exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam

Exam CAS-004 topic 1 question 510 discussion

Actual exam question from CompTIA's CAS-004
Question #: 510
Topic #: 1
[All CAS-004 Questions]

A threat hunting team receives a report about possible APT activity in the network. Which of the following threat management frameworks should the team implement?

  • A. NIST SP 800-53
  • B. MITRE ATT&CK
  • C. OWASP
  • D. The Diamond Model of Intrusion Analysis
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Steel16
1 week, 2 days ago
Selected Answer: B
o MITRE ATT&CK is a globally accessible knowledge base that outlines the tactics, techniques, and common knowledge (TTPs) used by cyber attackers. It provides a structured framework for understanding adversary behavior and is widely recognized as the standard for classifying and describing cyberattacks. This makes it ideal for threat hunting teams investigating potential APT activity, as it allows them to map the observed behaviors to specific techniques and tactics within the framework.
upvoted 1 times
...
Bright07
5 months, 2 weeks ago
Ans is B Correct.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago