CompTIA CySA+ (CS0-003) Free Practice Exam Questions

444 real CompTIA CySA+ (CS0-003) exam questions with answers and AI explanations. CompTIA certification prep — page 31 of 45.

  1. Question 351: A security analyst identifies the following log entry in the web server logs: 10.203.10.23 - - [22/May/2024 11:06:29] "GET /admin?cmd=bash+-i+>%26+/dev/tcp/10.…
  2. Question 353: An after-action review of a ransomware attack on a company identified deficiencies in responsiveness and consistency. Which of the following choices would best…
  3. Question 354: A security analyst is performing a malware analysis on a device and receives the following instructions: • Reduce the blast radius of the potential threat. • P…
  4. Question 355: A security manager reviews the permissions for the approved users of a shared folder and finds accounts that are not on the approved access list. While investi…
  5. Question 356: A SOC analyst is reviewing the weekly EDR report. The report shows that the same application was blocked once every 24 hours. Which of the following tools shou…
  6. Question 357: A finance department employee opens an unsolicited email that contains a malicious payload. The payload quickly spreads through the finance department, but doe…
  7. Question 359: Which of the following explains why a company would consider enriching data before sending it to the SIEM?
  8. Question 360: A company suspects a coordinated effort to attack their platform. Web server logs show malicious activity from many different source IP addresses located in di…
  9. Question 362: The Chief Information Security Officer wants the same level of security to be present whether a remote worker logs in at home or at a coffee shop. Which of the…
  10. Question 363: A report contains IoC and TTP information for a zero-day exploit that leverages vulnerabilities in a specific version of a web application. Which of the follow…