CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
ComptiA CySA+ 2023 Questions and answer - Part 56
1. A security analyst is conducting traffic analysis and observes an HTTP POST to a web server. The POST header is approximately 1000 bytes in length. Duringtransmission, one byte is delivered every ten seconds. Which of the following attacks is the traffic indicative of?
A) DoS
B) SQL injection
C) Exfiltration
D) Buffer overflow
2. A security analyst has determined that the user interface on an embedded device is vulnerable to common SQL injections. The device is unable to be replaced, andthe software cannot be upgraded. Which of the following should the security analyst recommend to add additional security to this device?
A) The security analyst should recommend this device be included in regular vulnerability scans.
B) The security analyst should recommend this device regularly export the web logs to a SIEM system.
C) The security analyst should recommend an IDS be placed on the network segment.
D) The security analyst should recommend this device be placed behind a WAF.
3. A network technician is concerned that an attacker is attempting to penetrate the network, and wants to set a rule on the firewall to prevent the attacker fromlearning which IP addresses are valid on the network. Which of the following protocols needs to be denied?
A) TCP
B) SMTP
C) ICMP
D) ARP
4. Which of the following represent the reasoning behind careful selection of the timelines and time-of-day boundaries for an authorized penetration test? (SelectTWO).(Select 2answers)
A) To avoid conflicts with real intrusions that may occur
B) To schedule personnel resources required for test activities
C) To mitigate unintended impacts to operations
D) To ensure tests have measurable impact to operations
E) To determine frequency of team communication and reporting
5. A malware infection spread to numerous workstations within the marketing department. The workstations were quarantined and replaced with machines.Which of the following represents a FINAL step in the eradication of the malware?
A) The workstations should be patched and scanned.
B) The workstations should be donated for reuse.
C) The workstations should be isolated from the network.
D) The workstations should be reimaged.
A) DoS
B) SQL injection
C) Exfiltration
D) Buffer overflow
2. A security analyst has determined that the user interface on an embedded device is vulnerable to common SQL injections. The device is unable to be replaced, andthe software cannot be upgraded. Which of the following should the security analyst recommend to add additional security to this device?
A) The security analyst should recommend this device be included in regular vulnerability scans.
B) The security analyst should recommend this device regularly export the web logs to a SIEM system.
C) The security analyst should recommend an IDS be placed on the network segment.
D) The security analyst should recommend this device be placed behind a WAF.
3. A network technician is concerned that an attacker is attempting to penetrate the network, and wants to set a rule on the firewall to prevent the attacker fromlearning which IP addresses are valid on the network. Which of the following protocols needs to be denied?
A) TCP
B) SMTP
C) ICMP
D) ARP
4. Which of the following represent the reasoning behind careful selection of the timelines and time-of-day boundaries for an authorized penetration test? (SelectTWO).(Select 2answers)
A) To avoid conflicts with real intrusions that may occur
B) To schedule personnel resources required for test activities
C) To mitigate unintended impacts to operations
D) To ensure tests have measurable impact to operations
E) To determine frequency of team communication and reporting
5. A malware infection spread to numerous workstations within the marketing department. The workstations were quarantined and replaced with machines.Which of the following represents a FINAL step in the eradication of the malware?
A) The workstations should be patched and scanned.
B) The workstations should be donated for reuse.
C) The workstations should be isolated from the network.
D) The workstations should be reimaged.
1. Right Answer: C
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: B,C
Explanation:
5. Right Answer: A
Explanation:
Explanation:
2. Right Answer: D
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: B,C
Explanation:
5. Right Answer: A
Explanation:
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment