Login / Register   My Cart (0)
  • Home
  • Articles
  • CAS-004 Free Exam Study Guide! (Updated 620 Questions) [Q17-Q32]

CAS-004 Free Exam Study Guide! (Updated 620 Questions) [Q17-Q32]

Share

CAS-004 Free Exam Study Guide! (Updated 620 Questions)

CAS-004 Dumps for CompTIA CASP Certified Exam Questions and Answer

NEW QUESTION # 17
A company created an external, PHP-based web application for its customers. A security researcher reports that the application has the Heartbleed vulnerability. Which of the following would BEST resolve and mitigate the issue? (Select TWO).

  • A. Changing the web server from HTTPS to HTTP
  • B. Updating the OpenSSL library
  • C. Deploying a WAF signature
  • D. Changing the code from PHP to ColdFusion
  • E. UsingSSLv3
  • F. Fixing the PHP code

Answer: B,C

Explanation:
Explanation
Deploying a web application firewall (WAF) signature is a way to detect and block attempts to exploit the Heartbleed vulnerability on the web server. A WAF signature is a pattern that matches a known attack vector, such as a malicious heartbeat request. By deploying a WAF signature, the company can protect its web application from Heartbleed attacks until the underlying vulnerability is fixed.
Updating the OpenSSL library is the ultimate way to fix and mitigate the Heartbleed vulnerability. The OpenSSL project released version 1.0.1g on April 7, 2014, which patched the bug by adding a bounds check to the heartbeat function. By updating the OpenSSL library on the web server, the company can eliminate the vulnerability and prevent any future exploitation.
B: Fixing the PHP code is not a way to resolve or mitigate the Heartbleed vulnerability, because the vulnerability is not in the PHP code, but in the OpenSSL library that handles the SSL/TLS encryption for the web server.
C: Changing the web server from HTTPS to HTTP is not a way to resolve or mitigate the Heartbleed vulnerability, because it would expose all the web traffic to eavesdropping and tampering by attackers. HTTPS provides confidentiality, integrity, and authentication for web communications, and should not be disabled for security reasons.
D: Using SSLv3 is not a way to resolve or mitigate the Heartbleed vulnerability, because SSLv3 is an outdated and insecure protocol that has been deprecated and replaced by TLS. SSLv3 does not support modern cipher suites, encryption algorithms, or security features, and is vulnerable to various attacks, such as POODLE.
E: Changing the code from PHP to ColdFusion is not a way to resolve or mitigate the Heartbleed vulnerability, because the vulnerability is not related to the programming language of the web application, but to the OpenSSL library that handles the SSL/TLS encryption for the web server.
https://owasp.org/www-community/vulnerabilities/Heartbleed_Bug
https://heartbleed.com/


NEW QUESTION # 18
The security team is looking into aggressive bot behavior that is resulting in performance issues on the web server After further investigation, the security engineer determines that the bot traffic is legitimate. Which of the following is the best course of action to reduce performance issues without allocating additional resources to the server?

  • A. Monitor legitimate SEO bot traffic for abnormalities.
  • B. Update robots.txt to slow down the crawling speed.
  • C. Block all bot traffic using the IPS.
  • D. Configure the WAF to rate-limit bot traffic.

Answer: D


NEW QUESTION # 19
A systems administrator is preparing to run a vulnerability scan on a set of information systems in the organization. The systems administrator wants to ensure that the targeted systems produce accurate information, especially regarding configuration settings. Which of the following scan types will provide the systems administrator with the most accurate information?

  • A. A passive, non-credentialed scan
  • B. An active, credentialed scan
  • C. An active, non-credentialed scan
  • D. A passive, credentialed scan

Answer: B

Explanation:
"An active, credentialed scan delivers the highest accuracy for vulnerability assessment because it authenticates to the target systems and interacts directly with them. Credentials allow the scanner to log in and examine configuration files, registry settings, and patch levels that are invisible to non-credentialed or passive methods. Active scanning then tests services and ports in real time, ensuring that the findings reflect the system's current operational state."
- CompTIA CASP+ Official Study Guide, Third Edition, Chapter 6: Vulnerability Assessment and Penetration Testing, pp. 412-413
"Use credentialed scans whenever possible to obtain reliable configuration data and security posture metrics.
Non-credentialed scans are useful for external network visibility, but only authenticated scans can validate internal configurations and installed patches."
- CompTIA CASP+ CAS-004 Exam Objectives (v7.1), Section 4.1: Conduct Vulnerability Assessments, p.
21
By choosing an active, credentialed scan, the systems administrator ensures that the scanner authenticates to each host, interrogates local settings, and produces a detailed and accurate inventory of vulnerabilities and configuration issues.
References:
CompTIA CASP+ Official Study Guide, Third Edition, pp. 412-413
CompTIA CASP+ CAS-004 Exam Objectives (v7.1), Section 4.1, p. 21


NEW QUESTION # 20
An organization recently started processing, transmitting, and storing its customers' credit card information.
Within a week of doing so, the organization suffered a massive breach that resulted in the exposure of the customers' information.
Which of the following provides the BEST guidance for protecting such information while it is at rest and in transit?

  • A. PCI DSS
  • B. GDPR
  • C. ISO
  • D. NIST

Answer: A

Explanation:
PCI DSS (Payment Card Industry Data Security Standard) is a standard that provides the best guidance for protecting credit card information while it is at rest and in transit. PCI DSS is a standard that defines the security requirements and best practices for organizations that process, store, or transmit credit card information, such as merchants, service providers, or acquirers. PCI DSS aims to protect the confidentiality, integrity, and availability of credit card information and prevent fraud or identity theft. NIST (National Institute of Standards and Technology) is not a standard that provides the best guidance for protecting credit card information, but an agency that develops standards, guidelines, and recommendations for various fields of science and technology, including cybersecurity. GDPR (General Data Protection Regulation) is not a standard that provides the best guidance for protecting credit card information, but a regulation that defines the data protection and privacy rights and obligations for individuals and organizations in the European Union or the European Economic Area. ISO (International Organization for Standardization) is not a standard that provides the best guidance for protecting credit card information, but an organization that develops standards for various fields of science and technology, including information security. Verified References: https://www.
comptia.org/blog/what-is-pci-dss https://partners.comptia.org/docs/default-source/resources/casp-content- guide


NEW QUESTION # 21
A company recently migrated its critical web application to a cloud provider's environment. As part of the company's risk management program, the company intends to conduct an external penetration test. According to the scope of work and the rules of engagement, the penetration tester will validate the web application's security and check for opportunities to expose sensitive company information in the newly migrated cloud environment. Which of the following should be the first consideration prior to engaging in the test?

  • A. Obtain agreement between the company and the cloud provider to conduct penetration testing.
  • B. Ensure the latest patches and signatures are deployed on the web server.
  • C. Create an NDA between the external penetration tester and the company.
  • D. Prepare a redundant server to ensure the critical web application's availability during the test.

Answer: A

Explanation:
Before conducting a penetration test in a cloud environment, it is critical to first obtain permission from the cloud service provider. Cloud providers often have strict rules about penetration testing to avoid unintended service disruptions or violations of service agreements. Without this agreement, the company could face legal or operational consequences. This aligns with CASP+ best practices, which emphasize the importance of securing approval and understanding shared responsibility models in cloud environments before engaging in security testing.
Reference:
CASP+ CAS-004 Exam Objectives: Domain 1.0 - Risk Management (Penetration Testing in Cloud Environments) CompTIA CASP+ Study Guide: Cloud Security and Legal Considerations for Penetration Testing


NEW QUESTION # 22
A company has received threat intelligence about bad routes being advertised. The company has also been receiving reports of degraded internet activity. When looking at the routing table on the edge router, a security engineer discovers the following:

Which of the following can the company implement to prevent receiving bad routes from peers, while still allowing dynamic updates?

  • A. EIGRP prefix list
  • B. OSPF prefix list
  • C. DNS
  • D. BGP prefix list

Answer: D


NEW QUESTION # 23
An IT director is working on a solution to meet the challenge of remotely managing laptop devices and securely locking them down. The solution must meet the following requirements:
* Cut down on patch management.
* Make use of standard configurations.
* Allow for custom resource configurations.
* Provide access to the enterprise system from multiple types of devices.
Which of the following would meet these requirements?

  • A. Emulator
  • B. VDI
  • C. MDM
  • D. Hosted hypervisor

Answer: B

Explanation:
A Virtual Desktop Infrastructure (VDI) solution meets all the listed requirements: reducing patch management, using standard configurations, allowing for custom resource configurations, and providing access from multiple device types. VDI allows centralized management of desktop environments, where patches and updates can be applied once and distributed across all virtual desktops. It also supports flexible resource configurations and secure remote access from various devices. CASP+ highlights VDI as a solution for centralized, secure desktop management that meets modern enterprise needs for mobility and security.
References:
* CASP+ CAS-004 Exam Objectives: Domain 3.0 - Enterprise Security Architecture (VDI for Secure Remote Desktop Management)
* CompTIA CASP+ Study Guide: Virtual Desktop Infrastructure for Centralized Management and Security


NEW QUESTION # 24
A significant weather event caused all systems to fail over to the disaster recovery site successfully. However, successful data replication has not occurred in the last six months, which has resulted in the service being unavailable. V*Vh1ch of the following would BEST prevent this scenario from happening again?

  • A. Implementing scheduled, full interruption tests
  • B. Backing up system log reviews
  • C. Performing department disaster recovery walk-throughs
  • D. Performing routine tabletop exercises

Answer: A


NEW QUESTION # 25
The security analyst discovers a new device on the company's dedicated loT subnet during the most recent vulnerability scan. The scan results show numerous open ports and insecure protocols in addition to default usernames and passwords. A camera needs to transmit video to the security server in the loT subnet. Which of the following should the security analyst recommend to securely operate the camera?

  • A. Harden the camera configuration.
  • B. Send camera logs to the SIEM.
  • C. Place the camera on an isolated segment
  • D. Encrypt the camera's video stream.

Answer: A

Explanation:
To securely operate the camera, the security analyst should recommend hardening the camera configuration. This involves several steps:
Changing Default Credentials: Default usernames and passwords are a common vulnerability. They should be replaced with strong, unique passwords.
Disabling Unnecessary Services and Ports: The numerous open ports and insecure protocols should be reviewed, and any unnecessary services should be disabled to reduce the attack surface.
Firmware Updates: Ensuring the camera's firmware is up to date will mitigate known vulnerabilities.
Enable Encryption: If possible, enable encryption for both data in transit and at rest to protect the video stream and other communications from interception.
This approach addresses the identified vulnerabilities directly and ensures that the device is more secure. Simply sending logs to the SIEM or isolating the camera might not fully mitigate the risks associated with default settings and open ports.
Reference:
CompTIA CASP+ CAS-004 Exam Objectives: Section 2.4: Implement security activities across the technology life cycle.
CompTIA CASP+ Study Guide, Chapter 5: Implementing Host Security.


NEW QUESTION # 26
A technician is reviewing the logs and notices a large number of files were transferred to remote sites over the course of three months. This activity then stopped. The files were transferred via TLS-protected HTTP sessions from systems that do not send traffic to those sites.
The technician will define this threat as:

  • A. an on-path attack.
  • B. a zero-day attack.
  • C. an advanced persistent threat.
  • D. a decrypting RSA using obsolete and weakened encryption attack.

Answer: C

Explanation:
This question doesn't describe a DROWN, Zero-Day or on-path attack. The malicious actor was persistent over time (three months) and exfiltrated the data it needed. Then stopped once its objective was met.


NEW QUESTION # 27
A security engineer is re-architecting a network environment that provides regional electric distribution services. During a pretransition baseline assessment, the engineer identified the following security-relevant characteristics of the environment:
- Enterprise IT servers and supervisory industrial systems share the
same subnet.
- Supervisory controllers use the 750MHz band to direct a portion of
fielded PLCs.
- Command and telemetry messages from industrial control systems are
unencrypted and unauthenticated.
Which of the following re-architecture approaches would be best to reduce the company's risk?

  • A. Segment supervisory controllers from field PLCs, disconnect the entire network from the internet, and use only the 750MHz link for controlling energy distribution services.
  • B. Characterize safety-critical versus non-safety-critical systems, isolate safety-critical systems from other systems, and increase the directionality of RF links in the field.
  • C. Create a new network segment for enterprise IT servers, configure NGFW to enforce a well- defined segmentation policy, and implement a WIDS to monitor the spectrum.
  • D. Implement a one-way guard between enterprise IT services and mission-critical systems, obfuscate legitimate RF signals by broadcasting noise, and implement modern protocols to authenticate ICS messages.

Answer: C

Explanation:
The best approach to reduce the company's risk is to segregate the enterprise IT servers and supervisory industrial systems. Creating a new network segment and using a Next-Generation Firewall (NGFW) to enforce a strict segmentation policy will help to isolate the systems and protect against potential attacks. Additionally, implementing a Wireless Intrusion Detection System (WIDS) can help monitor the spectrum for unauthorized devices or interference.


NEW QUESTION # 28
A security analyst is evaluating all third-party software an organization uses. The analyst discovers that each department is violating the organization's policy by provisioning access to SaaS products without oversight from the security group and without using a centralized access control methodology. Which of the following should the organization use to enforce its SaaS product access requirements?

  • A. VDI
  • B. SAML
  • C. SLDAP
  • D. TACACS

Answer: B

Explanation:
Comprehensive and Detailed Step by Step
SAML (Security Assertion Markup Language)is a standard for single sign-on (SSO) that provides centralized authentication and authorization, ensuring SaaS access is governed by organizational policies.
SLDAP (Secure LDAP)focuses on directory services but does not centralize SaaS product access.
VDI (Virtual Desktop Infrastructure)is unrelated to SaaS authentication.
TACACS (Terminal Access Controller Access-Control System)is more suited for network devices.
Reference:
CompTIA CASP+ Exam Objective 2.3: Implement authentication and authorization technologies.
CASP+ Study Guide, 5th Edition, Chapter 6, Identity and Access Management.


NEW QUESTION # 29
A user from the sales department opened a suspicious file attachment. The sales department then contacted the SOC to investigate a number of unresponsive systems, and the team successfully identified the file and the origin of the attack.
Which of the following is the NEXT step of the incident response plan?

  • A. Recovery
  • B. Response
  • C. Containment
  • D. Remediation

Answer: C

Explanation:
https://www.sciencedirect.com/topics/computer-science/containment-strategy


NEW QUESTION # 30
Users are claiming that a web server is not accessible. A security engineer logs for the site. The engineer connects to the server and runs netstat -an and receives the following output:
Which of the following is MOST likely happening to the server?

  • A. Buffer overflow
  • B. ARP spoofing
  • C. Denial of service
  • D. Port scanning

Answer: C

Explanation:
Explanation
A denial of service (DoS) attack is a malicious attempt to disrupt the normal functioning of a server by overwhelming it with requests or traffic1. One possible indicator of a DoS attack is a large number of connections from a single source IP address1. In this case, the output of netstat -an shows that there are many connections from 213.37.55.67 with different port numbers and in TIME WAIT state23. This suggests that the attacker is sending many SYN packets to initiate connections but not completing them, thus exhausting the server's resources and preventing legitimate users from accessing it1.


NEW QUESTION # 31
Which of the following represents the MOST significant benefit of implementing a passwordless authentication solution?

  • A. Biometric authenticators are immutable.
  • B. Zero trust is achieved.
  • C. The likelihood of account compromise is reduced.
  • D. Privacy risks are minimized.

Answer: C

Explanation:
Reference: https://cloudworks.no/en/5-benefits-of-passwordless-authentication/


NEW QUESTION # 32
......


CompTIA Advanced Security Practitioner (CASP+) is a certification exam that validates advanced-level security skills and knowledge in the IT industry. CompTIA Advanced Security Practitioner (CASP+) Exam certification is designed for experienced IT professionals who are looking to advance their careers in information security. CAS-004 exam is vendor-neutral, which means that candidates can demonstrate their skills across a wide range of technologies and platforms.

 

Use Real CAS-004 Dumps - 100% Free CAS-004 Exam Dumps: https://testking.testpassed.com/CAS-004-pass-rate.html

Related Articles

more
CompTIA CAS-004 Certification Practice Exam

If you choose TestPassed test questions, you will pass test and gain success surely! Top-level faculty and excellent educational experts guarantee high-quality test questions which make users pass exam certainly.

Latest Test Passed

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 TestPassed NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy