Free Access CuramSoftware.CS0-002.v2022-01-17.q285 Practice Test (Page 31)

Question 146

A security team wants to make SaaS solutions accessible from only the corporate campus.
Which of the following would BEST accomplish this goal?

A.Geofencing

B.IP restrictions

C.Reverse proxy

D.Single sign-on

Question 147

A newly discovered malware has a known behavior of connecting outbound to an external destination on port 27500 for the purpose of exfiltrating data. The following are four snippets taken from running netstat -anon separate Windows workstations:

Based on the above information, which of the following is MOST likely to be exposed to this malware?

A.Workstation A

B.Workstation C

C.Workstation B

D.Workstation D

Question 148

A security analyst needs to obtain the footprint of the network. The footprint must identify the following information;
* TCP and UDP services running on a targeted system
* Types of operating systems and versions
* Specific applications and versions
Which of the following tools should the analyst use to obtain the data?

A.Reaver

B.Nmap

C.ZAP

D.Prowler

Question 149

A security audit revealed that port 389 has been used instead of 636 when connecting to LDAP for the authentication of users.
The remediation recommended by the audit was to switch the port to 636 wherever technically possible.
Which of the following is the BEST response?

A.Change all devices and servers that support it to 636, as 389 is a reserved port that requires root access and can expose the server to privilege escalation attacks.

B.Correct the audit. This finding is a well-known false positive; the services that typically run on 389 and 636 are identical.

C.Change all devices and servers that support it to 636, as encrypted services run by default on
636.

D.Correct the audit. This finding is accurate, but the correct remediation is to update encryption keys on each of the servers to match port 636.

Question 150

A security analyst needs to reduce the overall attack surface.
Which of the following infrastructure changes should the analyst recommend?

A.Implement a honeypot.

B.Air gap sensitive systems.

C.Increase the network segmentation.

D.Implement a cloud-based architecture.

Other Version: 1034CompTIA.CS0-002.v2025-03-13.q112; 2461CompTIA.CS0-002.v2024-10-25.q354; 623CompTIA.CS0-002.v2024-09-17.q264; 858CuramSoftware.CS0-002.v2024-02-05.q218; 2264CuramSoftware.CS0-002.v2023-02-13.q163; 4248CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf

Latest Upload: 106OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 172TheSecOpsGroup.CNSP.v2025-09-08.q20; 239CFAInstitute.ESG-Investing.v2025-09-08.q173; 225PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 156Salesforce.Data-Architect.v2025-09-05.q216; 152Adobe.AD0-E605.v2025-09-05.q50

Question 146

Question 147

Question 148

Question 149

Question 150

Download PDF File