Free Access CompTIA.CS0-002.v2024-10-25.q354 Practice Test (Page 58)

Question 281

A security analyst is reviewing a report from the networking department that describes an increase in network utilization, which is causing network performance issues on some systems.
A top talkers report over a five-minute sample is included.

Given the above output of the sample, which of the following should the security analyst accomplish FIRST to help track down the performance issues?

A.Recommend that networking block the unneeded protocols such as Quicktime to clear up some of the congestion.

B.Put ACLs in place to restrict traffic destined for random or non-default application ports.

C.Perform reverse lookups on each of the IP addresses listed to help determine if the traffic is necessary.

D.Quarantine the top talker on the network and begin to investigate any potential threats caused by the excessive traffic.

Question 282

Clients are unable to access a company's API to obtain pricing data. An analyst discovers sources other than clients are scraping the API for data, which is causing the servers to exceed available resources. Which of the following would be BEST to protect the availability of the APIs?

A.IP whitelisting

B.Web application firewall

C.Virtual private network

D.Certificate-based authentication

Question 283

A security analyst inspects the header of an email that is presumed to be malicious and sees the following:

Which of the following is inconsistent with the rest of the header and should be treated as suspicious?

A.The destination email server

B.The use of a TLS cipher

C.The subject line

D.The sender's email address

Question 284

A security engineer is reviewing security products that identify malicious actions by users as part of a company's insider threat program. Which of the following is the MOST appropriate product category for this purpose?

A.SOAR

B.WAF

C.SCAP

D.UEBA

Question 285

A security analyst is reviewing the following web server log:

Which of the following BEST describes the issue?

A.Cross-site scripting

B.SQL injection

C.Cross-site request forgery

D.Directory traversal exploit

Other Version: 2914CompTIA.CS0-002.v2025-03-13.q112; 1412CompTIA.CS0-002.v2024-09-17.q264; 1652CuramSoftware.CS0-002.v2024-02-05.q218; 2845CuramSoftware.CS0-002.v2023-02-13.q163; 5025CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 15388CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 201PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 296Nokia.4A0-113.v2026-05-01.q69; 253EC-COUNCIL.312-49v11.v2026-04-30.q214; 228Microsoft.MB-820.v2026-04-30.q101; 209Salesforce.MC-202.v2026-04-30.q57; 205BICSI.INSTC_V8.v2026-04-29.q53; 333NMLS.MLO.v2026-04-28.q82; 242NCARB.Project-Management.v2026-04-28.q27; 459EMC.D-AV-DY-23.v2026-04-27.q184; 1113ServiceNow.CSA.v2026-04-27.q483

Question 281

Question 282

Question 283

Question 284

Question 285

Download PDF File