ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-005 All Questions

View all questions & answers for the CAS-005 exam
Go to Exam

Exam CAS-005 topic 1 question 81 discussion

Actual exam question from CompTIA's CAS-005
Question #: 81
Topic #: 1
[All CAS-005 Questions]

A financial technology firm works collaboratively with business partners in the industry to share threat intelligence within a central platform. This collaboration gives partner organizations the ability to obtain and share data associated with emerging threats from a variety of adversaries. Which of the following should the organization most likely leverage to facilitate this activity?
(Choose two.)

  • A. CWPP
  • B. YARA
  • C. ATT&CK
  • D. STIX
  • E. TAXII
  • F. JTAG
Show Suggested Answer Hide Answer
Suggested Answer: DE 🗳️
by vicbersong at May 8, 2025, 11:10 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
vicbersong
3 weeks, 4 days ago
Selected Answer: DE
Why not the others? A. CWPP (Cloud Workload Protection Platform): Focuses on protecting cloud workloads, not for sharing intel across orgs. B. YARA: Used for defining malware patterns and rules for scanning files — not for sharing intelligence. C. ATT&CK (Adversarial Tactics, Techniques, and Common Knowledge): A knowledge base of attacker behavior — useful for analysis, but not a format or method for sharing intel. F. JTAG (Joint Test Action Group): A hardware debugging standard, not relevant to threat intelligence sharing.
upvoted 1 times
...
vicbersong
3 weeks, 4 days ago
Selected Answer: DE
The correct answers are: D. STIX and E. TAXII Explanation: This scenario involves sharing threat intelligence in a structured and automated way between organizations. The technologies best suited for that purpose are: ✅ D. STIX (Structured Threat Information eXpression) A standardized language for describing cyber threat intelligence (CTI). Enables organizations to share and consume information in a consistent format. Ideal for structuring data on threats, indicators, TTPs, and more. ✅ E. TAXII (Trusted Automated eXchange of Indicator Information) A protocol specifically designed to transport cyber threat information (often formatted in STIX). Enables real-time automated exchange of threat intel between systems and partners.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel