최신 CS0-003 무료덤프 - CompTIA Cybersecurity Analyst (CySA+) Certification

문제1

A vulnerability scan shows the following issues:
Asset Type
CVSS Score
Exploit Vector
Workstations
6.5
RDP vulnerability
Storage Server
9.0
Unauthorized access due to server application vulnerability
Firewall
8.9
Default password vulnerability
Web Server
10.0
Zero-day vulnerability (vendor working on patch)
Which of the following actions should the security analyst take first?

A. Run the vulnerability scan again to verify the presence of the critical finding.

B. Forward the advisory to the web security team and initiate the prioritization strategy for the other vulnerabilities.

C. Contact the web systems administrator and request that they shut down the asset.

D. Monitor the patch releases for all items and escalate patching to the appropriate team.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제2

Which of the following makes STIX and OpenloC information readable by both humans and machines?

A. URL

B. OVAL

C. TAXII

D. XML

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제3

A security analyst needs to provide evidence of regular vulnerability scanning on the company's network for an auditing process. Which of the following is an example of a tool that can produce such evidence?

A. Wireshark

B. Nmap

C. OpenVAS

D. Burp Suite

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제4

An organization conducted a web application vulnerability assessment against the corporate website, and the following output was observed:

Which of the following tuning recommendations should the security analyst share?

A. Block requests without an X-Frame-Options header

B. Set an HttpOnlvflaq to force communication by HTTPS

C. Configure an Access-Control-Allow-Origin header to authorized domains

D. Disable the cross-origin resource sharing header

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제5

A Chief Information Security Officer wants to lock down the users' ability to change applications that are installed on their Windows systems. Which of the following is the best enterprise-level solution?

A. HIPS

B. GPO

C. Registry

D. DLP

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제6

An attacker has just gained access to the syslog server on a LAN. Reviewing the syslog entries has allowed the attacker to prioritize possible next targets. Which of the following is this an example of?

A. Service port identification

B. Passive network foot printing

C. OS fingerprinting

D. Application versioning

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제7

A managed security service provider is having difficulty retaining talent due to an increasing workload caused by a client doubling the number of devices connected to the network. Which of the following would best aid in decreasing the workload without increasing staff?

A. XDR

B. SIEM

C. EDR

D. SOAR

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제8

An organization recently changed its BC and DR plans. Which of the following would best allow for the incident response team to test the changes without any impact to the business?

A. Perform a tabletop drill based on previously identified incident scenarios.

B. Compare the current plan to lessons learned from previous incidents.

C. Migrate active workloads from the primary data center to the secondary location.

D. Simulate an incident by shutting down power to the primary data center.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제9

Which of the following risk management decisions should be considered after evaluating all other options?

A. Avoidance

B. Mitigation

C. Acceptance

D. Transfer

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제10

An end-of-life date was announced for a widely used OS. A business-critical function is performed by some machinery that is controlled by a PC, which is utilizing the OS that is approaching the end-of- life date.
Which of the following best describes a security analyst's concern?

A. Any discovered vulnerabilities will not be remediated.

B. There are no compensating controls in place for the OS.

C. An outage of machinery would cost the organization money.

D. Support will not be available for the critical machinery

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제11

An organization receives a legal hold request from an attorney. The request pertains to emails related to a disputed vendor contract. Which of the following is the first step for the security team to take to ensure compliance with the request?

A. Establish a chain of custody, starting with the attorney's request.

B. Back up the mailboxes on the server and provide the attorney with a copy.

C. Notify the departments involved to preserve potentially relevant information.

D. Publicly disclose the request to other vendors.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제12

Which of the following is a nation-state actor least likely to be concerned with?

A. Detection or prevention of reconnaissance activities.

B. Detection by MITRE ATT&CK framework.

C. Forensic analysis for legal action of the actions taken

D. Examination of its actions and objectives.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제13

A Chief Information Security Officer (CISO) is concerned that a specific threat actor who is known to target the company's business type may be able to breach the network and remain inside of it for an extended period of time.
Which of the following techniques should be performed to meet the CISO's goals?

A. Adversary emulation

B. Bug bounty

C. Passive discovery

D. Vulnerability scanning

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제14

An analyst receives threat intelligence regarding potential attacks from an actor with seemingly unlimited time and resources. Which of the following best describes the threat actor attributed to the malicious activity?

A. Insider threat

B. Organized crime

C. Nation-state

D. Ransomware group

정답: C

최신 CS0-003 무료덤프 - CompTIA Cybersecurity Analyst (CySA+) Certification

우리와 연락하기

유용한 링크

최신 업데이트