Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. CAS-004

CompTIA CAS-004 Exam Questions
CompTIA Advanced Security Practitioner (CASP+) CAS-004 (Page 8 )

Updated On: 5-Mar-2026
Page 8 of 127
PDF with 645 Questions

A developer is creating a new mobile application for a company. The application uses REST API and TLS 1.2 to communicate securely with the external back-end server. Due to this configuration, the company is concerned about HTTPS interception attacks.
Which of the following would be the BEST solution against this type of attack?

  1. Cookies
  2. Wildcard certificates
  3. HSTS
  4. Certificate pinning

Answer(s): D


Reference:

https://cloud.google.com/security/encryption-in-transit



A user in the finance department uses a laptop to store a spreadsheet that contains confidential financial information for the company. Which of the following would be the BEST way to protect the file while the user travels between locations? (Choose two.)

  1. Encrypt the laptop with full disk encryption.
  2. Back up the file to an encrypted flash drive.
  3. Place an ACL on the file to only allow access to specified users.
  4. Store the file in the user profile.
  5. Place an ACL on the file to deny access to everyone.
  6. Enable access logging on the file.

Answer(s): A,B



A threat hunting team receives a report about possible APT activity in the network.
Which of the following threat management frameworks should the team implement?

  1. NIST SP 800-53
  2. MITRE ATT&CK
  3. The Cyber Kill Chain
  4. The Diamond Model of Intrusion Analysis

Answer(s): B


Reference:

https://nvlpubs.nist.gov/nistpubs/legacy/sp/nistspecialpublication800-30r1.pdf



Device event logs sourced from MDM software as follows:
Which of the following security concerns and response actions would BEST address the risks posed by the device in the logs?

  1. Malicious installation of an application; change the MDM configuration to remove application ID 1220.
  2. Resource leak; recover the device for analysis and clean up the local storage.
  3. Impossible travel; disable the device's account and access while investigating.
  4. Falsified status reporting; remotely wipe the device.

Answer(s): C



An energy company is required to report the average pressure of natural gas used over the past quarter. A PLC sends data to a historian server that creates the required reports.
Which of the following historian server locations will allow the business to get the required reports in an ׀׀¢ and IT environment?

  1. In the ׀׀¢ environment, use a VPN from the IT environment into the ׀׀¢ environment.
  2. In the ׀׀¢ environment, allow IT traffic into the ׀׀¢ environment.
  3. In the IT environment, allow PLCs to send data from the ׀׀¢ environment to the IT environment.
  4. Use a screened subnet between the ׀׀¢ and IT environments.

Answer(s): D



Viewing page 8 of 127
Viewing questions 36 - 40 out of 645 questions



Post your Comments and Discuss CompTIA CAS-004 exam dumps with other Community members:

CAS-004 Exam Discussions & Posts

AI Tutor