Instant Access CompTIA.CS0-001.v2022-04-01.q203 Actual Practice Test Engine for Free (Page 21)

Question 96

After completing a vulnerability scan, the following output was noted:

Which of the following vulnerabilities has been identified?

A.PKI transfer vulnerability.
B.Active Directory encryption vulnerability.
C.Web application cryptography vulnerability.
D.VPN tunnel vulnerability.

Question 97

Due to new regulations, a company has decided to institute an organizational vulnerability management program and assign the function to the security team. Which of the following frameworks would BEST support the program? (Select two.)

A.COBIT
B.NIST
C.ISO 27000 series
D.ITIL
E.OWASP

Question 98

During a routine network scan, a security administrator discovered an unidentified service running on a new embedded and unmanaged HVAC controller, which is used to monitor the company's datacenter:

The enterprise monitoring service requires SNMP and SNMPTRAP connectivity to operate. Which of the following should the security administrator implement to harden the system?

A.Patch and restart the unknown service.
B.Implement SNMPv3 to secure communication.
C.Disable the unidentified service on the controller.
D.Disable TCP/UDP ports 161 through 163.
E.Segment and firewall the controller's network.

Question 99

Which of the following BEST describes the offensive participants in a tabletop exercise?

A.Red team
B.Blue team
C.System administrators
D.Security analysts
E.Operations team

Question 100

A security analyst is performing a forensic analysis on a machine that was the subject of some historic SIEM alerts. The analyst noticed some network connections utilizing SSL on non-common ports, copies of svchost.exe and cmd.exe in %TEMP% folder, and RDP files that had connected to external IPs. Which of the following threats has the security analyst uncovered?

A.APT
B.DDoS
C.Ransomware
D.Software vulnerability

Question 96

Question 97

Question 98

Question 99

Question 100

Download PDF File