CompTIA CySA+ (CS0-003) Exam Guide: Network Security and Vulnerability Analysis, Exams of Business Economics

Download CompTIA CySA+ (CS0-003) Exam Guide: Network Security and Vulnerability Analysis and more Exams Business Economics in PDF only on Docsity!

** CONFIDENTIAL – NOT FOR PUBLIC DISTRIBUTION **

Answer File

CompTIA CySA+

CS0- 003

Contents

Introduction

The purpose of this document is to provide a quick reference guide for the inline

questions found within the Practice Labs lab guides.

Screenshot assessment items are found at the end of each lab exercise. The learner

should follow the steps within the lab guide and take a screenshot when they see the

screenshot assessment item below.

Alert: The images in this document are to be used as a guide. The screenshots

taken by the learner may vary!

Module – System & Network

Security Implementation Concepts

Below are the inline questions found in the summary of System & Network Security

Implementation Concepts. Question Answer 1 Answer 2 Answer 3 Answer 4 Correct Answer Which port does the Splunk application use to receive data from devices on the network?

What needs to be configured after the Splunk application has been installed? [Choose all that apply]. The Receive data field in the Splunk Enterprise application. Open the ports on the firewall to all network traffic Configure a proxy server Run an antivirus scan 1, Which port is used to access the Splunk Enterprise through a web browser?

Which feature can be added on a Windows Server device to encrypt data? Bitlocker Failover Clustering Containers BranchCache 1 Which port does the Splunk application use to receive data from devices on the network?

Exercise 2 – Screenshot This is the last screenshot for Encrypting Sensitive Data, Exercise 2. Screenshot of ACIDM01: Displaying clicking Start encrypting on the Are you ready to encrypt this drive? pane.

Exercise 3 – Screenshot This is the last screenshot for Enable Multifactor Authentication, Exercise 3. Screenshot of ACIWIN11: Displaying entering the username and password and pressing Enter.

Exercise 1 – Screenshot This is the last screenshot for Windows Patch Management Techniques, Exercise 1. Screenshot of ACIWIN11: Displaying selecting Windows Update in the Settings window.

Exercise 2 – Screenshot This is the last screenshot for Linux Patch Management Techniques, Exercise 2. Screenshot of ACIALMA: Displaying executing the command in the Terminal window.

Exercise 1 – Screenshot This is the last screenshot for Monitor Windows Event Log with a PowerShell Script, Exercise 1. Screenshot of ACIWIN11: Displaying clicking OK in the pop-up window.

Exercise 2 – Screenshot This is the last screenshot for Monitor Login Events on Linux Devices, Exercise 2. Screenshot of ACIALMA: Displaying executing the command in the Terminal window.

Exercise 1 – Screenshot This is the last screenshot for Analyze Resource Utilization, Exercise 1. Screenshot of ACIDM01: Displaying navigating to USER and pressing Enter.

Exercise 2 – Screenshot This is the last screenshot for Detecting Unauthorized User Privilege Escalation, Exercise 2. Screenshot of ACIDC01: Displaying clicking close on the pop-up window for the Event Properties - Event 4737, Microsoft Windows security auditing window.

Exercise 1 – Screenshot This is the last screenshot for Monitoring Network Activity, Exercise 1. Screenshot of ACIWIN11: Displaying pressing CRTL+C in the Windows Terminal window.

Exercise 2 – Screenshot This is the last screenshot for Using a Sandbox for Analyzing Malicious Files, Exercise 2. Screenshot of ACIWIN11: Displaying opening Windows Sandbox from the Start menu.