1. Home
  2. CompTIA
  3. CAS-004

CompTIA CAS-004 Online Practice Questions and Exam Preparation

CAS-004 Exam Details

  • Exam Code
    :CAS-004
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :792 Q&As
  • Last Updated
    :May 28, 2026

CompTIA CAS-004 Online Questions & Answers

  • Question 491:

    Based on PCI DSS v3.4, One Particular database field can store data, but the data must be unreadable. Which of the following data objects meets this requirement?

    A. PAN
    B. CVV2
    C. Cardholder name
    D. expiration date

  • Question 492:

    Prior to a risk assessment inspection, the Chief Information Officer tasked the systems administrator with analyzing and reporting any configuration issues on the information systems, and then verifying existing security settings. Which of the following would be BEST to use?

    A. SCAP
    B. CVSS
    C. XCCDF
    D. CMDB

  • Question 493:

    A security analyst is investigating a possible buffer overflow attack. The following output was found on a user's workstation:

    graphic.linux_randomization.prg

    Which of the following technologies would mitigate the manipulation of memory segments?

    A. NX bit
    B. ASLR
    C. DEP
    D. HSM

  • Question 494:

    A security analyst has been tasked with assessing a new API. The analyst needs to be able to test for a variety of different inputs, both malicious and benign, in order to close any vulnerabilities. Which of the following should the analyst use to achieve this goal?

    A. Static analysis
    B. Input validation
    C. Fuzz testing
    D. Post-exploitation

  • Question 495:

    A company runs a well ttended, on-premises fitness club for its employees, about 200 of them each day. Employees want to sync center's login and attendance program with their smartphones. Human resources, which manages the contract for the fitness center, has asked the security architecture to help draft security and privacy requirements.

    Which of the following would BEST address these privacy concerns?

    A. Use biometric authentication.
    B. Utilize geolocation/geofencing.
    C. Block unauthorized domain bridging.
    D. Implement containerization

  • Question 496:

    An organization is referencing NIST best practices for BCP creation while reviewing current internal organizational processes for mission-essential items. Which of the following phases establishes the identification and prioritization of critical systems and functions?

    A. Review a recent gap analysis.
    B. Perform a cost-benefit analysis.
    C. Conduct a business impact analysis.
    D. Develop an exposure factor matrix.

  • Question 497:

    A pharmaceutical company was recently compromised by ransomware. Given the following EDR output from the process investigation:

    On which of the following devices and processes did the ransomware originate?

    A. cpt-ws018, powershell.exe
    B. cpt-ws026, DearCry.exe
    C. cpt-ws002, NO-AV.exe
    D. cpt-ws026, NO-AV.exe
    E. cpt-ws002, DearCry.exe

  • Question 498:

    A security administrator is trying to securely provide public access to specific data from a web application. Clients who want to access the application will be required to:

    1.Only allow the POST and GET options.

    2.Transmit all data secured with TLS 1.2 or greater.

    3.Use specific URLs to access each type of data that is requested.

    4.Authenticate with a bearer token.

    Which of the following should the security administrator recommend to meet these requirements?

    A. API gateway
    B. Application load balancer
    C. Web application firewall
    D. Reverse proxy

  • Question 499:

    The following messages are displayed when a VPN client is attempting to connect to an OpenVPN server:

    OpenSSL: error: 140760FC:SSL routines: SSL23_GET_CLIENT_HELLO: unknown protocol'

    TLS_ERROR: BIO read tls_read_plaintext error'

    TLS_ERROR: TLS object->incoming plaintext read error'

    TLS_ERROR: TLS handshake failed'

    SIGUSR1 [soft, tls_error] received, client_instance restarting'

    Which of the following best explains the cause of these messages?

    A. The client is attempting to establish an unencrypted connection with the server.
    B. The server is unreachable to the client and a connection cannot be established.
    C. The client is using LibreSSL libraries while the server is using OpenSSL libraries.
    D. A TLS version mismatch exists between the client and the server.

  • Question 500:

    A threat analyst notices the following URL while going through the HTTP logs.

    Which of the following attack types is the threat analyst seeing?

    A. SQL injection
    B. CSRF
    C. Session hijacking
    D. XSS

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-004 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.