Free Access CompTIA.CS0-001.v2022-04-30.q237 Practice Test (Page 26)

Question 121

As part of the SDLC, software developers are testing the security of a new web application by inputting
large amounts of random data. Which of the following types of testing is being performed?

A.Stress testing

B.Regression testing

C.Fuzzing

D.Input validation

Question 122

Which of the following could be directly impacted by an unpatched vulnerability m vSphre ESXi?

A.The organization's physical routers

B.The organization's VPN

C.The organization's mobile devices

D.The organization's virtual infrastructure

Question 123

A threat intelligence analyst who works for a financial services firm received this report:
"There has been an effective waterhole campaign residing at
www.bankfinancecompsoftware.com. This domain is delivering ransomware. This ransomware variant has been called "LockMaster" by researchers due to its ability to overwrite the MBR, but this term is not a malware signature. Please execute a defensive operation regarding this attack vector." The analyst ran a query and has assessed that this traffic has been seen on the network.
Which of the following actions should the analyst do NEXT? (Select TWO).

A.Visit the domain and begin a threat assessment

B.Produce a threat intelligence message to be disseminated to the company

C.Advise the security analysts to add an alert in the SIEM on the string "LockMaster"

D.Advise the firewall engineer to implement a block on the domain

E.Format the MBR as a precaution

F.Advise the security architects to enable full-disk encryption to protect the MBR

Question 124

A security analyst is conducting a vulnerability assessment of older SCADA devices on the corporate network.
Which of the following compensating controls is likely to prevent the scans from providing value?

A.SCADA systems configured with 'SCADA SUPPORT'=ENABLE

B.Detailed and tested firewall rules that effectively prevent outside access of the SCADA devices.

C.Implementation of a VLAN that allows all devices on the network to see all SCADA devices on the network.

D.Access control list network segmentation that prevents access to the SCADA devices inside the network.

Question 125

A cybersecurity analyst is reviewing the following outputs:

Which of the following can the analyst infer from the above output?

A.The remote host is running a service on port 8080.

B.The remote host's firewall is dropping packets for port 80.

C.The remote host is redirecting port 80 to port 8080.

D.The remote host is running a web server on port 80.

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 105HP.HPE0-V27.v2025-09-11.q78; 120Oracle.1Z0-1057-23.v2025-09-10.q47; 156Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 169TheSecOpsGroup.CNSP.v2025-09-08.q20; 237CFAInstitute.ESG-Investing.v2025-09-08.q173; 218PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 154Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 121

Question 122

Question 123

Question 124

Question 125

Download PDF File