Summer Certification Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

CompTIA CySA+ CS0-003 Updated Exam

Page: 18 / 37
Total 487 questions

CompTIA CyberSecurity Analyst CySA+ Certification Exam Questions and Answers

Question 69

Which of the following should be configured in a WAF to mitigate an RCE attack?

Options:

A.

Rate control in deny mode

B.

Rule to detect and block OS commands

C.

Parameterized queries

D.

Stored procedure in the database

Question 70

Which of the following would a security analyst most likely use to compare TTPs between different known adversaries of an organization?

Options:

A.

MITRE ATTACK

B.

Cyber Kill Cham

C.

OWASP

D.

STIXTAXII

Question 71

Which of the following is a reason why proper handling and reporting of existing evidence are important for the investigation and reporting phases of an incident response?

Options:

A.

TO ensure the report is legally acceptable in case it needs to be presented in court

B.

To present a lessons-learned analysis for the incident response team

C.

To ensure the evidence can be used in a postmortem analysis

D.

To prevent the possible loss of a data source for further root cause analysis

Question 72

Options:

A.

Disaster recovery plan

B.

Business impact analysis

C.

Playbook

D.

Backup plan

Page: 18 / 37
Total 487 questions