Free Access CuramSoftware.CS0-002.v2022-08-26.q256 Practice Test (Page 20)

Question 91

A company was recently awarded several large government contracts and wants to determine its current risk from one specific APT.
Which of the following threat modeling methodologies would be the MOST appropriate to use during this analysis?

A.Kill chain

B.Total attack surface

C.Diamond Model of Intrusion Analysis

D.Adversary capability

E.Attack vectors

Question 92

A security analyst is reviewing the logs from an internal chat server. The chat.log file is too large to review manually, so the analyst wants to create a shorter log file that only includes lines associated with a user demonstrating anomalous activity. Below is a snippet of the log:

Which of the following commands would work BEST to achieve the desired result?

A.grep -i pythonfun chat.log

B.grep -v pythonfun chat.log

C.grep -i chatter14 chat.log

D.grep -v javashark chat.log

E.grep -i javashark chat.log

F.grep -v chatter14 chat.log

Question 93

A Chief Information Security Officer (CISO) wants to upgrade an organization's security posture by improving proactive activities associated with attacks from internal and external threats.
Which of the following is the MOST proactive tool or technique that feeds incident response capabilities?

A.Quarterly vulnerability scanning using credentialed scans

B.Continuous compliance monitoring using SCAP dashboards

C.Log correlation, monitoring, and automated reporting through a SIEM platform

D.Development of a hypothesis as part of threat hunting

Question 94

After completing a vulnerability scan, the following output was noted:

Which of the following vulnerabilities has been identified?

A.Active Directory encryption vulnerability.

B.Web application cryptography vulnerability.

C.PKI transfer vulnerability.

D.VPN tunnel vulnerability.

Question 95

An audit has revealed an organization is utilizing a large number of servers that are running unsupported operating systems.
As part of the management response phase of the audit, which of the following would BEST demonstrate senior management is appropriately aware of and addressing the issue?

A.Minutes from meetings in which risk assessment activities addressing the servers were discussed

B.Copies of change orders relating to the vulnerable servers

C.ACLs from perimeter firewalls showing blocked access to the servers

D.Copies of prior audits that did not identify the servers as an issue

E.Project plans relating to the replacement of the servers that were approved by management

Other Version: 1021CompTIA.CS0-002.v2025-03-13.q112; 2452CompTIA.CS0-002.v2024-10-25.q354; 623CompTIA.CS0-002.v2024-09-17.q264; 858CuramSoftware.CS0-002.v2024-02-05.q218; 2256CuramSoftware.CS0-002.v2023-02-13.q163; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 14305CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 152Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 166TheSecOpsGroup.CNSP.v2025-09-08.q20; 225CFAInstitute.ESG-Investing.v2025-09-08.q173; 175PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 151Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 91

Question 92

Question 93

Question 94

Question 95

Download PDF File