1. Home
  2. CompTIA
  3. CS0-002

CompTIA Cybersecurity Analyst (CySA+)

Exam Details

  • Exam Code
    :CS0-002
  • Exam Name
    :CompTIA Cybersecurity Analyst (CySA+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1059 Q&As
  • Last Updated
    :Apr 17, 2025

CompTIA CompTIA Certifications CS0-002 Questions & Answers

  • Question 471:

    Which of the following are essential components within the rules of engagement for a penetration test? (Select TWO).

    A. Schedule

    B. Authorization

    C. List of system administrators

    D. Payment terms

    E. Business justification

  • Question 472:

    A security analyst is attempting to configure a vulnerability scan for a new segment on the network. Given the requirement to prevent credentials from traversing the network while still conducting a credentialed scan, which of the following is the BEST choice?

    A. Install agents on the endpoints to perform the scan

    B. Provide each endpoint with vulnerability scanner credentials

    C. Encrypt all of the traffic between the scanner and the endpoint

    D. Deploy scanners with administrator privileges on each endpoint

  • Question 473:

    An organization uses Common Vulnerability Scoring System (CVSS) scores to prioritize remediation of vulnerabilities.

    Management wants to modify the priorities based on a difficulty factor so that vulnerabilities with lower CVSS scores may get a higher priority if they are easier to implement with less risk to system functionality. Management also wants to quantify the priority. Which of the following would achieve management's objective?

    A. (CVSS Score) * Difficulty = Priority Where Difficulty is a range from 0.1 to 1.0 with 1.0 being easiest and lowest risk to implement

    B. (CVSS Score) * Difficulty = Priority Where Difficulty is a range from 1 to 5 with 1 being easiest and lowest risk to implement

    C. (CVSS Score) / Difficulty = Priority Where Difficulty is a range from 1 to 10 with 10 being easiest and lowest risk to implement

    D. ((CVSS Score) * 2) / Difficulty = Priority Where CVSS Score is weighted and Difficulty is a range from 1 to 5 with 5 being easiest and lowest risk to implement

  • Question 474:

    As part of the SDLC, software developers are testing the security of a new web application by inputting large amounts of random data. Which of the following types of testing is being performed?

    A. Fuzzing

    B. Regression testing

    C. Stress testing

    D. Input validation

  • Question 475:

    Considering confidentiality and integrity, which of the following make servers more secure than desktops? (Select THREE).

    A. VLANs

    B. OS

    C. Trained operators

    D. Physical access restriction

    E. Processing power

    F. Hard drive capacity

  • Question 476:

    Given the following output from a Linux machine:

    file2cable eth0 -f file.pcap

    Which of the following BEST describes what a security analyst is trying to accomplish?

    A. The analyst is attempting to measure bandwidth utilization on interface eth0.

    B. The analyst is attempting to capture traffic on interface eth0.

    C. The analyst is attempting to replay captured data from a PCAP file.

    D. The analyst is attempting to capture traffic for a PCAP file.

    E. The analyst is attempting to use a protocol analyzer to monitor network traffic.

  • Question 477:

    A recent audit has uncovered several coding errors and a lack of input validation being used on a public portal. Due to the nature of the portal and the severity of the errors, the portal is unable to be patched. Which of the following tools could be used to reduce the risk of being compromised?

    A. Web application firewall

    B. Network firewall

    C. Web proxy D. Intrusion prevention system

  • Question 478:

    Various devices are connecting and authenticating to a single evil twin within the network. Which of the following are MOST likely being targeted?

    A. Mobile devices

    B. All endpoints

    C. VPNs

    D. Network infrastructure

    E. Wired SCADA devices

  • Question 479:

    Which of the following represent the reasoning behind careful selection of the timelines and time-of-day boundaries for an authorized penetration test? (Select TWO).

    A. To schedule personnel resources required for test activities

    B. To determine frequency of team communication and reporting

    C. To mitigate unintended impacts to operations

    D. To avoid conflicts with real intrusions that may occur

    E. To ensure tests have measurable impact to operations

  • Question 480:

    Which of the following is MOST effective for correlation analysis by log for threat management?

    A. PCAP

    B. SCAP

    C. IPS

    D. SIEM

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CS0-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.