Get 250+ CompTIA CAS-004 Questions - CompTIA Advanced Security Practitioner (CASP+) CAS-004

Elevate your cybersecurity expertise with this comprehensive collection of exam questions and detailed answers, meticulously curated to ensure you're fully prepared for success. Whether you're a seasoned security professional or aspiring to advance your career in the field, this guide is your go-to companion for acing the CAS-004 exam.

🔒 What's Inside:

• In-depth coverage of CASP+ exam topics
• Realistic exam simulations to familiarize you with the testing environment
• Clear and concise explanations for each question
• Strategic insights and tips from industry experts

💡 Why Choose Our CASP+ Exam Guide:

1. Comprehensive Coverage: Every aspect of the CAS-004 exam is addressed, ensuring you're well-versed in all relevant domains.
2. Real-world Relevance: Our questions are crafted to mirror real-world scenarios, providing practical insights for on-the-job success.
3. Expert Guidance: Benefit from the knowledge of cybersecurity professionals who have excelled in the field.

Question # 1 Topic 1

An organization is preparing to migrate its production environment systems from an on-premises environment to a cloud service. The lead

security architect is concerned that the organization's current methods for addressing risk may not be possible in the cloud environment.

Which of the following BEST describes the reason why traditional methods of addressing risk may not be possible in the cloud?

A. Migrating operations assumes the acceptance of all risk.

B. Cloud providers are unable to avoid risk.

C. Specific risks cannot be transferred to the cloud provider.

D. Risks to data in the cloud cannot be mitigated.

Question # 1 Topic 1

An organization is preparing to migrate its production environment systems from an on-premises environment to a cloud service. The lead

security architect is concerned that the organization's current methods for addressing risk may not be possible in the cloud environment.

Which of the following BEST describes the reason why traditional methods of addressing risk may not be possible in the cloud?

A. Migrating operations assumes the acceptance of all risk.

B. Cloud providers are unable to avoid risk.

C. Specific risks cannot be transferred to the cloud provider.

D. Risks to data in the cloud cannot be mitigated.

Correct Answer: C

Question # 2Topic 1

Clients are reporting slowness when attempting to access a series of load-balanced APIs that do not require authentication. The servers that host

the APIs are showing heavy CPU utilization. No alerts are found on the WAFs sitting in front of the APIs.

Which of the following should a security engineer recommend to BEST remedy the performance issues in a timely manner?

A. Implement rate limiting on the API.

B. Implement geoblocking on the WAF.

C. Implement OAuth 2.0 on the API.

D. Implement input validation on the API.

Correct Answer: A

Question # 3 Topic 1

A security analyst is concerned that a malicious piece of code was downloaded on a Linux system. After some research, the analyst determines that the suspected piece of code is performing a lot of input/output (I/O) on the disk drive.

Based on the output above, from which of the following process IDs can the analyst begin an investigation?

A. 65

B. 77

C. 83

D. 87

Correct Answer: C

Question # 4 Topic 1

A systems administrator is preparing to run a vulnerability scan on a set of information systems in the organization. The systems administrator wants to ensure that the targeted systems produce accurate information especially regarding configuration settings.

Which of the following scan types will provide the systems administrator with the MOST accurate information?

A. A passive, credentialed scan

B. A passive, non-credentialed scan

C. An active, non-credentialed scan

D. An active, credentialed scan

Correct Answer: D

Question # 5 Topic 1

Which of the following is the MOST important cloud-specific risk from the CSP's viewpoint?

A. Isolation control failure

B. Management plane breach

C. Insecure data deletion

D. Resource exhaustion

Correct Answer: B

Question # 6 Topic 1

A security consultant needs to protect a network of electrical relays that are used for monitoring and controlling the energy used in a manufacturing facility.

Which of the following systems should the consultant review before making a recommendation?

A. CAN

B. ASIC

C. FPGA

D. SCADA

Correct Answer: D

Question # 7 Topic 1

Due to internal resource constraints, the management team has asked the principal security architect to recommend a solution that shifts partial responsibility for application-level controls to the cloud provider. In the shared responsibility model, which of the following levels of service meets this requirement?

A. IaaS

B. SaaS

C. FaaS

D. PaaS

Correct Answer: D

Question # 8 Topic 1

A security administrator has been tasked with hardening a domain controller against lateral movement attacks. Below is an output of running services:

Which of the following configuration changes must be made to complete this task?

A. Stop the Print Spooler service and set the startup type to disabled.

B. Stop the DNS Server service and set the startup type to disabled.

C. Stop the Active Directory Web Services service and set the startup type to disabled.

D. Stop Credential Manager service and leave the startup type to disabled.

Correct Answer: A

Question # 9  Topic 1

Prior to a risk assessment inspection, the Chief Information Officer tasked the systems administrator with analyzing and reporting any configuration issues on the information systems, and then verifying existing security settings. Which of the following would be BEST to use?

A. SCAP

B. CVSS

C. XCCDF

D. CMDB

Correct Answer: A

Question # 10Topic 1

A security analyst has concerns about malware on an endpoint. The malware is unable to detonate by modifying the kernel response to various system calls. As a test, the analyst modifies a Windows server to respond to system calls as if it was a Linux server. In another test, the analyst modifies the operating system to prevent the malware from identifying target files. Which of the following techniques is the analyst MOST likely using?

A. Honeypot

B. Deception

C. Simulators

D. Sandboxing

Correct Answer: B