최신 CS0-003 무료덤프 - CompTIA Cybersecurity Analyst (CySA+) Certification

문제1

Which of the following BEST describes HSM?

A. A computing device that manages cryptography, decrypts traffic, and maintains library calls

B. A computing device that manages digital keys, performs encryption/decryption functions, and maintains other cryptographic functions

C. A computing device that manages algorithms, performs entropy functions, and maintains digital signatures

D. A computing device that manages physical keys, encrypts devices, and creates strong cryptographic functions

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제2

A security analyst discovers suspicious host activity while performing monitoring activities. The analyst pulls a packet capture for the activity and sees the following:

Follow TCP stream:

Which of the following describes what has occurred?

A. The host downloaded an application from utoftor.com.

B. The host attempted to make a secure connection to utoftor.com.

C. The host rejected the connection from utoftor.com.

D. The host attempted to download an application from utoftor.com.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제3

An employee is suspected of misusing a company-issued laptop. The employee has been suspended pending an investigation by human resources. Which of the following is the best step to preserve evidence?

A. Make a copy of the files as a backup on the server.

B. Disable the user's network account and access to web resources.

C. Make a forensic image of the device and create a SHA-1 hash.

D. Place a legal hold on the device and the user's network share.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제4

An analyst is reviewing system logs while threat hunting:

Which of the following hosts should be investigated first?

A. PC3

B. PC5

C. PC1

D. PC2

E. PC4

정답: B

문제5

The Chief Information Security Officer is directing a new program to reduce attack surface risks and threats as part of a zero trust approach. The IT security team is required to come up with priorities for the program. Which of the following is the best priority based on common attack frameworks?

A. Conduct thorough incident response

B. Employ a network-based IDS

C. Enable SSO to enterprise applications

D. Reduce the administrator and privileged access accounts

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제6

A security analyst at a company called ACME Commercial notices there is outbound traffic to a host IP that resolves to https://office365password.acme.co. The site's standard VPN logon page is www.acme.com/logon. Which of the following is most likely true?

A. A social engineering attack is underway.

B. The security operations center is performing a routine password audit.

C. This is a normal password change URL.

D. A new VPN gateway has been deployed.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제7

An analyst is remediating items associated with a recent incident. The analyst has isolated the vulnerability and is actively removing it from the system. Which of the following steps of the process does this describe?

A. Eradication

B. Containment

C. Preparation

D. Recovery

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제8

Which of the following is a difference between SOAR and SCAP?

A. SOAR eliminates the need for people to perform remediation, while SCAP relies heavily on security analysts

B. SOAR has a wider breadth of capability using orchestration and automation, while SCAP is more limited in scope

C. SOAR can be executed taster and with fewer false positives than SCAP because of advanced heuristics

D. SOAR is less expensive because process and vulnerability remediation is more automated than what SCAP does

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제9

An XSS vulnerability was reported on one of the public websites of a company. The security department confirmed the finding and needs to provide a recommendation to the application owner. Which of the following recommendations will best prevent this vulnerability from being exploited? (Choose two.)

A. Configure TLS v1.3 on the website.

B. Take the website offline until it is patched.

C. Fix the vulnerability using a virtual patch at the WAF.

D. Implement an IPS in front of the web server.

E. Enable MFA on the website.

F. Implement a compensating control in the source code.

정답: C,F

설명: (DumpTOP 회원만 볼 수 있음)

문제10

After identifying a threat, a company has decided to implement a patch management program to remediate vulnerabilities. Which of the following risk management principles is the company exercising?

A. Mitigate

B. Avoid

C. Accept

D. Transfer

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제11

After conducting a cybersecurity risk assessment for a new software request, a Chief Information Security Officer (CISO) decided the risk score would be too high. The CISO refused the software request. Which of the following risk management principles did the CISO select?

A. Mitigate

B. Avoid

C. Accept

D. Transfer

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제12

An organization's internal department frequently uses a cloud provider to store large amounts of sensitive data. A threat actor has deployed a virtual machine to attack another virtual machine to gain access to the data. Through the use of the cloud host's hypervisor, the threat actor has escalated the access rights. Which of the following actions would be BEST to remediate the vulnerability the attacker has used to exploit the system?

A. Sandbox the virtual machine.

B. Update lo the secure hypervisor version.

C. Implement dedicated hardware for each customer.

D. Implement an MFA solution.

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제13

An analyst is evaluating a vulnerability management dashboard. The analyst sees that a previously remediated vulnerability has reappeared on a database server. Which of the following is the most likely cause?

A. A rollback had been executed on the instance.

B. The finding is a false positive and should be ignored.

C. The vulnerability scanner was configured without credentials.

D. The vulnerability management software needs to be updated.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

최신 CS0-003 무료덤프 - CompTIA Cybersecurity Analyst (CySA+) Certification

우리와 연락하기

유용한 링크

최신 업데이트