Dumps shared by Lead1pass for Helping Passing CS0-001 Exam! Lead1pass now offer the newest CS0-001 exam dumps, the Lead1pass CS0-001 exam questions have been updated and answers have been corrected get the newest Lead1pass CS0-001 dumps with Test Engine here:
https://www.lead1pass.com/CompTIA/CS0-001-practice-exam-dumps.html (142 Q&As Dumps, 30%OFF Special Discount: 30free )
NEW QUESTION NO: 10
A security professional is analyzing the results of a network utilization report. The report includes the following information:
Which of the following servers needs further investigation?
A. hr.dbprod.01
B. R&D.file.srvr.01
C. mrktg.file.srvr.02
D. web.srvr.03
Answer: A
Section: (none)
Explanation/Reference:
Explanation:
NEW QUESTION NO: 11
A
company has recently launched a new billing invoice website for a few
key vendors. The cybersecurity analyst is receiving calls that the
website is performing slowly and the pages sometimes time out. The
analyst notices the website is receiving millions of requests, causing
the service to become unavailable.
Which of the following can be implemented to maintain the availability of the website?
A. VPN
B. Honeypot
C. Whitelisting
D. DMZ
E. MAC filtering
Answer: C
Section: (none)
Explanation/Reference:
Explanation:
NEW QUESTION NO: 12
A
cybersecurity analyst has received an alert that well-known "call home"
messages are continuously observed by network sensors at the network
boundary. The proxy firewall successfully drops the messages. After
determining the alert was a true positive, which of the following
represents the MOST likely cause?
A. Attackers are running reconnaissance on company resources.
B. Commands are attempting to reach a system infected with a botnet trojan.
C. An insider is trying to exfiltrate information to a remote network.
D. Malware is running on a company system.
Answer: B
Section: (none)
Explanation/Reference:
Explanation:
NEW QUESTION NO: 13
Which of the following commands would a security analyst use to make a copy of an image for forensics use?
A. dd
B. wget
C. touch
D. rm
Answer: A
Section: (none)
NEW QUESTION NO: 14
A
security analyst is adding input to the incident response communication
plan. A company officer has suggested that if a data breach occurs,
only affected parties should be notified to keep an incident from
becoming a media headline. Which of the following should the analyst
recommend to the company officer?
A. The first responder should
contact law enforcement upon confirmation of a security incident in
order for a forensics team to preserve chain of custody.
B. Guidance
from laws and regulations should be considered when deciding who must be
notified in order to avoid fines and judgements from non-compliance.
C.
An externally hosted website should be prepared in advance to ensure
that when an incident occurs victims have timely access to notifications
from a non-compromised recourse.
D. The HR department should have
information security personnel who are involved in the investigation of
the incident sign non-disclosure agreements so the company cannot be
held liable for customer data that might be viewed during an
investigation.
Answer: A
Section: (none)
Explanation/Reference:
Explanation:
NEW QUESTION NO: 15
A
cybersecurity consultant is reviewing the following output from a
vulnerability scan against a newly installed MS SQL Server 2012 that is
slated to go into production in one week:
Based on the above information, which of the following should the system administrator do? (Select TWO).
A. Verify the vulnerability using penetration testing tools or proof-of-concept exploits.
B. Review the references to determine if the vulnerability can be remotely exploited.
C. Mark the result as a false positive so it will show in subsequent scans.
D. Configure a network-based ACL at the perimeter firewall to protect the MS SQL port.
E. Implement the proposed solution by installing Microsoft patch Q316333.
Answer: D,E
Section: (none)
NEW QUESTION NO: 16
Company
A permits visiting business partners from Company B to utilize Ethernet
ports available in Company A's conference rooms. This access is
provided to allow partners the ability to establish VPNs back to Company
B's network. The security architect for Company A wants to ensure
partners from Company B are able to gain direct Internet access from
available ports only, while Company A employees can gain access to the
Company A internal network from those same ports. Which of the following
can be employed to allow this?
A. ACL
B. SIEM
C. MAC
D. NAC
E. SAML
Answer: D
Section: (none)
NEW QUESTION NO: 17
A
company wants to update its acceptable use policy (AUP) to ensure it
relates to the newly implemented password standard, which requires
sponsored authentication of guest wireless devices. Which of the
following is MOST likely to be incorporated in the AUP?
A. Sponsored guest passwords must be at least ten characters in length and contain a symbol.
B. The corporate network should have a wireless infrastructure that uses open authentication standards.
C. Guests using the wireless network should provide valid identification when registering their wireless devices.
D. The network should authenticate all guest users using 802.1x backed by a RADIUS or LDAP server.
Answer: C
Section: (none)
Explanation/Reference:
Explanation:
NEW QUESTION NO: 18
As
part of the SDLC, software developers are testing the security of a new
web application by inputting large amounts of random data. Which of the
following types of testing is being performed?
A. Fuzzing
B. Regression testing
C. Stress testing
D. Input validation
Answer: A
Section: (none)
NEW QUESTION NO: 19
A
recent vulnerability scan found four vulnerabilities on an
organization's public Internet-facing IP addresses. Prioritizing in
order to reduce the risk of a breach to the organization, which of the
following should be remediated FIRST?
A. A cipher that is known to be cryptographically weak.
B. A website using a self-signed SSL certificate.
C. A buffer overflow that allows remote code execution.
D. An HTTP response that reveals an internal IP address.
Answer: C
Section: (none)
Explanation/Reference:
Explanation:
NEW QUESTION NO: 20
A
recent audit has uncovered several coding errors and a lack of input
validation being used on a public portal. Due to the nature of the
portal and the severity of the errors, the portal is unable to be
patched.
Which of the following tools could be used to reduce the risk of being compromised?
A. Web application firewall
B. Network firewall
C. Web proxy
D. Intrusion prevention system
Answer: B
Section: (none)