Free Access CompTIA.CAS-004.v2022-11-07.q113 Practice Test (Page 4)

Question 11

A company has hired a security architect to address several service outages on the endpoints due to new malware. The Chief Executive Officer's laptop was impacted while working from home. The goal is to prevent further endpoint disruption. The edge network is protected by a web proxy.
Which of the following solutions should the security architect recommend?

A.Add a firewall module on the current antivirus solution.

B.Replace the current antivirus with an EDR solution.

C.Implement a deny list feature on the endpoints.

D.Remove the web proxy and install a UTM appliance.

Question 12

Which of the following is a benefit of using steganalysis techniques in forensic response?

A.Maintaining chain of custody for acquired evidence

B.Identifying least significant bit encoding of data in a .wav file

C.Breaking a symmetric cipher used in secure voice communications

D.Determining the frequency of unique attacks against DRM-protected media

Question 13

A security engineer is troubleshooting an issue in which an employee is getting an IP address in the range on the wired network. The engineer plus another PC into the same port, and that PC gets an IP address in the correct range. The engineer then puts the employee' PC on the wireless network and finds the PC still not get an IP address in the proper range. The PC is up to date on all software and antivirus definitions, and the IP address is not an APIPA address. Which of the following is MOST likely the problem?

A.The company is using 802.1x for VLAN assignment, and the user or computer is in the wrong group.

B.The DHCP server has a reservation for the PC's MAC address for the wired interface.

C.The WiFi network is using WPA2 Enterprise, and the computer certificate has the wrong IP address in the SAN field.

D.The DHCP server is unavailable, so no IP address is being sent back to the PC.

Question 14

A security analyst is performing a vulnerability assessment on behalf of a client. The analyst must define what constitutes a risk to the organization.
Which of the following should be the analyst's FIRST action?

A.Perform a full system penetration test to determine the vulnerabilities.

B.Create a full inventory of information and data assets.

C.Determine which security compliance standards should be followed.

D.Ascertain the impact of an attack on the availability of crucial resources.

Question 15

A company is looking to fortify its cybersecurity defenses and is focusing on its network infrastructure. The solution cannot affect the availability of the company's services to ensure false positives do not drop legitimate traffic.
Which of the following would satisfy the requirement?

A.NIPS

B.NIDS

C.WAF

D.Reverse proxy

Other Version: 1097CompTIA.CAS-004.v2025-06-21.q202; 1236CompTIA.CAS-004.v2023-08-04.q126; 1371CompTIA.CAS-004.v2023-03-06.q93; 1199CompTIA.CAS-004.v2023-02-23.q88; 995CompTIA.CAS-004.v2023-02-07.q68; 2433CompTIA.CAS-004.v2022-06-25.q79; 1608CompTIA.CAS-004.v2022-04-29.q42

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 143Adobe.AD0-E605.v2025-09-05.q50

Question 11

Question 12

Question 13

Question 14

Question 15

Download PDF File