Free Access CompTIA.CAS-004.v2025-06-21.q202 Practice Test (Page 9)

Question 36

A security analyst is reading the results of a successful exploit that was recently conducted by third-party penetration testers. The testers reverse engineered a privileged executable. In the report, the planning and execution of the exploit is detailed using logs and outputs from the test However, the attack vector of the exploit is missing, making it harder to recommend remediation's. Given the following output:

The penetration testers MOST likely took advantage of:

A.A plain-text password disclosure

B.An integer overflow vulnerability

C.A buffer overflow vulnerability

D.A TOC/TOU vulnerability

Question 37

A threat analyst notices the following URL while going through the HTTP logs.

Which of the following attack types is the threat analyst seeing?

A.SQL injection

B.CSRF

C.Session hijacking

D.XSS

Question 38

An analyst has prepared several possible solutions to a successful attack on the company.
The solutions need to be implemented with the LEAST amount of downtime.
Which of the following should the analyst perform?

A.Implement every solution one at a time in a virtual lab, running a metric collection each time. After the collection, run the attack simulation, roll back each solution, and then implement the next. Choose the best solution based on the best metrics.

B.Implement all the solutions at once in a virtual lab and then collect the metrics. After collection, run the attack simulation. Choose the best solution based on the best metrics.

C.Implement every solution one at a time in a virtual lab, running an attack simulation each time while collecting metrics. Roll back each solution and then implement the next. Choose the best solution based on the best metrics.

D.Implement all the solutions at once in a virtual lab and then run the attack simulation. Collect the metrics and then choose the best solution based on the metrics.

Question 39

A customer reports being unable to connect to a website at www.test.com to consume services. The customer notices the web application has the following published cipher suite:

Which of the following is the MOST likely cause of the customer's inability to connect?

A.Weak ciphers are being used.

B.The public key should be using ECDSA.

C.The default should be on port 80.

D.The server name should be test.com.

Question 40

A company security engineer arrives at work to face the following scenario:
1) Website defacement
2) Calls from the company president indicating the website needs to be fixed Immediately because It Is damaging the brand
3) A Job offer from the company's competitor
4) A security analyst's investigative report, based on logs from the past six months, describing how lateral movement across the network from various IP addresses originating from a foreign adversary country resulted in exfiltrated data Which of the following threat actors Is MOST likely involved?

A.Organized crime

B.Script kiddie

C.APT/nation-state

D.Competitor

Other Version: 1956CompTIA.CAS-004.v2025-12-08.q667; 1948CompTIA.CAS-004.v2023-08-04.q126; 2126CompTIA.CAS-004.v2023-03-06.q93; 1702CompTIA.CAS-004.v2023-02-23.q88; 1427CompTIA.CAS-004.v2023-02-07.q68; 2489CompTIA.CAS-004.v2022-11-07.q113; 3034CompTIA.CAS-004.v2022-06-25.q79; 2007CompTIA.CAS-004.v2022-04-29.q42

Latest Upload: 200PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 290Nokia.4A0-113.v2026-05-01.q69; 244EC-COUNCIL.312-49v11.v2026-04-30.q214; 226Microsoft.MB-820.v2026-04-30.q101; 204Salesforce.MC-202.v2026-04-30.q57; 203BICSI.INSTC_V8.v2026-04-29.q53; 332NMLS.MLO.v2026-04-28.q82; 241NCARB.Project-Management.v2026-04-28.q27; 453EMC.D-AV-DY-23.v2026-04-27.q184; 1107ServiceNow.CSA.v2026-04-27.q483

Question 36

Question 37

Question 38

Question 39

Question 40

Download PDF File