CAS-002 Exam Details

  • Exam Code
    :CAS-002
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :733 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-002 Online Questions & Answers

  • Question 721:

    A security administrator was recently hired in a start-up company to represent the interest of security and to assist the network team in improving security in the company. The sales team is continuously contacting the security administrator to answer security questions posed by potential customers/clients. Which of the following is the BEST strategy to minimize the frequency of these requests?

    A. Request the major stakeholder hire a security liaison to assist the sales team with security-related questions.
    B. Train the sales team about basic security, and make them aware of the security policies and procedures of the company.
    C. The job description of the security administrator is to assist the sales team; thus the process should not be changed.
    D. Compile a list of the questions, develop an FAQ on the website, and train the sales team about basic security concepts.

  • Question 722:

    During a software development project review, the cryptographic engineer advises the project manager that security can be greatly improved by significantly slowing down the runtime of a hashing algorithm and increasing the entropy by passing the input and salt back during each iteration. Which of the following BEST describes what the engineer is trying to achieve?

    A. Monoalphabetic cipher
    B. Confusion
    C. Root of trust
    D. Key stretching
    E. Diffusion

  • Question 723:

    The security administrator finds unauthorized tables and records, which were not present before, on a Linux database server. The database server communicates only with one web server, which connects to the database server via an

    account with SELECT only privileges.

    Web server logs show the following:

    90.76.165.40 ?- [08/Mar/2014:10:54:04] "GET calendar.php?create%20table%20hidden HTTP/1.1" 200 90.76.165.40 ?- [08/Mar/2014:10:54:05] "GET ../../../root/.bash_history HTTP/1.1" 200 90.76.165.40 ?- [08/ Mar/2014:10:54:04] "GET index.php? user<;scrip>;Creat<;/scrip>; HTTP/1.1" 200 5724 The security administrator also inspects the following file system locations on the database server using the command `ls -al /root'

    drwxrwxrwx 11 root root 4096 Sep 28 22:45 .

    drwxr-xr-x 25 root root 4096 Mar 8 09:30 ..

    -rws------ 25 root root 4096 Mar 8 09:30 .bash_history

    -rw------- 25 root root 4096 Mar 8 09:30 .bash_history -rw------- 25 root root 4096 Mar 8 09:30 .profile -rw------- 25 root root 4096 Mar 8 09:30 .ssh Which of the following attacks was used to compromise the database server and what can the security administrator implement to detect such attacks in the future? (Select TWO).

    A. Privilege escalation
    B. Brute force attack
    C. SQL injection
    D. Cross-site scripting
    E. Using input validation, ensure the following characters are sanitized.
    F. Update crontab with: find / \( -perm -4000 \) ype f rint0 | xargs -0 ls | email.sh
    G. Implement the following PHP directive: $clean_user_input = addslashes($user_input)
    H. Set an account lockout policy

  • Question 724:

    A small customer focused bank with implemented least privilege principles, is concerned about the possibility of branch staff unintentionally aiding fraud in their day to day interactions with customers. Bank staff has been encouraged to build friendships with customers to make the banking experience feel more personal. The security and risk team have decided that a policy needs to be implemented across all branches to address the risk. Which of the following BEST addresses the security and risk team's concerns?

    A. Information disclosure policy
    B. Awareness training
    C. Job rotation
    D. Separation of duties

  • Question 725:

    An organization is finalizing a contract with a managed security services provider (MSSP) that is responsible for primary support of all security technologies. Which of the following should the organization require as part of the contract to ensure the protection of the organization's technology?

    A. An operational level agreement
    B. An interconnection security agreement
    C. A non-disclosure agreement
    D. A service level agreement

  • Question 726:

    select id, firstname, lastname from authors

    User input= firstname= Hack;man

    lastname=Johnson

    Which of the following types of attacks is the user attempting?

    A. XML injection
    B. Command injection
    C. Cross-site scripting
    D. SQL injection

  • Question 727:

    A new web application system was purchased from a vendor and configured by the internal development team. Before the web application system was moved into production, a vulnerability assessment was conducted. A review of the vulnerability assessment report indicated that the testing team discovered a minor security issue with the configuration of the web application. The security issue should be reported to:

    A. CISO immediately in an exception report.
    B. Users of the new web application system.
    C. The vendor who supplied the web application system.
    D. Team lead in a weekly report.

  • Question 728:

    After a security incident, an administrator revokes the SSL certificate for their web server www.company.com. Later, users begin to inform the help desk that a few other servers are generating certificate errors: ftp.company.com, mail.company.com, and partners.company.com. Which of the following is MOST likely the reason for this?

    A. Each of the servers used the same EV certificate.
    B. The servers used a wildcard certificate.
    C. The web server was the CA for the domain.
    D. Revoking a certificate can only be done at the domain level.

  • Question 729:

    A company has received the contract to begin developing a new suite of software tools to replace an aging collaboration solution. The original collaboration solution has been in place for nine years, contains over a million lines of code, and took over two years to develop originally. The SDLC has been broken up into eight primary stages, with each stage requiring an in-depth risk analysis before moving on to the next phase. Which of the following software development methods is MOST applicable?

    A. Spiral model
    B. Incremental model
    C. Waterfall model
    D. Agile model

  • Question 730:

    ABC Corporation has introduced token-based authentication to system administrators due to the risk of password compromise. The tokens have a set of HMAC counter-based codes and are valid until they are used. Which of the following types of authentication mechanisms does this statement describe?

    A. TOTP
    B. PAP
    C. CHAP
    D. HOTP

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.