CAS-001の無料問題集（495題）、CAS-001認定試験参考書

CompTIA CAS-001 問題集

試験コード：CAS-001

試験名称：CompTIA Advanced Security Practitioner

最近更新時間：2025-03-04

問題と解答：全495問

CAS-001 無料でデモをダウンロード：

PDF版 Demo ソフト版 Demo オンライン版 Demo

無料問題集CAS-001 資格取得

質問 1：
The security manager of a company has hired an external consultant to conduct a security assessment of the company network. The contract stipulates that the consultant is not allowed to transmit any data on the company network while performing wired and wireless security assessments. Which of the following technical means can the consultant use to determine the manufacturer and likely operating system of the company wireless and wired network devices, as well as the computers connected to the company network?
A. Port scanner
B. Social engineering
C. Protocol analyzer
D. Grey box testing
正解：C

質問 2：
-
After being informed that the company DNS is unresponsive, the system administrator issues the following command from a Linux workstation:
SSH -p 2020 -l user dnsserver.company.com
Once at the command prompt, the administrator issues the below commanD.
---
Service bind restart
The system returns the below response:
Unable to restart BIND
Which of the following is true about the above situation?
A. The administrator used the wrong SSH port to restart the DNS server.
B. The service was restarted correctly, but it failed to bind to the network interface.
C. The administrator must use the sudo command in order to restart the service.
D. The service did not restart because the bind command is privileged.
正解：C

質問 3：
A newly-hired Chief Information Security Officer (CISO) is faced with improving security for a company with low morale and numerous disgruntled employees. After reviewing the situation for several weeks the CISO publishes a more comprehensive security policy with associated standards. Which of the following issues could be addressed through the use of technical controls specified in the new security policy?
A. An employee remotely configuring the email server at a relative's company during work hours.
B. Employees publishing negative information and stories about company management on social network sites and blogs.
C. External parties cloning some of the company's externally facing web pages and creating look-alike sites.
D. Employees posting negative comments about the company from personal phones and PDAs.
正解：A

質問 4：
The risk manager is reviewing a report which identifies a requirement to keep a business critical legacy system operational for the next two years. The legacy system is out of support because the vendor and security patches are no longer released. Additionally, this is a proprietary embedded system and little is documented and known about it. Which of the following should the Information Technology department implement to reduce the security risk from a compromise of this system?
A. Install an antivirus and HIDS on the system.
B. Virtualize the system and migrate it to a cloud provider.
C. Segment the device on its own secure network.
D. Hire developers to reduce vulnerabilities in the code.
正解：C

質問 5：
An organization recently upgraded its wireless infrastructure to support WPA2 and requires all clients to use this method. After the upgrade, several critical wireless clients fail to connect because they are only WEP compliant. For the foreseeable future, none of the affected clients have an upgrade path to put them into compliance with the WPA2 requirement. Which of the following provides the MOST secure method of integrating the non-compliant clients into the network?
A. Create a separate SSID and require the legacy clients to connect to the wireless network using certificate-based 802.1x.
B. Create a separate SSID and WEP key to support the legacy clients and enable detection of rogue APs.
C. Create a separate SSID and WEP key on a new network segment and only allow required communication paths.
D. Create a separate SSID and require the use of dynamic WEP keys.
正解：C

質問 6：
A software development manager is taking over an existing software development project. The team currently suffers from poor communication due to a long delay between requirements documentation and feature delivery. This gap is resulting in an above average number of security-related bugs making it into production. Which of the following development methodologies is the team MOST likely using now?
A. Scrum
B. Agile
C. Spiral
D. Waterfall
正解：D

質問 7：
An Association is preparing to upgrade their firewalls at five locations around the United States. Each of the three vendor's RFP responses is in-line with the security and other requirements. Which of the following should the security administrator do to ensure the firewall platform is appropriate for the Association?
A. Develop criteria and rate each firewall platform based on information in the RFP responses.
B. Correlate current industry research with the RFP responses to ensure validity.
C. Create a lab environment to evaluate each of the three firewall platforms.
D. Benchmark each firewall platform's capabilities and experiences with similar sized companies.
正解：C

質問 8：
A new IDS device is generating a very large number of irrelevant events. Which of the following would BEST remedy this problem?
A. Adjust IDS filters to decrease the number of false positives.
B. Change the IDS to use a heuristic anomaly filter.
C. Adjust IDS filters to increase the number of false negatives.
D. Change the IDS filter to data mine the false positives for statistical trending data.
正解：A

安全的な支払方式を利用しています

Credit Cardは今まで全世界の一番安全の支払方式です。少数の手続きの費用かかる必要がありますとはいえ、保障があります。お客様の利益を保障するために、弊社のCAS-001問題集は全部Credit Cardで支払われることができます。

領収書について：社名入りの領収書が必要な場合、メールで社名に記入していただき送信してください。弊社はPDF版の領収書を提供いたします。

弊社は失敗したら全額で返金することを承諾します

我々は弊社のCAS-001問題集に自信を持っていますから、試験に失敗したら返金する承諾をします。我々のCompTIA CAS-001を利用して君は試験に合格できると信じています。もし試験に失敗したら、我々は君の支払ったお金を君に全額で返して、君の試験の失敗する経済損失を減少します。

一年間の無料更新サービスを提供します

君が弊社のCompTIA CAS-001をご購入になってから、我々の承諾する一年間の更新サービスが無料で得られています。弊社の専門家たちは毎日更新状態を検査していますから、この一年間、更新されたら、弊社は更新されたCompTIA CAS-001をお客様のメールアドレスにお送りいたします。だから、お客様はいつもタイムリーに更新の通知を受けることができます。我々は購入した一年間でお客様がずっと最新版のCompTIA CAS-001を持っていることを保証します。

弊社のCompTIA CAS-001を利用すれば試験に合格できます

弊社のCompTIA CAS-001は専門家たちが長年の経験を通して最新のシラバスに従って研究し出した勉強資料です。弊社はCAS-001問題集の質問と答えが間違いないのを保証いたします。

この問題集は過去のデータから分析して作成されて、カバー率が高くて、受験者としてのあなたを助けて時間とお金を節約して試験に合格する通過率を高めます。我々の問題集は的中率が高くて、100％の合格率を保証します。我々の高質量のCompTIA CAS-001を利用すれば、君は一回で試験に合格できます。

弊社は無料CompTIA CAS-001サンプルを提供します

お客様は問題集を購入する時、問題集の質量を心配するかもしれませんが、我々はこのことを解決するために、お客様に無料CAS-001サンプルを提供いたします。そうすると、お客様は購入する前にサンプルをダウンロードしてやってみることができます。君はこのCAS-001問題集は自分に適するかどうか判断して購入を決めることができます。

CAS-001試験ツール：あなたの訓練に便利をもたらすために、あなたは自分のペースによって複数のパソコンで設置できます。

TopExamは君にCAS-001の問題集を提供して、あなたの試験への復習にヘルプを提供して、君に難しい専門知識を楽に勉強させます。TopExamは君の試験への合格を期待しています。

CompTIA Advanced Security Practitioner 認定 CAS-001 試験問題:

1. The root cause analysis of a recent security incident reveals that an attacker accessed a printer from the Internet. The attacker then accessed the print server, using the printer as a launch pad for a shell exploit. The print server logs show that the attacker was able to exploit multiple accounts, ultimately launching a successful DoS attack on the domain controller.
Defending against which of the following attacks should form the basis of the incident mitigation plan?

A) Buffer overflow
B) Privilege escalation
C) DDoS
D) SYN flood

2. Which of the following is a security advantage of single sign-on? (Select TWO).

A) Applications need to validate authentication tokens.
B) Authentication is secured by the certificate authority.
C) All password transactions are encrypted.
D) Less time and complexity removing user access.
E) Users only have to remember one password.

3. An administrator is assessing the potential risk impact on an accounting system and
categorizes it as follows:
Administrative Files = {(Confidentiality, Moderate), (Integrity, Moderate), (Availability, Low)}
Vendor Information = {(Confidentiality, Moderate), (Integrity, Low), (Availability, Low)}
Payroll Data = {(Confidentiality, High), (Integrity, Moderate), (Availability, Low)}
Which of the following is the aggregate risk impact on the accounting system?

A) {(Confidentiality, High), (Integrity, Moderate), (Availability, Low)}
B) {(Confidentiality, Moderate), (Integrity, Moderate), (Availability, Low)}
C) {(Confidentiality, Moderate), (Integrity, Moderate), (Availability, Moderate)}
D) {(Confidentiality, High), (Integrity, Low), (Availability, Low)}

4. The Information Security Officer (ISO) is reviewing a summary of the findings from the last COOP tabletop exercise. The Chief Information Officer (CIO) wants to determine which additional controls must be implemented to reduce the risk of an extended customer service outage due to the VoIP system being unavailable. Which of the following BEST describes the scenario presented and the document the ISO is reviewing?

A) The ISO is investigating the impact of a possible downtime of the messaging system within the RA.
B) The ISO is evaluating the business implications of a recent telephone system failure within the BI
C) The ISO is calculating the budget adjustment needed to ensure audio/video system redundancy within the RFQ.
D) The ISO is assessing the effect of a simulated downtime involving the telecommunication system within the AAR.

5. Capital Reconnaissance, LLC is building a brand new research and testing location, and the physical security manager wants to deploy IP-based access control and video surveillance. These two systems are essential for keeping the building open for operations. Which of the following controls should the security administrator recommend to determine new threats against the new IP-based access control and video surveillance systems?

A) Require separate non-VLANed networks and NIPS for each physical security system network.
B) Air gap the physical security networks from the administrative and operational networks.
C) Develop a network traffic baseline for each of the physical security systems.
D) Have the Network Operations Center (NOC) review logs and create a CERT to respond to breaches.

質問と回答：

質問 # 1
正解： B

質問 # 2
正解： D、E

質問 # 3
正解： A

質問 # 4
正解： D

質問 # 5
正解： C