Practice Exams:

Free CAS-004 Exam Braindumps

Pass your CompTIA Advanced Security Practitioner (CASP+) Exam exam with these free Questions and Answers

Page 6 of 69
PDF with 342 Questions
QUESTION 21

A pharmaceutical company recently experienced a security breach within its customer-facing web portal. The attackers performed a SQL injection attack and exported tables from the company’s managed database, exposing customer information.
The company hosts the application with a CSP utilizing the IaaS model. Which of the following parties is ultimately responsible for the breach?

  1. A. The pharmaceutical company
  2. B. The cloud software provider
  3. C. The web portal software vendor
  4. D. The database software vendor

Correct Answer: A

QUESTION 22

A security engineer needs to implement a solution to increase the security posture of user endpoints by providing more visibility and control over local administrator accounts. The endpoint security team is overwhelmed with alerts and wants a solution that has minimal operational burdens. Additionally, the solution must maintain a positive user experience after implementation.
Which of the following is the BEST solution to meet these objectives?

  1. A. Implement Privileged Access Management (PAM), keep users in the local administrators group, and enable local administrator account monitoring.
  2. B. Implement PAM, remove users from the local administrators group, and prompt users for explicit approval when elevated privileges are required.
  3. C. Implement EDR, remove users from the local administrators group, and enable privilege escalation monitoring.
  4. D. Implement EDR, keep users in the local administrators group, and enable user behavior analytics.

Correct Answer: B

QUESTION 23

Which of the following agreements includes no penalties and can be signed by two entities that are working together toward the same goal?

  1. A. MOU
  2. B. NDA
  3. C. SLA
  4. D. ISA

Correct Answer: A

QUESTION 24

A company’s employees are not permitted to access company systems while traveling internationally. The company email system is configured to block logins based on geographic location, but some employees report their mobile phones continue to sync email traveling . Which of the following is the MOST likely explanation:? (Select TWO.)

  1. A. Outdated escalation attack
  2. B. Privilege escalation attack
  3. C. VPN on the mobile device
  4. D. Unrestricted email administrator accounts
  5. E. Chief use of UDP protocols
  6. F. Disabled GPS on mobile devices

Correct Answer: CF

QUESTION 25

An analyst execute a vulnerability scan against an internet-facing DNS server and receives the following report:
CAS-004 dumps exhibit
Which of the following tools should the analyst use FIRST to validate the most critical vulnerability?

  1. A. Password cracker
  2. B. Port scanner
  3. C. Account enumerator
  4. D. Exploitation framework

Correct Answer: A

Page 6 of 69
PDF with 342 Questions

Post your Comments and Discuss CompTIA CAS-004 exam with other Community members: