CompTIA CAS-003 Online Practice Questions and Exam Preparation

CompTIA CAS-003 Online Questions & Answers

• Question 601:

  A security consultant is performing a penetration test on www.comptia.org and wants to discover the DNS administrator's email address to use in a later social engineering attack. The information listed with the DNS registrar is private. Which of the following commands will also disclose the email address?

  A. dig comptia.org
  B. whois comptia.org
  C. nslookup ype=SOA comptia.org
  D. dnsrecon comptia.org hostmaster
  C. nslookup ype=SOA comptia.org

• Question 602:

  A hospital uses a legacy electronic medical record system that requires multicast for traffic between the application servers and databases on virtual hosts that support segments of the application. Following a switch upgrade, the electronic medical record is unavailable despite physical connectivity between the hypervisor and the storage being in place. The network team must enable multicast traffic to restore access to the electronic medical record. The ISM states that the network team must reduce the footprint of multicast traffic on the network.

  

  Using the above information, on which VLANs should multicast be enabled?

  A. VLAN201, VLAN202, VLAN400
  B. VLAN201, VLAN202, VLAN700
  C. VLAN201, VLAN202, VLAN400, VLAN680, VLAN700
  D. VLAN400, VLAN680, VLAN700
  D. VLAN400, VLAN680, VLAN700

• Question 603:

  A security consultant is attempting to discover if the company is utilizing databases on client machines to store the customer data. The consultant reviews the following information:

  

  Which of the following commands would have provided this output?

  A. arp -s
  B. netstat -a
  C. ifconfig -arp
  D. sqlmap -w
  B. netstat -a

• Question 604:

  A company recently implemented a variety of security services to detect various types of traffic that pose a threat to the company. The following services were enabled within the network:

  1.

  Scan of specific subsets for vulnerabilities

  2.

  Categorizing and logging of website traffic

  3.

  Enabling specific ACLs based on application traffic

  4.

  Sending suspicious files to a third-party site for validation

  A report was sent to the security team that identified multiple incidents of users sharing large amounts of data from an on-premise server to a public site. A small percentage of that data also contained malware and spyware

  Which of the following services MOST likely identified the behavior and sent the report?

  A. Content filter
  B. User behavioral analytics
  C. Application sandbox
  D. Web application firewall
  E. Endpoint protection
  F. Cloud security broker
  B. User behavioral analytics

• Question 605:

  ABC Corporation has introduced token-based authentication to system administrators due to the risk of password compromise. The tokens have a set of HMAC counter-based codes and are valid until they are used. Which of the following types of authentication mechanisms does this statement describe?

  A. TOTP
  B. PAP
  C. CHAP
  D. HOTP
  D. HOTP

  ---

  The question states that the HMAC counter-based codes and are valid until they are used. These are "one-time" use codes.

  HOTP is an HMAC-based one-time password (OTP) algorithm.

  HOTP can be used to authenticate a user in a system via an authentication server. Also, if some more steps are carried out (the server calculates subsequent OTP value and sends/displays it to the user who checks it against subsequent

  OTP value calculated by his token), the user can also authenticate the validation server.

  Both hardware and software tokens are available from various vendors. Hardware tokens implementing OATH HOTP tend to be significantly cheaper than their competitors based on proprietary algorithms. Some products can be used for

  strong passwords as well as OATH HOTP.

  Software tokens are available for (nearly) all major mobile/smartphone platforms.

• Question 606:

  A systems analyst is concerned that the current authentication system may not provide the appropriate level of security. The company has integrated WAYF within its federation system and implemented a mandatory two-step authentication system. Some accounts are still becoming compromised via phishing attacks that redirect users to a fake portal, which is automatically collecting and replaying the stolen credentials. Which of the following is a technical solution that would BEST reduce the risk of similar compromises?

  A. Security awareness training
  B. Push-based authentication
  C. Software-based TOTP
  D. OAuth tokens
  E. Shibboleth
  C. Software-based TOTP

• Question 607:

  A security administrator wants to implement an MDM solution to secure access to company email and files in a BYOD environment. The solution must support the following requirements:

  1.

  Company administrators should not have access to employees' personal information.

  2.

  A rooted or jailbroken device should not have access to company sensitive information.

  Which of the following BEST addresses the associated risks?

  A. Code signing
  B. VPN
  C. FDE
  D. Containerization
  A. Code signing

• Question 608:

  An administrator is tasked with securing several website domains on a web server. The administrator elects to secure www.example.com, mail.example.org, archive.example.com, and www.example.org with the same certificate. Which of the following would allow the administrator to secure those domains with a single issued certificate?

  A. Intermediate Root Certificate
  B. Wildcard Certificate
  C. EV x509 Certificate
  D. Subject Alternative Names Certificate
  D. Subject Alternative Names Certificate

  ---

  Subject Alternative Names let you protect multiple host names with a single SSL certificate. Subject Alternative Names allow you to specify a list of host names to be protected by a single SSL certificate. When you order the certificate, you will specify one fully qualified domain name in the common name field. You can then add other names in the Subject Alternative Names field.

• Question 609:

  The security administrator of a small firm wants to stay current on the latest security vulnerabilities and attack vectors being used by crime syndicates and nation-states. The information must be actionable and reliable. Which of the following would BEST meet the needs of the security administrator?

  A. Software vendor threat reports
  B. White papers
  C. Security blogs
  D. Threat data subscription
  D. Threat data subscription

• Question 610:

  A company that must comply with regulations is searching for a laptop encryption product to use for its 40,000 end points. The product must meet regulations but also be flexible enough to minimize overhead and support in regards to password resets and lockouts. Which of the following implementations would BEST meet the needs?

  A. A partition-based software encryption product with a low-level boot protection and authentication
  B. A container-based encryption product that allows the end users to select which files to encrypt
  C. A full-disk hardware-based encryption product with a low-level boot protection and authentication
  D. A file-based encryption product using profiles to target areas on the file system to encrypt
  D. A file-based encryption product using profiles to target areas on the file system to encrypt

  ---

  The question is asking for a solution that will minimize overhead and support in regards to password resets and lockouts.

  File based encryption products operate under the context of the computer user's user account. This means that the user does not need to remember a separate password for the encryption software. If the user forgets his user account

  password or is locked out due to failed login attempts, the support department can reset his password from a central database of user accounts (such as Active Directory) without the need to visit the user's computer.

  Profiles can be used to determine areas on the file system to encrypt such as Document folders.