ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 303 discussion

Actual exam question from CompTIA's CS0-003
Question #: 303
Topic #: 1
[All CS0-003 Questions]

Which of the following most accurately describes the Cyber Kill Chain methodology?

  • A. It is used to correlate events to ascertain the TTPs of an attacker.
  • B. It is used to ascertain lateral movements of an attacker, enabling the process to be stopped.
  • C. It provides a clear model of how an attacker generally operates during an intrusion and the actions to take at each stage.
  • D. It outlines a clear path for determining the relationships between the attacker, the technology used, and the target.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by 1403ad2 at Feb. 21, 2025, 12:05 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
iliecomptia
1 week, 2 days ago
Selected Answer: C
From study guide: Kill chain analysis can identify a defensive course of action to counter the progression of an attack. Security teams must understand the kill chain stages to recognize how far suspicious activity has progressed. D only mentions lateral movement, which is just one part of an intrusion.
upvoted 1 times
iliecomptia
1 week, 2 days ago
I meant to say B
upvoted 1 times
...
...
ada26b1
2 weeks, 6 days ago
Selected Answer: B
I believe it is B
upvoted 1 times
...
4ee1800
3 weeks, 1 day ago
Selected Answer: C
The Cyber Kill Chain is a proactive defense model that focuses on breaking the chain at any stage to stop an attack. It provides a clear view of how an attacker typically progresses through an attack, from reconnaissance to data exfiltration.
upvoted 3 times
...
1403ad2
1 month, 4 weeks ago
Selected Answer: B
i think its B because C & D mentions how to combat the attack which isnt in cyber kill chain. It just ascertains what the attacker is doing nothing more. And the English in A uses "correlate event" which I dont think you would use for cyber kill chain.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago