Free Access CuramSoftware.CS0-002.v2022-08-26.q256 Practice Test (Page 2)

Question 1

A security analyst is attempting to utilize the blowing threat intelligence for developing detection capabilities:

In which of the following phases is this APT MOST likely to leave discoverable artifacts?

A.Lateral movement

B.Defensive evasion

C.Reconnaissance

D.Data collection/exfiltration

Question 2

NOTE: Question IP must be 192.168.192.123
During a network reconnaissance engagement, a penetration tester was given perimeter firewall ACLs to accelerate the scanning process. The penetration tester has decided to concentrate on trying to brute force log in to destination IP address 192.168.192.132 via secure shell.

Given a source IP address of 10.10.10.30, which of the following ACLs will permit this access?

Question 3

While reviewing log files, a security analyst uncovers a brute-force attack that is being performed against an external webmail portal. Which of the following would be BEST to prevent this type of attack from beinq successful1?

A.Implement MFA on the email portal using out-of-band code delivery.

B.Create a new rule in the IDS that triggers an alert on repeated login attempts

C.Leverage password filters to prevent weak passwords on employee accounts from being exploited.

D.Configure a WAF with brute force protection rules in block mode

E.Alter the lockout policy to ensure users are permanently locked out after five attempts.

Question 4

Which of the following is the BEST security practice to prevent ActiveX controls from running malicious code on a user's web application?

A.Deploying HIPS to block malicious ActiveX code

B.Installing network-based IPS to block malicious ActiveX code

C.Adjusting the web-browser settings to block ActiveX controls

D.Configuring a firewall to block traffic on ports that use ActiveX controls

Question 5

An analyst finds that unpatched servers have undetected vulnerabilities because the vulnerability scanner does not have the latest set of signatures.
Management directed the security team to have personnel update the scanners with the latest signatures at least 24 hours before conducting any scans, but the outcome is unchanged. Which of the following is the BEST logical control to address the failure?

A.Configure vulnerability scans to run in credentialed mode.

B.Test vulnerability remediation in a sandbox before deploying.

C.Configure a script to automatically update the scanning tool.

D.Manually validate that the existing update is being performed.

Other Version: 1018CompTIA.CS0-002.v2025-03-13.q112; 2448CompTIA.CS0-002.v2024-10-25.q354; 623CompTIA.CS0-002.v2024-09-17.q264; 858CuramSoftware.CS0-002.v2024-02-05.q218; 2233CuramSoftware.CS0-002.v2023-02-13.q163; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 14273CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 101OCEG.GRCP.v2025-09-11.q211; 101HP.HPE0-V27.v2025-09-11.q78; 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 157PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 146Salesforce.Data-Architect.v2025-09-05.q216; 140Adobe.AD0-E605.v2025-09-05.q50

Question 1

Question 2

Question 3

Question 4

Question 5

Download PDF File