurance in the CI/CD pipeline. Which of the following actions should thecompany take next?

A. Merge the test branch to the main branch

B. Perform a peer review on the test branch

C. Conduct unit testing on the submitted code

D. Perform threat modeling on the production application

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제12

Which of the following best describes the reason PQC preparation is important?

A. To leverage asymmetric encryption for large amounts of data

B. To protect data against decryption due to increases in computational resource availability

C. To have larger key lengths available through key stretching

D. To improve encryption performance and speed using lightweight cryptography

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제13

A company is having issues with its vulnerability management program New devices/lPs are added and dropped regularly, making the vulnerability report inconsistent Which of the following actions should the company lake to most likely improve the vulnerability management process'

A. Request a weekly report with all new assets deployed and decommissioned

B. Implement a shadow IT detection process to avoid rogue devices on the network

C. Extend the DHCP lease lime to allow the devices to remain with the same address for a longer period.

D. Perform regular discovery scanning throughout the 11 landscape using the vulnerability management tool

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제14

Users are experiencing a variety of issueswhen trying to access corporate resources examples include
* Connectivity issues between local computers and file servers within branch offices
* Inability to download corporate applications on mobile endpoints wtiilc working remotely
* Certificate errors when accessing internal web applications
Which of the following actions are the most relevant when troubleshooting the reported issues? (Select two).

A. Enable secure authentication using NAC

B. Implement advanced WAF rules.

C. Check IPS rules

D. Restore static content on lite CDN.

E. Validate MDM asset compliance

F. Review VPN throughput

정답: E,F

설명: (DumpTOP 회원만 볼 수 있음)

문제15

An administrator brings the company's fleet of mobile devices into its PKI in order to align device WLAN NAC configurations with existing workstations and laptops. Thousands of devices need to be reconfigured in a cost-effective, time-efficient, and secure manner. Which of the following actions best achieve this goal?
(Select two)

A. Configuring SCEP on the CA with an OTP for bulk device enrollment

B. Using the existing MDM solution to integrate with directory services for authentication and enrollment

C. Submitting a CSR to the CA to obtain a single certificate that can be used across all devices

D. Deploying clientAuth extended key usage certificate templates

E. Deploying serverAuth extended key usage certificate templates

F. Deploying netAuth extended key usage certificate templates

정답: A,B

설명: (DumpTOP 회원만 볼 수 있음)

문제16

A company was recently infected by malware. During the root cause analysis, the company determined that several users were installing their own applications. To prevent further compromises, the company has decided it will onlyallow authorized applications to run on its systems. Which of the following should the company implement?

A. Signing

B. Access control

C. HIPS

D. Permit listing

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제17

An external SaaS solution user reports a bug associated with the role-based access control module. This bug allows users to bypass system logic associated with client segmentation in the multitenant deployment model.
When assessing the bug report, the developer finds that the same bug was previously identified and addressed in an earlier release. The developer then determines the bug was reintroduced when an existing software component was integrated from a prior version of the platform. Which of the following is the best way to prevent this scenario?

A. Regression testing

B. Software composition analysis

C. Automated test and retest

D. User acceptance testing

E. Code signing

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

최신 CAS-005 무료덤프 - CompTIA SecurityX Certification

우리와 연락하기

유용한 링크

최신 업데이트