CS0-001 Exam Details

  • Exam Code
    :CS0-001
  • Exam Name
    :CompTIA Cybersecurity Analyst (CySA+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :416 Q&As
  • Last Updated
    :Feb 05, 2022

CompTIA CS0-001 Online Questions & Answers

  • Question 81:

    A cybersecurity consultant is reviewing the following output from a vulnerability scan against a newly installed MS SQL Server 2012 that is slated to go into production in one week:

    Based on the above information, which of the following should the system administrator do? (Select TWO).

    A. Verify the vulnerability using penetration testing tools or proof-of-concept exploits.
    B. Review the references to determine if the vulnerability can be remotely exploited.
    C. Mark the result as a false positive so it will show in subsequent scans.
    D. Configure a network-based ACL at the perimeter firewall to protect the MS SQL port.
    E. Implement the proposed solution by installing Microsoft patch Q316333.

  • Question 82:

    A vulnerability analyst needs to identify all systems with unauthorized web servers on the 10.1.1.0/24 network. The analyst uses the following default Nmap scan:

    nmap –sV –p 1-65535 10.1.1.0/24

    Which of the following would be the result of running the above command?

    A. This scan checks all TCP ports.
    B. This scan probes all ports and returns open ones.
    C. This scan checks all TCP ports and returns versions.
    D. This scan identifies unauthorized servers.

  • Question 83:

    A technician is troubleshooting a desktop computer with low disk space. The technician reviews the following information snippets:

    Which of the following should the technician do to BEST resolve the issue based on the above information? (Choose two.)

    A. Delete the movies/movies directory
    B. Disable the movieDB service
    C. Enable OS auto updates
    D. Install a file integrity tool
    E. Defragment the disk

  • Question 84:

    A cybersecurity analyst is completing an organization's vulnerability report and wants it to reflect assets accurately. Which of the following items should be in the report?

    A. Processor utilization
    B. Virtual hosts
    C. Organizational governance
    D. Log disposition
    E. Asset isolation

  • Question 85:

    The development team currently consists of three developers who each specialize in a specific programming language:

    Developer 1 – C++/C# Developer 2 – Python Developer 3 – Assembly

    Which of the following SDLC best practices would be challenging to implement with the current available staff?

    A. Fuzzing
    B. Peer review
    C. Regression testing
    D. Stress testing

  • Question 86:

    Which of the following is a vulnerability that is specific to hypervisors?

    A. DDoS
    B. VLAN hopping
    C. Weak encryption
    D. WMescape

  • Question 87:

    A cybersecurity analyst has received the laptop of a user who recently left the company. The analyst types `history' into the prompt, and sees this line of code in the latest bash history:

    This concerns the analyst because this subnet should not be known to users within the company. Which of the following describes what this code has done on the network?

    A. Performed a ping sweep of the Class C network.
    B. Performed a half open SYB scan on the network.
    C. Sent 255 ping packets to each host on the network.
    D. Sequentially sent an ICMP echo reply to the Class C network.

  • Question 88:

    In comparison to non-industrial IT vendors, ICS equipment vendors generally:

    A. rely less on proprietary code in their hardware products.
    B. have more mature software development models.
    C. release software updates less frequently.
    D. provide more expensive vulnerability reporting.

  • Question 89:

    While reviewing firewall logs, a security analyst at a military contractor notices a sharp rise in activity from a foreign domain known to have well-funded groups that specifically target the company's RandD department. Historical data reveals other corporate assets were previously targeted. This evidence MOST likely describes:

    A. an APT.
    B. DNS harvesting.
    C. a zero-day exploit.
    D. corporate espionage.

  • Question 90:

    A manufacturing company has decided to participate in direct sales of its products to consumers. The company decides to use a subdomain of its main site with its existing cloud service provider as the portal for e-commerce. After launch, the site is stable and functions properly, but after a robust day of sales, the site begins to redirect to a competitor's landing page. Which of the following actions should the company's security team take to determine the cause of the issue and

    minimize the scope of impact?

    A. Engage a third party to provide penetration testing services to see if an exploit can be found
    B. Check DNS records to ensure Cname or alias records are in place for the subdomain
    C. Query the cloud provider to determine the nature of the DNS attack and find out which other clients are affected
    D. Check the DNS records to ensure a correct MX record is established for the subdomain

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CS0-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.