ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 604 discussion

Actual exam question from CompTIA's CAS-004
Question #: 604
Topic #: 1
[All CAS-004 Questions]

A retail organization wants to properly test and verify its capabilities to detect and/or prevent specific TTPs as mapped to the MITRE ATT&CK framework specific to APTs. Which of the following should be used by the organization to accomplish this goal?

  • A. Tabletop exercise
  • B. Penetration test
  • C. Sandbox detonation
  • D. Honeypot
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Bright07 at Jan. 27, 2025, 12:14 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Bright07
3 months ago
Selected Answer: B
A penetration test simulates a real-world attack, often involving adversarial tactics and techniques, to evaluate an organization’s defenses. By performing penetration tests aligned with the MITRE ATT&CK framework, the organization can specifically test their ability to detect or prevent the identified TTPs used by APTs (Advanced Persistent Threats). This gives a realistic assessment of how well the organization's security mechanisms can identify and mitigate those specific techniques.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago