무료 온라인 액세스 CompTIA.CAS-003.v2022-12-20.q589 모의 시험 (Page 88)

CAS-003 문제 431

Two competing companies experienced similar attacks on their networks from various threat actors. To improve response times, the companies wish to share some threat intelligence about the sources and methods of attack. Which of the following business documents would be BEST to document this engagement?

A. Business partnership agreement

B. Memorandum of understanding

C. Service-level agreement

D. Interconnection security agreement

CAS-003 문제 432

An external penetration tester compromised one of the client organization's authentication servers and retrieved the password database. Which of the following methods allows the penetration tester to MOST efficiently use any obtained administrative credentials on the client organization's other systems, without impacting the integrity of any of the systems?

A. Use the pass the hash technique

B. Use rainbow tables to crack the passwords

C. Use the existing access to change the password

D. Use social engineering to obtain the actual password

CAS-003 문제 433

Given the following code snippet:

Which of the following failure modes would the code exhibit?

A. Secure

B. Open

C. Halt

D. Exception

CAS-003 문제 434

The source workstation image for new accounting PCs has begun blue-screening. A technician notices that the date/time stamp of the image source appears to have changed. The desktop support director has asked the Information Security department to determine if any changes were made to the source image. Which of the following methods would BEST help with this process?
(Select TWO).

A. Retrieve source system image from backup and run file comparison analysis on the two images.

B. Parse all images to determine if extra data is hidden using steganography.

C. Calculate a new hash and compare it with the previously captured image hash.

D. Ask desktop support if any changes to the images were made.

E. Check key system files to see if date/time stamp is in the past six months.

CAS-003 문제 435

A company has implemented data retention policies and storage quotas in response to their legal department's requests and the SAN administrator's recommendation.
The retention policy states all email data older than 90 days should be eliminated.
As there are no technical controls in place, users have been instructed to stick to a storage quota of 500Mb of network storage and 200Mb of email storage.
After being presented with an e-discovery request from an opposing legal council, the security administrator discovers that the user in the suit has 1Tb of files and 300Mb of email spanning over two years.
Which of the following should the security administrator provide to opposing council?

A. Delete email over the policy threshold and hand over the remaining emails and all of the files.

B. Provide the first 200Mb of e-mail and the first 500Mb of files as per policy.

C. Delete files and email exceeding policy thresholds and turn over the remaining files and email.

D. Provide the 1Tb of files on the network and the 300Mb of email files regardless of age.

다른 버전: 5026CompTIA.CAS-003.v2022-07-04.q589; 2159CompTIA.CAS-003.v2022-05-09.q215

최근 업로드: 116Avaya.78201X.v2025-09-09.q135; 125CompTIA.220-1202.v2025-09-09.q57; 111CheckPoint.156-215.81.v2025-09-09.q391; 135ECCouncil.312-50v13.v2025-09-09.q347; 120Supermicro.SMI300XS.v2025-09-08.q15; 120Oracle.1z0-1104-25.v2025-09-08.q12; 128SAP.C-LIXEA-2404.v2025-09-08.q60; 145Cisco.300-730.v2025-09-08.q143; 128Huawei.H19-308_V4.0.v2025-09-08.q77; 127Nutanix.NCA-6.5.v2025-09-08.q56