Online Access Free CompTIA.CAS-003.v2022-04-30.q101 Practice Test (Page 17)

CAS-003 Exam Question 76

A security analyst sees some suspicious entries in a log file from a web server website, which has a form that allows customers to leave feedback on the company's products. The analyst believes a malicious actor is scanning the web form. To know which security controls to put in place, the analyst first needs to determine the type of activity occurring to design a control. Given the log below:

Which of the following is the MOST likely type of activity occurring?

A.Fuzzing

B.SQL injection

C.XSS scanning

D.Brute forcing

CAS-003 Exam Question 77

An organization is evaluating options related to moving organizational assets to a cloud-based environment using an IaaS provider. One engineer has suggested connecting a second cloud environment within the organization's existing facilities to capitalize on available datacenter space and resources. Other project team members are concerned about such a commitment of organizational assets, and ask the Chief Security Officer (CSO) for input. The CSO explains that the project team should work with the engineer to evaluate the risks associated with using the datacenter to implement:

A.a hybrid cloud.

B.a hosted hybrid cloud.

C.a private cloud.

D.an on-premises private cloud.

CAS-003 Exam Question 78

A network engineer wants to deploy user-based authentication across the company's wired and wireless infrastructure at layer 2 of the OSI model. Company policies require that users be centrally managed and authenticated and that each user's network access be controlled based on the user's role within the company. Additionally, the central authentication system must support hierarchical trust and the ability to natively authenticate mobile devices and workstations. Which of the following are needed to implement these requirements? (Select TWO).

A.SAML

B.WAYF

C.LDAP

D.RADIUS

E.Shibboleth

F.PKI

Correct Answer: C,D

RADIUS is commonly used for the authentication of WiFi connections. We can use LDAP and RADIUS for the authentication of users and devices.
LDAP and RADIUS have something in common. They're both mainly protocols (more than a database) which uses attributes to carry information back and forth. They're clearly defined in RFC documents so you can expect products from different vendors to be able to function properly together.
RADIUS is NOT a database. It's a protocol for asking intelligent questions to a user database. LDAP is just a database. In recent offerings it contains a bit of intelligence (like Roles, Class of Service and so on) but it still is mainly just a rather stupid database. RADIUS (actually RADIUS servers like FreeRADIUS) provide the administrator the tools to not only perform user authentication but also to authorize users based on extremely complex checks and logic. For instance you can allow access on a specific NAS only if the user belongs to a certain category, is a member of a specific group and an outside script allows access. There's no way to perform any type of such complex decisions in a user database.
Incorrect Answers:
A: Security Assertion Markup Language (SAML) is an XML-based, open-standard data format for exchanging authentication and authorization data between parties, in particular, between an identity provider and a service provider. It is used for authenticating users, not devices.
B: WAYF stands for Where Are You From. It is a third-party authentication provider used by websites of some online institutions. WAYF does not meet the requirements in this question.
E: Shibboleth is an open-source project that provides Single Sign-On capabilities and allows sites to make informed authorization decisions for individual access of protected online resources. It cannot perform the device authentication required in this question.
F: PKI (Public Key Infrastructure) uses digital certificates to affirm the identity of the certificate subject and bind that identity to the public key contained in the certificate. PKI does not meet the requirements in this question.
References:
https://kkalev.wordpress.com/2007/03/17/radius-vs-ldap/

CAS-003 Exam Question 79

The Chief Information Security Officer (CISO) has asked the security team to determine whether the organization is susceptible to a zero-day exploit utilized in the banking industry and whether attribution is possible. The CISO has asked what process would be utilized to gather the information, and then wants to apply signatureless controls to stop these kinds of attacks in the future. Which of the following are the MOST appropriate ordered steps to take to meet the CISO's request?

A.1. Analyze the current threat intelligence2. Utilize information sharing to obtain the latest industry IOCs3. Perform a sweep across the network to identify positive matches4. Apply machine learning algorithms

B.1. Obtain the latest IOCs from the open source repositories2. Perform a sweep across the network to identify positive matches3. Sandbox any suspicious files4. Notify the CERT team to apply a future proof threat model

C.1. Apply artificial intelligence algorithms for detection2. Inform the CERT team3.
Research threat intelligence and potential adversaries4. Utilize threat intelligence to apply Big Data techniques

D.1. Perform the ongoing research of the best practices2. Determine current vulnerabilities and threats3. Apply Big Data techniques4. Use antivirus control

CAS-003 Exam Question 80

A company that has been breached multiple times is looking to protect cardholder data. The previous undetected attacks all mimicked normal administrative-type behavior. The company must deploy a host solution to meet the following requirements:
* Detect administrative actions
* Block unwanted MD5 hashes
* Provide alerts
* Stop exfiltration of cardholder data
Which of the following solutions would BEST meet these requirements? (Choose two.)

A.AV

B.EDR

C.HIDS

D.DLP

E.HIPS

F.EFS

Other Version: 4841CompTIA.CAS-003.v2021-10-13.q221; 61CompTIA.Itpassleader.CAS-003.v2021-08-06.by.gale.404q.pdf

Latest Upload: 160CompTIA.220-1202.v2026-06-16.q110; 111TheInstitutes.CPCU-500.v2026-06-16.q25; 155ACAMS.CAMS7-CN.v2026-06-16.q170; 182CBIC.CIC.v2026-06-15.q123; 126Peoplecert.ITIL-4-Specialist-High-velocity-IT.v2026-06-15.q16; 209HashiCorp.Terraform-Associate-004.v2026-06-15.q126; 130Peoplecert.ITILFNDv5.v2026-06-15.q26; 128Workday.Workday-Pro-HCM-Reporting.v2026-06-15.q28; 129Fortinet.NSE5_SSE_AD-7.6.v2026-06-15.q17; 320PMI.PMI-ACP.v2026-06-15.q523

CAS-003 Exam Question 76

CAS-003 Exam Question 77

CAS-003 Exam Question 78

CAS-003 Exam Question 79

CAS-003 Exam Question 80

Download PDF File