Practice Questions, Assessment Test, CompTIA CySA+, Practice Exam 1, CYSA+ Practice Questions, Module 1, Incident Response, Security Architecture and Tool Sets, CompTIA Cybersecurity Analyst, Vulnerability Management, Module 4, Analyst 1e Mindtap, Module 3, Module 2, CompTIA CySA+, Final - Study ...
[Show more]
A cybersecurity analyst receives a phone call from an unknown person with the number blocked on the caller ID. After starting conversation, the caller begins to request sensitive information. Which of the following techniques is being applied? A. Social engineering B. Phishing C. Impersonation D...
Preview 3 out of 26 pages
Add to cartA cybersecurity analyst receives a phone call from an unknown person with the number blocked on the caller ID. After starting conversation, the caller begins to request sensitive information. Which of the following techniques is being applied? A. Social engineering B. Phishing C. Impersonation D...
After running an nmap scan of a system, you receive scan data that indicates the following three ports are open:22/TCP443/TCP1521/TCP What services commonly run on these ports? A.SMTP, NetBIOS, MySQL B.SSH, Microsoft DS, WINS C.SSH, HTTPS, Oracle D.FTP, HTTPS, MS-SQL - Answer C. These three TC...
Preview 2 out of 9 pages
Add to cartAfter running an nmap scan of a system, you receive scan data that indicates the following three ports are open:22/TCP443/TCP1521/TCP What services commonly run on these ports? A.SMTP, NetBIOS, MySQL B.SSH, Microsoft DS, WINS C.SSH, HTTPS, Oracle D.FTP, HTTPS, MS-SQL - Answer C. These three TC...
- Answer Word pool: Procedures, Guidelines, Policies, Standards ___________ contain high-level statements of management intent ___________ provide mandatory requirements for how policies are carried out ___________ are a step-by-step process ___________ describes a best practice or ...
Preview 3 out of 20 pages
Add to cart- Answer Word pool: Procedures, Guidelines, Policies, Standards ___________ contain high-level statements of management intent ___________ provide mandatory requirements for how policies are carried out ___________ are a step-by-step process ___________ describes a best practice or ...
A cybersecurity analyst reviews the logs of a proxy server and saw the following URL, A. Returns no useful results for an attacker B. Returns all web pages containing an email address affiliated with C.Returns all web pages hosted at D. Returns all web pages containing the text - Answer B. ...
Preview 2 out of 12 pages
Add to cartA cybersecurity analyst reviews the logs of a proxy server and saw the following URL, A. Returns no useful results for an attacker B. Returns all web pages containing an email address affiliated with C.Returns all web pages hosted at D. Returns all web pages containing the text - Answer B. ...
Which of the following is not considered a form of passive or open source intelligence reconnaissance? A. Google hacking B. nmap C. ARIN queries D. nslookup Maymi, Fernando. CompTIA CySA+ Cybersecurity Analyst Certification Bundle (Exam CS0-001) . McGraw-Hill Education. Kindle Edition. - Ans...
Preview 2 out of 5 pages
Add to cartWhich of the following is not considered a form of passive or open source intelligence reconnaissance? A. Google hacking B. nmap C. ARIN queries D. nslookup Maymi, Fernando. CompTIA CySA+ Cybersecurity Analyst Certification Bundle (Exam CS0-001) . McGraw-Hill Education. Kindle Edition. - Ans...
Which of the following is an alternate name for topology Discovery? Fingerprinting Footprinting Pivotprinting Sniffing - Answer Footprinting What process allows an analyst to discover the operating system and version of a system? Service Discovery Topology Discovery Log Review OS Fing...
Preview 3 out of 18 pages
Add to cartWhich of the following is an alternate name for topology Discovery? Fingerprinting Footprinting Pivotprinting Sniffing - Answer Footprinting What process allows an analyst to discover the operating system and version of a system? Service Discovery Topology Discovery Log Review OS Fing...
3.1 Given a scenario, distinguish threat data or behavior to determine the impact of an incident. - Answer Event - Answer is any observable occurrence in a system or network. Security Event - Answer includes any observable occurrence that relates to a security function. For example, a user ...
Preview 2 out of 14 pages
Add to cart3.1 Given a scenario, distinguish threat data or behavior to determine the impact of an incident. - Answer Event - Answer is any observable occurrence in a system or network. Security Event - Answer includes any observable occurrence that relates to a security function. For example, a user ...
4.1 Explain the relationship between frameworks, common policies, controls, and procedures. - Answer • Regulatory compliance - Answer - NIST - ISO - COBIT - SABSA - TOGAF - ITIL • Frameworks - Answer • Policies - Answer - Password policy - Acceptable use policy - Data ownersh...
Preview 2 out of 5 pages
Add to cart4.1 Explain the relationship between frameworks, common policies, controls, and procedures. - Answer • Regulatory compliance - Answer - NIST - ISO - COBIT - SABSA - TOGAF - ITIL • Frameworks - Answer • Policies - Answer - Password policy - Acceptable use policy - Data ownersh...
FTP port(s) - Answer TCP 20, 21 Telnet port(s) - Answer TCP 23 TFTP port(s) - Answer UDP 69 POP3 port(s) - Answer TCP 110 IMAP port(s) - Answer TCP 143 LDAP port(s) - Answer TCP and UDP 389 SQL server port(s) - Answer TCP 1433 Oracle database port(s) - Answer TCP 1521 H.323 c...
Preview 2 out of 10 pages
Add to cartFTP port(s) - Answer TCP 20, 21 Telnet port(s) - Answer TCP 23 TFTP port(s) - Answer UDP 69 POP3 port(s) - Answer TCP 110 IMAP port(s) - Answer TCP 143 LDAP port(s) - Answer TCP and UDP 389 SQL server port(s) - Answer TCP 1433 Oracle database port(s) - Answer TCP 1521 H.323 c...
2.1 Given a scenario, implement an information security vulnerability management process. - Answer CompTIA • Identification of requirements - Answer As an organization begins developing a vulnerability management program, it should first undertake the identification of any internal or externa...
Preview 3 out of 18 pages
Add to cart2.1 Given a scenario, implement an information security vulnerability management process. - Answer CompTIA • Identification of requirements - Answer As an organization begins developing a vulnerability management program, it should first undertake the identification of any internal or externa...
Which framework was designed to widen the focus of an organization to overall architecture? COBIT TOGAF SABSA ITIL - Answer TOGAF (The Open Group Architecture Framework) The procedures in place to test controls need to be examined only by internal parties to ensure security. True False ...
Preview 2 out of 14 pages
Add to cartWhich framework was designed to widen the focus of an organization to overall architecture? COBIT TOGAF SABSA ITIL - Answer TOGAF (The Open Group Architecture Framework) The procedures in place to test controls need to be examined only by internal parties to ensure security. True False ...
Which of the following is not a position for which the CompTIA CySA+ certification is designed? a. Firewall analyst b. Vulnerability analyst c. Threat intelligence analyst d. Security analyst - Answer Firewall analyst Alyona has been asked by her supervisor to be part of an internal group tha...
Preview 2 out of 5 pages
Add to cartWhich of the following is not a position for which the CompTIA CySA+ certification is designed? a. Firewall analyst b. Vulnerability analyst c. Threat intelligence analyst d. Security analyst - Answer Firewall analyst Alyona has been asked by her supervisor to be part of an internal group tha...
Which of the following describes a rudimentary threat that would be picked up by an anti-virus or IPS? Known Threat Unknown threat Zero-day threat Advanced Persistent Threat - Answer Known Threat Which of the following describes a threat coming from a well trained attacker such as another c...
Preview 2 out of 15 pages
Add to cartWhich of the following describes a rudimentary threat that would be picked up by an anti-virus or IPS? Known Threat Unknown threat Zero-day threat Advanced Persistent Threat - Answer Known Threat Which of the following describes a threat coming from a well trained attacker such as another c...
All parts of a security policy should be public knowledge. True False - Answer False What reasons might a company forgo scanning a critical system? Too much time Confidentiality Backups already exist Costs too much - Answer Too much time & Costs too much What is the factor that deter...
Preview 3 out of 17 pages
Add to cartAll parts of a security policy should be public knowledge. True False - Answer False What reasons might a company forgo scanning a critical system? Too much time Confidentiality Backups already exist Costs too much - Answer Too much time & Costs too much What is the factor that deter...
An analyst needs to forensically examine a Windows machine that was compromised by a threat actor. Intelligence reports state this specific threat actor is characterized by hiding malicious artifacts, especially with alternate data streams. Based on this intelligence, which of the following BEST e...
Preview 4 out of 74 pages
Add to cartAn analyst needs to forensically examine a Windows machine that was compromised by a threat actor. Intelligence reports state this specific threat actor is characterized by hiding malicious artifacts, especially with alternate data streams. Based on this intelligence, which of the following BEST e...
Which format does dd produce files in? A. ddf B. RAW C. EN01 D. OVF - Answer B. dd creates files in RAW, bit-by-bit format. EN01 is the EnCase forensic file format, OVF is virtualization file format, and ddf is a made-up answer. Files remnants found in clusters that have been only partially r...
Preview 4 out of 66 pages
Add to cartWhich format does dd produce files in? A. ddf B. RAW C. EN01 D. OVF - Answer B. dd creates files in RAW, bit-by-bit format. EN01 is the EnCase forensic file format, OVF is virtualization file format, and ddf is a made-up answer. Files remnants found in clusters that have been only partially r...
In which phase of the security intelligence cycle is information from several different sources aggregated into useful repositories? A.Collection B.Analysis C.Dissemination D.Feedback - Answer A.Collection (Correct) Explanation OBJ-1.2: The collection phase is usually implemented by adminis...
Preview 4 out of 49 pages
Add to cartIn which phase of the security intelligence cycle is information from several different sources aggregated into useful repositories? A.Collection B.Analysis C.Dissemination D.Feedback - Answer A.Collection (Correct) Explanation OBJ-1.2: The collection phase is usually implemented by adminis...
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Stuvia is a marketplace, so you are not buying this document from us, but from seller Exampool. Stuvia facilitates payment to the seller.
No, you only buy these notes for $35.99. You're not tied to anything after your purchase.
4.6 stars on Google & Trustpilot (+1000 reviews)
95786 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now
