CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
ComptiA CySA+ 2023 Questions and answer - Part 44
1. A network technician is concerned that an attacker is attempting to penetrate the network, and wants to set a rule on the firewall to prevent the attacker fromlearning which IP addresses are valid on the network. Which of the following protocols needs to be denied?
A) ICMP
B) SMTP
C) TCP
D) ARP
2. A database administrator contacts a security administrator to request firewall changes for a connection to a new internal application.The security administrator notices that the new application uses a port typically monopolized by a virus.The security administrator denies the request and suggests a new port or service be used to complete the applications task.Which of the following is the security administrator practicing in this example?
A) Implicit deny
B) Access control lists
C) Explicit deny
D) Port security
3. An analyst is troubleshooting a PC that is experiencing high processor and memory consumption. Investigation reveals the following processes are running on thesystem: lsass.exe csrss.exe wordpad.exe notepad.exeWhich of the following tools should the analyst utilize to determine the rogue process?
A) Ping 127.0.0.1.
B) Use Netstat.
C) Use Nessus.
D) Use grep to search.
4. A production web server is experiencing performance issues. Upon investigation, new unauthorized applications have been installed and suspicious traffic was sentthrough an unused port. Endpoint security is not detecting any malware or virus. Which of the following types of threats would this MOST likely be classified as?
A) Botnet
B) Advanced persistent threat
C) Zero day
D) Buffer overflow vulnerability
5. Which of the following remediation strategies are MOST effective in reducing the risk of a network-based compromise of embedded ICS? (Select two.)(Select 2answers)
A) Firewalling
B) Segmentation
C) Patching
D) NIDS
E) Disabling unused services
A) ICMP
B) SMTP
C) TCP
D) ARP
2. A database administrator contacts a security administrator to request firewall changes for a connection to a new internal application.The security administrator notices that the new application uses a port typically monopolized by a virus.The security administrator denies the request and suggests a new port or service be used to complete the applications task.Which of the following is the security administrator practicing in this example?
A) Implicit deny
B) Access control lists
C) Explicit deny
D) Port security
3. An analyst is troubleshooting a PC that is experiencing high processor and memory consumption. Investigation reveals the following processes are running on thesystem: lsass.exe csrss.exe wordpad.exe notepad.exeWhich of the following tools should the analyst utilize to determine the rogue process?
A) Ping 127.0.0.1.
B) Use Netstat.
C) Use Nessus.
D) Use grep to search.
4. A production web server is experiencing performance issues. Upon investigation, new unauthorized applications have been installed and suspicious traffic was sentthrough an unused port. Endpoint security is not detecting any malware or virus. Which of the following types of threats would this MOST likely be classified as?
A) Botnet
B) Advanced persistent threat
C) Zero day
D) Buffer overflow vulnerability
5. Which of the following remediation strategies are MOST effective in reducing the risk of a network-based compromise of embedded ICS? (Select two.)(Select 2answers)
A) Firewalling
B) Segmentation
C) Patching
D) NIDS
E) Disabling unused services
1. Right Answer: A
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: B,E
Explanation:
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: B
Explanation:
4. Right Answer: B
Explanation:
5. Right Answer: B,E
Explanation:
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment