WIXLIB

CAS-003 Exam QuestionsTopicDetails1. JSON/REST2. Browser extensionsActiveXJava applets3. HTML54. AJAX5. SOAP6. State management7. JavaScript8. Operating system vulnerabilities9. Firmware vulnerabilitiesEnterprise Security Operations 20%1. Methods1.2.3.4.5.6.7.8.Malware sandboxingMemory dumping, runtime debuggingReconnaissanceFingerprintingCode reviewSocial engineeringPivotingOpen source intelligenceSocial mediaWhoisRouting tablesDNS recordsSearch enginesGiven a scenario, conducta security assessmentusing the appropriate2. Typesmethods.1. Penetration testingBlack boxWhite boxGray box2. Vulnerability assessment3. Self-assessmentTabletop exercises4. Internal and external audits5. Color team exercisesRed teamBlue teamWhite teamCompTIA CASP Certification Practice Exam13

CAS-003 Exam QuestionsTopicDetails1. Network tool types1. Port scanners2. Vulnerability scanners3. Protocol analyzerWiredWireless4. SCAP scanner5. Network enumerator6. Fuzzer7. HTTP interceptor8. Exploitation tools/frameworks9. Visualization tools10. Log reduction and analysis toolsAnalyze a scenario oroutput, and select theappropriate tool for asecurity assessment.2. Host tool types1.2.3.4.5.6.7.8.9.Password crackerVulnerability scannerCommand line toolsLocal exploitation tools/frameworksSCAP toolFile integrity monitoringLog analysis toolsAntivirusReverse engineering tools3. Physical security tools1. Lock picks2. RFID tools3. IR camera1. E-discoveryGiven a scenario,implement incidentresponse and recoveryprocedures.1.2.3.4.5.6.Electronic inventory and asset controlData retention policiesData recovery and storageData ownershipData handlingLegal holds2. Data breach1. Detection and collectionData analyticsCompTIA CASP Certification Practice Exam14

CAS-003 Exam QuestionsTopicDetails2. MitigationMinimizeIsolate3. Recovery/reconstitution4. Response5. Disclosure3. Facilitate incident detection and response1. Hunt teaming2. Heuristics/behavioral analytics3. Establish and review system, audit and security logs4. Incident and emergency response1.2.3.4.5.6.Chain of custodyForensic analysis of compromised systemContinuity of operationsDisaster recoveryIncident response teamOrder of volatility5. Incident response support tools1.2.3.4.5.6.7.8.ddtcpdumpnbtstatnetstatnc (Netcat)memdumptsharkforemost6. Severity of incident or breach1.2.3.4.5.ScopeImpactCostDowntimeLegal ramifications7. Post-incident response1. Root-cause analysis2. Lessons learned3. After-action reportCompTIA CASP Certification Practice Exam15

CAS-003 Exam QuestionsTopicDetailsTechnical Integration of Enterprise Security 23%1. Adapt data flow security to meet changing business needs2. Standards1.2.3.4.5.Open standardsAdherence to standardsCompeting standardsLack of standardsDe facto standards3. Interoperability issues1. Legacy systems and software/current systems2. Application requirements3. Software typesIn-house developedCommercialTailored commercialOpen source4. Standard data formats5. Protocols and APIsGiven a scenario,integrate hosts, storage,networks and applications 4. Resilience issuesinto a secure enterprise1. Use of heterogeneous componentsarchitecture.2. Course of action automation/orchestration3. Distribution of critical assets4. Persistence and non- persistence of data5. Redundancy/high availability6. Assumed likelihood of attack5. Data security lume6. Resources provisioning and deprovisioning1. Users2. Servers3. Virtual devicesCompTIA CASP Certification Practice Exam16

CAS-003 Exam QuestionsTopicDetails4. Applications5. Data remnants7. Design considerations during mergers, acquisitions anddemergers/divestitures8. Network secure segmentation and delegation9. Logical deployment diagram and corresponding physicaldeployment diagram of all relevant devices10. Security and privacy considerations of storageintegration11. Security implications of integrating ration enablersDirectory servicesDNSSOAESB1. Technical deployment models (outsourcing/insourcing/managed services/partnership)Given a scenario,integrate cloud andvirtualization technologiesinto a secure enterprisearchitecture.1. Cloud and virtualization considerations and nancySingle tenancy2. On-premise vs. hosted3. Cloud service modelsSaaSIaaSPaaS2. Security advantages and disadvantages of virtualization1.2.3.4.5.Type 1 vs. Type 2 hypervisorsContainer-basedvTPMHyperconverged infrastructureVirtual desktop infrastructureCompTIA CASP Certification Practice Exam17

CAS-003 Exam QuestionsTopicDetails6. Secure enclaves and volumes3. Cloud augmented security services1.2.3.4.5.6.7.Anti-malwareVulnerability scanningSandboxingContent filteringCloud security brokerSecurity as a serviceManaged security service providers4. Vulnerabilities associated with comingling of hosts withdifferent security requirements1.2.3.4.VMEscapePrivilege elevationLive VM migrationData remnants5. Data security considerations1. Vulnerabilities associated with a single server hostingmultiple data types2. Vulnerabilities associated with a single platformhosting multiple data types/owners on multiple virtualmachines6. Resources provisioning and deprovisioning1. Virtual devices2. Data remnants1. AuthenticationGiven a scenario,integrate and troubleshootadvanced authenticationand authorizationtechnologies to supportenterprise security2.objectives.1.2.3.4.5.Certificate-based authenticationSingle sign-on802.1xContext-aware authenticationPush-based authenticationAuthorization1. OAuth2. XACMLCompTIA CASP Certification Practice Exam18

CAS-003 Exam QuestionsTopicDetails3. SPML3.4.5.6.AttestationIdentity proofingIdentity AYF7. Trust models1. RADIUS configurations2. LDAP3. AD1. TechniquesKey stretchingHashingDigital signatureMessage authenticationCode signingPseudo-random number generationPerfect forward secrecyData-in-transit encryptionData-in-memory/processingData-at-rest encryptionDiskBlockFileRecord11. Steganography1.2.3.4.5.6.7.8.9.10.Given a scenario,implement cryptographictechniques.2. Implementations1.2.3.4.5.6.7.8.9.Crypto modulesCrypto processorsCryptographic service providersDRMWatermarkingGPGSSL/TLSSSHS/MIMECompTIA CASP Certification Practice Exam19

CAS-003 Exam QuestionsTopicDetails10. Cryptographic applications and easibility to implementInteroperability11. Stream vs. block12. PKIWild cardOCSP vs. CRLIssuance to entitiesKey escrowCertificateTokensStaplingPinning13. Cryptocurrency/blockchain14. Mobile device encryption considerations15. Elliptic curve cryptography16. P-256 vs. P-384 vs. P5211. Remote access1. Resource and services2. Desktop and application sharing3. Remote assistance2. Unified collaboration toolsGiven a scenario, selectthe appropriate control tosecure communicationsand collaborationsolutions.1. ConferencingWebVideoAudio2. Storage and document collaboration tools3. Unified communication4. Instant messaging5. Presence6. Email7. Telephony and VoIP integration8. Collaboration sitesSocial mediaCloud-basedCompTIA CASP Certification Practice Exam20

CAS-003 Exam QuestionsTopicDetailsResearch, Development and Collaboration 13%1. Perform ongoing research1. Best practices2. New technologies, security systems and services3. Technology evolution (e.g., RFCs, ISO)2. Threat intelligence1.2.3.4.Latest attacksKnowledge of current vulnerabilities and threatsZero-day mitigation controls and remediationThreat modelGiven a scenario, applyresearch methods todetermine industry trends 3. Research security implications of emerging business toolsand their impact to the1. Evolving social media platformsenterprise.2. Integration within the business3. Big Data4. AI/machine learning4. Global IA industry/community1.2.3.4.5.Computer emergency response team (CERT)Conventions/conferencesResearch consultants/vendorsThreat actor activitiesEmerging threat sources1. Systems development life cycleGiven a scenario,implement securityactivities across thetechnology life cycle.RequirementsAcquisitionTest and evaluationCommissioning/decommissioningOperational activitiesMonitoringMaintenanceConfiguration and change management6. Asset disposal7. Asset/object reuse1.2.3.4.5.2. Software development life cycleCompTIA CASP Certification Practice Exam21

CAS-003 Exam QuestionsTopicDetails1. Application security frameworks2. Software assuranceStandard librariesIndustry-accepted approachesWeb services security (WS-security)Forbidden coding techniquesNX/XN bit useASLR useCode qualityCode analyzersFuzzerStaticDynamic3. Development approachesDevOpsSecurity implications of agile, waterfall and spiralsoftware development methodologiesContinuous integrationVersioning4. Secure coding standards5. DocumentationSecurity requirements traceability matrix (SRTM)Requirements definitionSystem design documentTesting plans6. Validation and acceptance testingRegressionUser acceptance testingUnit testingIntegration testingPeer review3. Adapt solutions to address:1. Emerging threats2. Disruptive technologies3. Security trends4. Asset management (inventory control)1. Interpreting security requirements and goals toExplain the importance of communicate with stakeholders from other disciplinesinteraction across diverse1. Sales staffbusiness units to achieve2. Programmersecurity goals.3. Database administrator4. Network administratorCompTIA CASP Certification Practice Exam22

CAS-003 Exam QuestionsTopicDetails5. Management/executive management6. Financial7. Human resources8. Emergency response team9. Facilities manager10. Physical security manager11. Legal counsel2. Provide objective guidance and impartialrecommendations to staff and senior management onsecurity processes and controls3. Establish effective collaboration within teams toimplement secure solutions4. Governance, risk and compliance committeeCompTIA CAS-003 Sample Questions:Question: 1A power outage is caused by a severe thunderstorm and a facility is on generator power. TheCISO decides to activate a plan and shut down non-critical systems to reduce powerconsumption.Which of the following is the CISO activating to identify critical systems and the required steps?a)b)c)d)BIACERTIRPCOOPAnswer: cQuestion: 2Which of the following describes a contract that is used to define the various levels ofmaintenance to be provided by an external business vendor in a secure environment?a)b)c)d)NDAMOUBIASLAAnswer: dCompTIA CASP Certification Practice Exam23

CAS-003 Exam QuestionsQuestion: 3During the decommissioning phase of a hardware project, a security administrator is tasked withensuring no sensitive data is released inadvertently.All paper records are scheduled to be shredded in a crosscut shredder, and the waste will beburned. The system drives and removable media have been removed prior to e-cycling thehardware.Which of the following would ensure no data is recovered from the system drives once they aredisposed of?a)b)c)d)Overwriting all HDD blocks with an alternating series of dataPhysically disabling the HDDs by removing the drive headDemagnetizing the hard drive using a degausserDeleting the UEFI boot loaders from each HDDAnswer: cQuestion: 4The Chief Information Security Officer (CISO) is concerned that certain systems administratorswith privileged access may be reading other users' emails. Review of a tool's output shows theadministrators have used web mail to log into other users' inboxes.Which of the following tools would show this type of output?a)b)c)d)Log analysis toolPassword crackerCommand-line toolFile integrity monitoring toolAnswer: aQuestion: 5Which of the following is the GREATEST security concern with respect to BYOD?a)b)c)d)The filtering of sensitive data out of data flows at geographic boundaries.Removing potential bottlenecks in data transmission paths.The transfer of corporate data onto mobile corporate devices.The migration of data into and out of the network in an uncontrolled manner.Answer: dCompTIA CASP Certification Practice Exam24

CAS-003 Exam QuestionsQuestion: 6A pharmaceutical company is considering moving its technology operations from on-premises toexternally-hosted to reduce costs while improving security and resiliency.These operations contain data that includes the prescription records, medical doctors' notesabout treatment options, and the success rates of prescribed drugs.The company wants to maintain control over its operations because many custom applicationsare in use.Which of the following options represent the MOST secure technical deployment options?(Select THREE).a)b)c)d)e)f)g)h)i)Single asIaasPaasAnswer: a, e, hQuestion: 7A Chief Information Security Officer (CISO) is reviewing the controls in place to support theorganization’s vulnerability management program. The CISO finds patching and vulnerabilityscanning policies and procedures are in place.However, the CISO is concerned the organization is siloed and is not maintaining awareness ofnew risks to the organization. The CISO determines systems administrators need to participatein industry security events.Which of the following is the CISO looking to improve?a)b)c)d)e)Vendor diversificationSystem hardening standardsBounty programsThreat awarenessVulnerability signaturesAnswer: dCompTIA CASP Certification Practice Exam25

CAS-003 Exam QuestionsQuestion: 8During a security assessment, activities were divided into two phases: internal and externalexploitation. The security assessment team set a hard time limit on external activities beforemoving to a compromised box within the enterprise perimeter.Which of the following methods is the assessment team most likely to employ NEXT?a) Pivoting from the compromised, moving laterally through the enterprise, andtrying to exfiltrate data and compromise devices.b) Conducting a social engineering attack attempt with the goal of accessing thecompromised box physically.c) Exfiltrating network scans from the compromised box as a precursor to socialmedia reconnaissanced) Open-source intelligence gathering to identify the network perimeter and scopeto enable further system compromises.Answer: aQuestion: 9While attending a meeting with the human resources department, an organization’s informationsecurity officer sees an employee using a username and password written on a memo pad tolog into a specific service.When the information security officer inquires further as to why passwords are being writtendown, the response is that there are too many passwords to remember for all the differentservices the human resources department is required to use.Additionally, each password has specific complexity requirements and different expiration timeframes.Which of the following would be the BEST solution for the information security officer torecommend?a)b)c)d)e)Utilizing MFAImplementing SSODeploying 802.1XPushing SAML adoptionImplementing TACACSAnswer: bCompTIA CASP Certification Practice Exam26

CAS-003 Exam QuestionsQuestion: 10A security engineer is managing operational, excess, and available equipment for a customer.Three pieces of expensive leased equipment, which are supporting a highly confidential portionof the customer network, have recently been taken out of operation. The engineer determinesthe equipment lease runs for another 18 months.Which of the following is the BEST course of action for the engineer to take to decommissionthe equipment properly?a) Remove any labeling indicating the equipment was used to process confidentialdata and mark it as available for reuse.b) Return the equipment to the leasing company and seek a refund for the unusedtime.c) Redeploy the equipment to a less sensitive part of the network until the leaseexpires.d) Securely wipe all device memory and store the equipment in a secure locationuntil the end of the lease.Answer: dStudy Guide to Crack CompTIA CASP CAS-003 Exam: Getting details of the CAS-003 syllabus, is the first step of a study plan. Thispdf is going to be of ultimate help. Completion of the syllabus is must to passthe CAS-003 exam. Making a schedule is vital. A structured method of preparation leads tosuccess. A candidate must plan his schedule and follow it rigorously to attainsuccess. Joining the CompTIA provided training for CAS-003 exam could be of muchhelp. If there is specific training for the exam, you can discover it from thelink above. Read from the CAS-003 sample questions to gain your idea about the actualexam questions. In this PDF useful sample questions are provided to makeyour exam preparation easy. Practicing on CAS-003 practice tests is must. Continuous practice will makeyou an expert in all syllabus areas.CompTIA CASP Certification Practice Exam27

CAS-003 Exam QuestionsReliable Online Practice Test for CAS-003 CertificationMake EduSum.com your best friend during your CompTIA Advanced SecurityPractitioner exam preparation. We provide authentic practice tests for the CAS-003exam. Experts design these online practice tests, so we can offer you an exclusiveexperience of taking the actual CAS-003 exam. We guarantee you 100% success inyour first exam attempt if y

CompTIA Cybersecurity. Before you start your CAS-003 preparation you may struggle to get all the crucial CASP materials like CAS-003 syllabus, sample questions, study guide. But don't worry the CAS-003 PDF is here to help you prepare in a stress free manner. The PDF is a combination of all your queries like- What is in the CAS-003 syllabus?