무료 온라인 액세스 CompTIA.CAS-003.v2022-12-20.q589 모의 시험 (Page 89)

CAS-003 문제 436

A penetration tester is given an assignment lo gain physical access to a secure facility with perimeter cameras.
The secure facility does not accept visitors and entry is available only through a door protected by an RFID key and a guard stationed inside the door Which of the following would be BEST for the penetration tester to attempt?

A. Gam entry into the building by posing as a contractor who is performing routine building maintenance

B. Look for an open window that can be used to gain unauthorized entry into the facility

C. Duplicate an employees RFID badge and use an IR camera to see when the guard leaves the post

D. Tailgate into the facility with an employee who has a valid RFID badge to enter

CAS-003 문제 437

A security administrator wants to calculate the ROI of a security design which includes the purchase of new equipment. The equipment costs $50,000 and it will take 50 hours to install and configure the equipment. The administrator plans to hire a contractor at a rate of
$100/hour to do the installation. Given that the new design and equipment will allow the company to increase revenue and make an additional $100,000 on the first year, which of the following is the ROI expressed as a percentage for the first year?

A. -45 percent

B. 5.5 percent

C. 45 percent

D. 82 percent

CAS-003 문제 438

A financial consulting firm recently recovered from some damaging incidents that were associated with malware installed via rootkit. Post-incident analysis is ongoing, and the incident responders and systems administrators are working to determine a strategy to reduce the risk of recurrence. The firm's systems are running modern operating systems and feature UEFI and TPMs. Which of the following technical options would provide the MOST preventive value?

A. Update and deploy GPOs

B. Configure and use measured boot

C. Strengthen the password complexity requirements

D. Update the antivirus software and definitions

CAS-003 문제 439

A company is not familiar with the risks associated with IPv6. The systems administrator wants to isolate IPv4 from IPv6 traffic between two different network segments. Which of the following should the company implement? (Select TWO)

A. Implement a 6in4 proxy server.

B. Disable network discovery protocol on all company routers.

C. Block IP protocol 41 using Layer 3 switches.

D. Disable the DHCPv6 service from all routers.

E. Drop traffic for ::/0 at the edge firewall.

F. Use an internal firewall to block UDP port 3544.

CAS-003 문제 440

An organization is currently performing a market scan for managed security services and EDR capability.
Which of the following business documents should be released to the prospective vendors in the first step of the process? (Choose two.)

A. NDA

B. MSA

C. MOU

D. RFQ

E. RFI

F. RFP

다른 버전: 5026CompTIA.CAS-003.v2022-07-04.q589; 2159CompTIA.CAS-003.v2022-05-09.q215

최근 업로드: 114Avaya.78201X.v2025-09-09.q135; 121CompTIA.220-1202.v2025-09-09.q57; 110CheckPoint.156-215.81.v2025-09-09.q391; 123ECCouncil.312-50v13.v2025-09-09.q347; 119Supermicro.SMI300XS.v2025-09-08.q15; 119Oracle.1z0-1104-25.v2025-09-08.q12; 125SAP.C-LIXEA-2404.v2025-09-08.q60; 131Cisco.300-730.v2025-09-08.q143; 127Huawei.H19-308_V4.0.v2025-09-08.q77; 125Nutanix.NCA-6.5.v2025-09-08.q56