무료 온라인 액세스 CompTIA.CAS-003.v2022-12-20.q589 모의 시험 (Page 67)

CAS-003 문제 326

A company's existing forward proxies support software-based TLS decryption, but are currently at 60% load just dealing with AV scanning and content analysis for HTTP traffic. More than 70% outbound web traffic is currently encrypted. The switching and routing network infrastructure precludes adding capacity, preventing the installation of a dedicated TLS decryption system. The network firewall infrastructure is currently at 30% load and has software decryption modules that can be activated by purchasing additional license keys. An existing project is rolling out agent updates to end-user desktops as part of an endpoint security refresh.
Which of the following is the BEST way to address these issues and mitigate risks to the organization?

A. Use an EDP solution to address the malware issue and accept the diminishing role of the proxy for URL categorization in the short team.

B. Purchase the SSL, decryption license for the firewalls and route traffic back to the proxies for end-user categorization and malware analysis.

C. Accept the current risk and seek possible funding approval in the next budget cycle to replace the existing proxies with ones with more capacity.

D. Roll out application whitelisting to end-user desktops and decommission the existing proxies, freeing up network ports.

CAS-003 문제 327

An information security officer reviews a report and notices a steady increase in outbound network traffic over the past ten months. There is no clear explanation for the increase The security officer interviews several business units and discovers an unsanctioned cloud storage provider was used to share marketing materials with potential customers. Which of the following services would be BEST for the security officer to recommend to the company?

A. CASB

B. HIPS

C. NIDS

D. SFTP

CAS-003 문제 328

During a security assessment, activities were divided into two phases; internal and external exploitation.
The security assessment team set a hard time limit on external activities before moving to a compromised box within the enterprise perimeter.
Which of the following methods is the assessment team most likely to employ NEXT?

A. Open-source intelligence gathering to identify the network perimeter and scope to enable further system compromises.

B. Conducting a social engineering attack attempt with the goal of accessing the compromised box physically.

C. Exfiltrating network scans from the compromised box as a precursor to social media reconnaissance

D. Pivoting from the compromised, moving laterally through the enterprise, and trying to exfiltrate data and compromise devices.

CAS-003 문제 329

보안 컨설턴트가 로컬 호스트와 클라우드 기반 서버로 구성된 로컬 엔터프라이즈 고객에 대한 침투 테스트를 수행하고 있습니다. 호스팅 서비스는 고객 요구를 충족하기 위해 탄력적인 프로비저닝이 포함된 다중 테넌트 모델을 사용합니다. 고객은 프로비저닝된 각 클라우드 호스트에서 여러 개의 가상화된 서버를 실행합니다. 보안 컨설턴트는 고객 네트워크에 침투하지 않고도 여러 세트의 관리자 자격 증명을 얻을 수 있습니다. 다음 중 테스터가 악용할 가능성이 가장 높은 위험은 무엇입니까?

A. 고객 네트워크 하이퍼바이저에 대한 VM 탈출 공격

B. 클라우드 보안 브로커 서비스에 대한 오프라인 공격

C. 미사용 데이터 암호화 구성 오류 및 반복되는 키 사용

D. 멀티 테넌시 환경에서 남은 데이터를 스크랩하는 기능

CAS-003 문제 330

보안 컨설턴트가 금융 기관에 대한 인증 옵션을 고려하고 있습니다. 다음 인증 옵션은 적절한 사용 사례에 사용할 수 있는 보안 메커니즘입니다. 옵션은 한 번만 사용할 수 있습니다.

다른 버전: 5039CompTIA.CAS-003.v2022-07-04.q589; 2159CompTIA.CAS-003.v2022-05-09.q215

최근 업로드: 108Oracle.1Z0-1160-1.v2025-09-10.q18; 107Oracle.1z0-1054-25.v2025-09-10.q50; 104Cisco.300-710.v2025-09-10.q297; 106VMware.2V0-41.24.v2025-09-10.q104; 152Avaya.78201X.v2025-09-09.q135; 141CompTIA.220-1202.v2025-09-09.q57; 174CheckPoint.156-215.81.v2025-09-09.q391; 207ECCouncil.312-50v13.v2025-09-09.q347; 133Supermicro.SMI300XS.v2025-09-08.q15; 125Oracle.1z0-1104-25.v2025-09-08.q12