CAS-004 Practice Exam Questions and Answers

CompTIA Advanced Security Practitioner (CASP+) Exam

Last Update 2 days ago
Total Questions : 521

CompTIA Advanced Security Practitioner (CASP+) Exam is stable now with all latest exam questions are added 2 days ago. Incorporating CAS-004 practice exam questions into your study plan is more than just a preparation strategy.

CAS-004 exam questions often include scenarios and problem-solving exercises that mirror real-world challenges. Working through CAS-004 dumps allows you to practice pacing yourself, ensuring that you can complete all CompTIA Advanced Security Practitioner (CASP+) Exam practice test within the allotted time frame.

CAS-004 PDF

$48
~~$119.99~~

Add to Cart

CAS-004 Testing Engine

$56
~~$139.99~~

Add to Cart

CAS-004 PDF + Testing Engine

$70.8
~~$176.99~~

Add to Cart

Question # 1

A company processes data subject to NDAs with partners that define the processing and storage constraints for the covered data. The agreements currently do not permit moving the covered data to the cloud, and the company would like to renegotiate the terms of the agreements.

Which of the following would MOST likely help the company gain consensus to move the data to the cloud?

Options:

Designing data protection schemes to mitigate the risk of loss due to multitenancy

Implementing redundant stores and services across diverse CSPs for high availability

Emulating OS and hardware architectures to blur operations from CSP view

Purchasing managed FIM services to alert on detected modifications to covered data

Discussion 0

Question # 2

A security consultant has been asked to recommend a secure network design that would:

• Permit an existing OPC server to communicate with a new Modbus server that is controlling electrical relays.

• Limit operational disruptions.

Due to the limitations within the Modbus protocol, which of the following configurations should the security engineer recommend as part of the solution?

Options:

Restrict inbound traffic so that only the OPC server is permitted to reach the Modbus server on port 135.

Restrict outbound traffic so that only the OPC server is permitted to reach the Modbus server on port 102.

Restrict outbound traffic so that only the OPC server is permitted to reach the Modbus server on port 5000.

Restrict inbound traffic so that only the OPC server is permitted to reach the Modbus server on port 502.

Discussion 0

Question # 3

A security engineer needs to review the configurations of several devices on the network to meet the following requirements:

• The PostgreSQL server must only allow connectivity in the 10.1.2.0/24

subnet.

• The SSH daemon on the database server must be configured to listen

to port 4022.

• The SSH daemon must only accept connections from a Single

workstation.

• All host-based firewalls must be disabled on all workstations.

• All devices must have the latest updates from within the past eight

days.

• All HDDs must be configured to secure data at rest.

• Cleartext services are not allowed.

• All devices must be hardened when possible.

Instructions:

Click on the various workstations and network devices to review the posture assessment results. Remediate any possible issues or indicate that no issue is found.

Click on Server A to review output data. Select commands in the appropriate tab to remediate connectivity problems to the pOSTGREsql DATABASE VIA ssh

Question # 3

WAP A

Question # 3

PC A

Question # 3

Laptop A

Question # 3

Switch A

Question # 3

Switch B:

Question # 3

Laptop B

Question # 3

PC B

Question # 3

PC C

Question # 3

Server A

Question # 3

Options:

Discussion 0

Answer:

See the Explanation below for the solution.

Explanation:

WAP A: No issue found. The WAP A is configured correctly and meets the requirements.

PC A = Enable host-based firewall to block all traffic

This option will turn off the host-based firewall and allow all traffic to pass through. This will comply with the requirement and also improve the connectivity of PC A to other devices on the network. However, this option will also reduce the security of PC A and make it more vulnerable to attacks. Therefore, it is recommended to use other security measures, such as antivirus, encryption, and password complexity, to protect PC A from potential threats.

Laptop A: Patch management

This option will install the updates that are available for Laptop A and ensure that it has the most recent security patches and bug fixes. This will comply with the requirement and also improve the performance and stability of Laptop

However, this option may also require a reboot of Laptop A and some downtime during the update process. Therefore, it is recommended to backup any important data and close any open applications before applying the updates.

Switch A: No issue found. The Switch A is configured correctly and meets the requirements.

Switch B: No issue found. The Switch B is configured correctly and meets the requirements.

Laptop B: Disable unneeded services

This option will stop and disable the telnet service that is using port 23 on Laptop

Telnet is a cleartext service that transmits data in plain text over the network, which exposes it to eavesdropping, interception, and modification by attackers. By disabling the telnet service, you will comply with the requirement and also improve the security of Laptop

However, this option may also affect the functionality of Laptop B if it needs to use telnet for remote administration or other purposes. Therefore, it is recommended to use a secure alternative to telnet, such as SSH or HTTPS, that encrypts the data in transit.

PC B: Enable disk encryption

This option will encrypt the HDD of PC B using a tool such as BitLocker or VeraCrypt. Disk encryption is a technique that protects data at rest by converting it into an unreadable format that can only be decrypted with a valid key or password. By enabling disk encryption, you will comply with the requirement and also improve the confidentiality and integrity of PC B’s data. However, this option may also affect the performance and usability of PC B, as it requires additional processing time and user authentication to access the encrypted data. Therefore, it is recommended to backup any important data and choose a strong key or password before encrypting the disk.

PC C: Disable unneeded services

This option will stop and disable the SSH daemon that is using port 22 on PC

SSH is a secure service that allows remote access and command execution over an encrypted channel. However, port 22 is the default and well-known port for SSH, which makes it a common target for brute-force attacks and port scanning. By disabling the SSH daemon on port 22, you will comply with the requirement and also improve the security of PC

However, this option may also affect the functionality of PC C if it needs to use SSH for remote administration or other purposes. Therefore, it is recommended to enable the SSH daemon on a different port, such as 4022, by editing the configuration file using the following command:

sudo nano /etc/ssh/sshd_config

Server

Need to select the following:

Explanation # 3

Question # 4

Which of the following objectives BEST supports leveraging tabletop exercises in business continuity planning?

Options:

Determine the optimal placement of hot/warm sites within the enterprise architecture.

Create new processes for identified gaps in continuity planning.

Establish new staff roles and responsibilities for continuity of operations.

Assess the effectiveness of documented processes against a realistic scenario.

Discussion 0

Question # 5

An organization is in frequent litigation and has a large number of legal holds. Which of the following types of functionality should the organization's new email system provide?

Options:

DLP

Encryption

E-discovery

Privacy-level agreements

Discussion 0

Question # 6

A global organization's Chief Information Security Officer (CISO) has been asked to analyze the risks involved in a plan to move the organization's current MPLS-based WAN network to use commodity Internet and SD-WAN hardware. The SD-WAN provider is currently highly regarded but Is a regional provider. Which of the following is MOST likely identified as a potential risk by the CISO?

Options:

The SD-WAN provider would not be able to handle the organization's bandwidth requirements.

The operating costs of the MPLS network are too high for the organization.

The SD-WAN provider uses a third party for support.

Internal IT staff will not be able to properly support remote offices after the migration.

Discussion 0

Question # 7

An engineering team has deployed a new VPN service that requires client certificates to be used in order to successfully connect. On iOS devices, however, the following error occurs after importing the .p12 certificate file:

mbedTLS: ca certificate undefined

Which of the following is the root cause of this issue?

Options:

iOS devices have an empty root certificate chain by default.

OpenSSL is not configured to support PKCS#12 certificate files.

The VPN client configuration is missing the CA private key.

The iOS keychain imported only the client public and private keys.

Discussion 0

Question # 8

A network administrator receives a ticket regarding an error from a remote worker who is trying to reboot a laptop. The laptop has not yet loaded the operating system, and the user is unable to continue the boot process. The administrator is able to provide the user with a recovery PIN, and the user is able to reboot the system and access the device as needed. Which of the following is the MOST likely cause of the error?

Options:

Lockout of privileged access account

Duration of the BitLocker lockout period

Failure of the Kerberos time drift sync

Failure of TPM authentication

Discussion 0

Question # 9

An administrator at a software development company would like to protect the integrity of the company's applications with digital signatures. The developers report that the signing process keeps failing on all applications. The same key pair used for signing, however, is working properly on the website, is valid, and is issued by a trusted C

Which of the following is MOST likely the cause of the

signature failing?

Options:

The NTP server is set incorrectly for the developers

The CA has included the certificate in its CRL.

The certificate is set for the wrong key usage.

Each application is missing a SAN or wildcard entry on the certificate

Discussion 0

Question # 10

A developer needs to implement PKI in an autonomous vehicle's software in the most efficient and labor-effective way possible. Which of the following will the developer MOST likely implement?

Options:

Certificate chain

Root CA

Certificate pinning

CRL

OCSP

Discussion 0

Question # 11

A significant weather event caused all systems to fail over to the disaster recovery site successfully. However, successful data replication has not occurred in the last six months, which has resulted in

the service being unavailable. V•Vh1ch of the following would BEST prevent this scenario from happening again?

Options:

Performing routine tabletop exercises

Implementing scheduled, full interruption tests

Backing up system log reviews

Performing department disaster recovery walk-throughs

Discussion 0

Question # 12

A security administrator wants to detect a potential forged sender claim in tt-e envelope of an email. Which of the following should the security administrator implement? (Select TWO).

Options:

MX record

DMARC

SPF

DNSSEC

S/MIME

TLS

Discussion 0

Question # 13

Which of the following processes involves searching and collecting evidence during an investigation or lawsuit?

Options:

E-discovery

Review analysis

Information governance

Chain of custody

Discussion 0

Question # 14

A CSP, which wants to compete in the market, has been approaching companies in an attempt to gain business. The CSP is able to provide the same uptime as other CSPs at a markedly reduced cost. Which of the following would be the MOST significant business risk to a company that signs a contract with this CSP?

Options:

Resource exhaustion

Geographic location

Control plane breach

Vendor lock-in

Discussion 0

Question # 15

A security analyst is reviewing a new IOC in which data is injected into an online process. The IOC shows the data injection could happen in the following ways:

• Five numerical digits followed by a dash, followed by four numerical digits; or

• Five numerical digits

When one of these IOCs is identified, the online process stops working. Which of the following regular expressions should be implemented in the NIPS?

Options:

^\d{4}(-\d{5})?$

^\d{5}(-\d{4})?$

^\d{5-4}$

^\d{9}$

Discussion 0

Get CAS-004 dumps and pass your exam in 24 hours!

Winter Special Sale Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 2493360325

Good News !!! CAS-004 CompTIA Advanced Security Practitioner (CASP+) Exam is now Stable and With Pass Result

CAS-004 Practice Exam Questions and Answers

CAS-004 PDF

CAS-004 Testing Engine

CAS-004 PDF + Testing Engine

Options:

Options:

Options:

Answer:

Explanation:

Options:

Options:

Options:

Options:

Options:

Options:

Options:

Options:

Options:

Answer:

Explanation:

Options:

Options:

Options:

Free Exams Sample Questions

We Accept

Secure Site

Customer Review

Money Back Guarantee