CS0-001 Free Practice Test

- (Exam Topic 1)
After scanning the main company’s website with the OWASP ZAP tool, a cybersecurity analyst is reviewing the following warning:
< ><>>< ><>

1. A. The analyst should implement a scanner exception for the false positive.
2. B. The system administrator should disable SSL and implement TLS.
3. C. The developer should review the code and implement a code fix.
4. D. The organization should update the browser GPO to resolve the issue.

Correct Answer: D

- (Exam Topic 3)
Server contains baseline images that are deployed to sensitive workstations on a regular basis. The images are evaluated once per month for patching and other fixes, but do not change otherwise. Which of the following controls should be put in place to secure the file server and ensure the images are not changed?

1. A. Install and configure a file integrity monitoring tool on the server and allow updates to the mages each month.
2. B. Schedule vulnerability scans of the server at least once per month before the images are updated
3. C. Require the use of two-factor authentication tor any administrator or user who needs to connect to the server.
4. D. Install a honeypot to identify any attacks before the baseline images can be compromised

Correct Answer: A

- (Exam Topic 1)
A security analyst is performing a review of Active Directory and discovers two new user accounts in the accounting department. Neither of the users has elevated permissions, but accounts in the group are given access to the company’s sensitive financial management application by default. Which of the following is the BEST course of action?

1. A. Follow the incident response plan for the introduction of new accounts
2. B. Disable the user accounts
3. C. Remove the accounts’ access privileges to the sensitive application
4. D. Monitor the outbound traffic from the application for signs of data exfiltration
5. E. Confirm the accounts are valid and ensure role-based permissions are appropriate

Correct Answer: E

- (Exam Topic 1)
The new Chief Technology Officer (CTO) is seeking recommendations for network monitoring services for the local intranet. The CTO would like the capability to monitor all traffic to and from the gateway, as well as the capability to block certain content. Which of the following recommendations would meet the needs of the organization?

1. A. Recommend setup of IP filtering on both the internal and external interfaces of the gateway router.
2. B. Recommend installation of an IDS on the internal interface and a firewall on the external interface of the gateway router.
3. C. Recommend installation of a firewall on the internal interface and a NIDS on the external interface of the gateway router.
4. D. Recommend installation of an IPS on both the internal and external interfaces of the gateway router.

Correct Answer: C

- (Exam Topic 2)
A company has received the results of an external vulnerability scan from its approved scanning vendor. The company is required to remediate these vulnerabilities for clients within 72 hours of acknowledgement of the scan results.
Which of the following contract breaches would result if this remediation is not provided for clients within the time frame?

1. A. Service level agreement
2. B. Regulatory compliance
3. C. Memorandum of understanding
4. D. Organizational governance

Correct Answer: A