CS0-002 Free Practice Test

- (Exam Topic 3)
A cybersecunty analyst needs to harden a server that is currently being used as a web server The server needs to be accessible when entenng www company com into the browser Additionally web pages require frequent updates which are performed by a remote contractor Given the following output:

Which of the following should the cybersecunty analyst recommend to harden the server? (Select TWO).

1. A. Uninstall the DNS service
2. B. Perform a vulnerability scan
3. C. Change the server's IP to a private IP address
4. D. Disable the Telnet service
5. E. Block port 80 with the host-based firewall
6. F. Change the SSH port to a non-standard port

Correct Answer: BD

- (Exam Topic 1)
Which of the following BEST describes the process by which code is developed, tested, and deployed in small batches?

1. A. Agile
2. B. Waterfall
3. C. SDLC
4. D. Dynamic code analysis

Correct Answer: A
Reference: https://www.cleverism.com/software-development-life-cycle-sdlc-methodologies/

- (Exam Topic 1)
A security analyst is reviewing a web application. If an unauthenticated user tries to access a page in the application, the user is redirected to the login page. After successful authentication, the user is then redirected back to the original page. Some users have reported receiving phishing emails with a link that takes them to the application login page but then redirects to a fake login page after successful authentication.
Which of the following will remediate this software vulnerability?

1. A. Enforce unique session IDs for the application.
2. B. Deploy a WAF in front of the web application.
3. C. Check for and enforce the proper domain for the redirect.
4. D. Use a parameterized query to check the credentials.
5. E. Implement email filtering with anti-phishing protection.

Correct Answer: C

- (Exam Topic 3)
Wncn ol the following provides an automated approach 10 checking a system configuration?

1. A. SCAP
2. B. CI/CD
3. C. OVAL
4. D. Scripting
5. E. SOAR

Correct Answer: A

- (Exam Topic 3)
A company offers a hardware security appliance to customers that provides remote administration of a device on the customer's network Customers are not authorized to alter the configuration The company deployed a software process to manage unauthorized changes to the appliance log them, and forward them to a central repository for evaluation Which of the following processes is the company using to ensure the appliance is not altered from its ongmal configured state?

1. A. CI/CD
2. B. Software assurance
3. C. Anti-tamper
4. D. Change management

Correct Answer: D
change management - process through which changes to the configuration of information systems are monitored and controlled. Each individual component should have a separate document or database record that describes its initial state and subsequent changes