Free Access CompTIA.CS0-001.v2022-04-30.q237 Practice Test (Page 28)

Question 131

A centralized tool for organizing security events and managing their response and resolution is known as:

A.SIEM

B.Syslog

C.HIPS

D.Wireshark

Question 132

A company has been a victim of multiple volumetric DoS attacks. Packet analysis of the offending traffic shows the following:

Which of the following mitigation techniques is MOST effective against the above attack?

A.The company should implement the following ACL at their gateway firewall:
DENY IP HOST 192.168.1.1 170.43.30.0/24.

B.The company should enable the DoS resource starvation protection feature of the gateway NIPS.

C.The company should implement a network-based sinkhole to drop all traffic coming from 192.168.1.1 at their gateway router.

D.The company should contact the upstream ISP and ask that RFC1918 traffic be dropped.

Question 133

A security analyst is performing ongoing scanning and continuous monitoring of the corporate datacenter. Over time, these scans are repeatedly showing susceptibility to the same vulnerabilities and an increase in new vulnerabilities on a specific group of servers that are clustered to run the same application. Which of the following vulnerability management processes should be implemented?

A.Group policy modification

B.Frequent server scanning

C.Automated report generation

D.Regular patch application

Question 134

The software development team pushed a new web application into production for the accounting
department. Shortly after the application was published, the head of the accounting department informed
IT operations that the application was not performing as intended. Which of the following SDLC best
practices was missed?

A.Fuzzing

B.Static code analysis

C.User acceptance testing

D.Peer code reviews

E.Regression testing

Question 135

A security analyst begins to notice the CPU utilization from a sinkhole has begun to spike. Which of the following describes what may be occurring?

A.Someone has logged on to the sinkhole and is using the device.

B.The sinkhole has begun rerouting unauthorized traffic.

C.The sinkhole has begun blocking suspect or malicious traffic.

D.Something is controlling the sinkhole and causing CPU spikes due to malicious utilization.

Latest Upload: 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 172TheSecOpsGroup.CNSP.v2025-09-08.q20; 239CFAInstitute.ESG-Investing.v2025-09-08.q173; 225PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 156Salesforce.Data-Architect.v2025-09-05.q216; 152Adobe.AD0-E605.v2025-09-05.q50

Question 131

Question 132

Question 133

Question 134

Question 135

Download PDF File