CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. CAS-003

Free CAS-003 Exam Braindumps (page: 33)

Page 33 of 137
PDF with 683 Questions

A newly hired security analyst has joined an established SOC team. Not long after going through corporate orientation, a new attack method on web-based applications was publicly revealed. The security analyst immediately brings this new information to the team lead, but the team lead is not concerned about it.

Which of the following is the MOST likely reason for the team lead’s position?

  1. The organization has accepted the risks associated with web-based threats.
  2. The attack type does not meet the organization’s threat model.
  3. Web-based applications are on isolated network segments.
  4. Corporate policy states that NIPS signatures must be updated every hour.

Answer(s): A



A systems administrator has installed a disk wiping utility on all computers across the organization and configured it to perform a seven-pass wipe and an additional pass to overwrite the disk with zeros. The company has also instituted a policy that requires users to erase files containing sensitive information when they are no longer needed.

To ensure the process provides the intended results, an auditor reviews the following content from a randomly selected decommissioned hard disk:


Which of the following should be included in the auditor’s report based on the above findings?

  1. The hard disk contains bad sectors
  2. The disk has been degaussed.
  3. The data represents part of the disk BIOS.
  4. Sensitive data might still be present on the hard drives.

Answer(s): A



The Chief Information Officer (CISO) is concerned that certain systems administrators will privileged access may be reading other users’ emails. Review of a tool’s output shows the administrators have used web mail to log into other users’ inboxes.

Which of the following tools would show this type of output?

  1. Log analysis tool
  2. Password cracker
  3. Command-line tool
  4. File integrity monitoring tool

Answer(s): A



A security analyst is troubleshooting a scenario in which an operator should only be allowed to reboot remote hosts but not perform other activities. The analyst inspects the following portions of different configuration files:

Configuration file 1:
Operator ALL=/sbin/reboot
Configuration file 2:
Command=”/sbin/shutdown now”, no-x11-forwarding, no-pty, ssh-dss
Configuration file 3:
Operator:x:1000:1000::/home/operator:/bin/bash

Which of the following explains why an intended operator cannot perform the intended action?

  1. The sudoers file is locked down to an incorrect command
  2. SSH command shell restrictions are misconfigured
  3. The passwd file is misconfigured
  4. The SSH command is not allowing a pty session

Answer(s): D



Page 33 of 137



Post your Comments and Discuss CompTIA CAS-003 exam with other Community members:

Nathan commented on April 20, 2020
I appreicate that you provide the Xengine software for free. But are you planning to keep it free! I really hope so!
GERMANY
upvote