Free Access CuramSoftware.CS0-002.v2024-02-05.q218 Practice Test (Page 31)

Question 146

A security analyst sees the following OWASP ZAP output from a scan that was performed against a modern version of Windows while testing for client-side vulnerabilities:

Which of the following is the MOST likely solution to the listed vulnerability?

A.Enable Windows XSS protection

B.Enable the browser's protected pages mode

C.Enable the browser's XSS filter.

D.Enable server-side XSS protection

Question 147

The Cruel Executive Officer (CEO) of a large insurance company has reported phishing emails that contain malicious links are targeting the entire organza lion Which of the following actions would work BEST to prevent against this type of attack?

A.Turn on full behavioral analysis to avert an infection

B.Implement an EDR mail module that will rewrite and analyze email links.

C.Reconfigure the EDR solution to perform real-time scanning of all files

D.Ensure EDR signatures are updated every day to avert infection.

E.Modify the EDR solution to use heuristic analysis techniques for malware.

Question 148

An information security analyst is compiling data from a recent penetration test and reviews the following output:

The analyst wants to obtain more information about the web-based services that are running on the target.
Which of the following commands would MOST likely provide the needed information?

A.ping -t 10.79.95.173.rdns.datacenters.com

B.telnet 10.79.95.173 443

C.tracert 10.79.95.173

D.ftpd 10.79.95.173.rdns.datacenters.com 443

Question 149

During routine monitoring, a security analyst discovers several suspicious websites that are communicating with a local host. The analyst queries for IP 192.168.50.2 for a 24-hour period:

To further investigate, the analyst should request PCAP for SRC 192.168.50.2 and __________.

A.DST 138.10.25.5.

B.DST 172.10.3.5.

C.DST 172.10.45.5.

D.DST 175.35.20.5.

E.DST 138.10.2.5.

Question 150

A red team actor observes it is common practice to allow cell phones to charge on company computers, but access to the memory storage is blocked. Which of the following are common attack techniques that take advantage of this practice? (Choose two.)

A.A Bluetooth attack that modifies the device registry (Windows PCs only) to allow the flash drive to mount, and then launches a Java applet attack

B.A USB attack that turns the connected device into a rogue access point that spoofs the configured wireless SSIDs

C.A USB attack that tricks the computer into thinking the connected device is a keyboard, and then sends characters one at a time as a keyboard to launch the attack (a prerecorded series of keystrokes)

D.A Bluetooth peering attack called "Snarfing" that allows Bluetooth connections on blocked device types if physically connected to a USB port

E.A USB attack that tricks the system into thinking it is a network adapter, then runs a user password hash gathering utility for offline password cracking

Other Version: 2915CompTIA.CS0-002.v2025-03-13.q112; 3831CompTIA.CS0-002.v2024-10-25.q354; 1417CompTIA.CS0-002.v2024-09-17.q264; 2848CuramSoftware.CS0-002.v2023-02-13.q163; 5029CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 15393CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 203PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 302Nokia.4A0-113.v2026-05-01.q69; 260EC-COUNCIL.312-49v11.v2026-04-30.q214; 230Microsoft.MB-820.v2026-04-30.q101; 212Salesforce.MC-202.v2026-04-30.q57; 207BICSI.INSTC_V8.v2026-04-29.q53; 336NMLS.MLO.v2026-04-28.q82; 244NCARB.Project-Management.v2026-04-28.q27; 465EMC.D-AV-DY-23.v2026-04-27.q184; 1122ServiceNow.CSA.v2026-04-27.q483

Question 146

Question 147

Question 148

Question 149

Question 150

Download PDF File