CAS-004 Free Practice Test

A security analyst is reviewing network connectivity on a Linux workstation and examining the active TCP connections using the command line.
Which of the following commands would be the BEST to run to view only active Internet connections?

1. A. sudo netstat -antu | grep “LISTEN” | awk ‘{print$5}’
2. B. sudo netstat -nlt -p | grep “ESTABLISHED”
3. C. sudo netstat -plntu | grep -v “Foreign Address”
4. D. sudo netstat -pnut -w | column -t -s $’\w’
5. E. sudo netstat -pnut | grep -P ^tcp

Correct Answer: E

A developer is creating a new mobile application for a company. The application uses REST API and TLS 1.2 to communicate securely with the external back-end server. Due to this configuration, the company is concerned about HTTPS interception attacks.
Which of the following would be the BEST solution against this type of attack?

1. A. Cookies
2. B. Wildcard certificates
3. C. HSTS
4. D. Certificate pinning

Correct Answer: D

A pharmaceutical company recently experienced a security breach within its customer-facing web portal. The attackers performed a SQL injection attack and exported tables from the company’s managed database, exposing customer information.
The company hosts the application with a CSP utilizing the IaaS model. Which of the following parties is ultimately responsible for the breach?

1. A. The pharmaceutical company
2. B. The cloud software provider
3. C. The web portal software vendor
4. D. The database software vendor

Correct Answer: A

A forensic expert working on a fraud investigation for a US-based company collected a few disk images as evidence.
Which of the following offers an authoritative decision about whether the evidence was obtained legally?

1. A. Lawyers
2. B. Court
3. C. Upper management team
4. D. Police

Correct Answer: A

A company is moving most of its customer-facing production systems to the cloud-facing production systems to the cloud. IaaS is the service model being used. The Chief Executive Officer is concerned about the type of encryption available and requires the solution must have the highest level of security.
Which of the following encryption methods should the cloud security engineer select during the implementation phase?

1. A. Instance-based
2. B. Storage-based
3. C. Proxy-based
4. D. Array controller-based

Correct Answer: B
We recommend that you encrypt your virtual hard disks (VHDs) to help protect your boot volume and data volumes at rest in storage, along with your encryption keys and secrets. Azure Disk Encryption helps you encrypt your Windows and Linux IaaS virtual machine disks. Azure Disk Encryption uses the
industry-standard BitLocker feature of Windows and the DM-Crypt feature of Linux to provide volume
encryption for the OS and the data disks. The solution is integrated with Azure Key Vault to help you control and manage the disk-encryption keys and secrets in your key vault subscription. The solution also ensures that all data on the virtual machine disks are encrypted at rest in Azure Storage.
https://docs.microsoft.com/en-us/azure/security/fundamentals/iaas