CompTIA Advanced Security Practitioner (CASP)

Here you have the best CompTIA CAS-002 practice exam questions

You have 216 total questions to study from
Each page has 5 questions, making a total of 44 pages
You can navigate through the pages using the buttons at the bottom
This questions were last updated on October 13, 2025
This site is not affiliated with or endorsed by CompTIA.

Question 1 of 216

An administrator wants to enable policy based flexible mandatory access controls on an open source OS to prevent abnormal application modifications or executions. Which of the following would BEST accomplish this?

Access control lists

SELinux

IPtables firewall

HIPS

Correct Answer: B

Question 2 of 216

Company ABCs SAN is nearing capacity, and will cause costly downtimes if servers run out disk space. Which of the following is a more cost effective alternative to buying a new SAN?

Enable multipath to increase availability

Enable deduplication on the storage pools

Implement snapshots to reduce virtual disk size

Implement replication to offsite datacenter

Correct Answer: B

Question 3 of 216

A security architect is designing a new infrastructure using both type 1 and type 2 virtual machines. In addition to the normal complement of security controls (e.g. antivirus, host hardening, HIPS/NIDS) the security architect needs to implement a mechanism to securely store cryptographic keys used to sign code and code modules on the VMs. Which of the following will meet this goal without requiring any hardware pass-through implementations?

vTPM

HSM

TPM

INE

Correct Answer: A

Question 4 of 216

A user has a laptop configured with multiple operating system installations. The operating systems are all installed on a single SSD, but each has its own partition and logical volume. Which of the following is the BEST way to ensure confidentiality of individual operating system data?

Encryption of each individual partition

Encryption of the SSD at the file level

FDE of each logical volume on the SSD

FDE of the entire SSD as a single disk

Correct Answer: A

Question 5 of 216

After being notified of an issue with the online shopping cart, where customers are able to arbitrarily change the price of listed items, a programmer analyzes the following piece of code used by a web based shopping cart.
SELECT ITEM FROM CART WHERE ITEM=ADDSLASHES($USERINPUT);
The programmer found that every time a user adds an item to the cart, a temporary file is created on the web server /tmp directory. The temporary file has a name which is generated by concatenating the content of the $USERINPUT variable and a timestamp in the form of MM-DD-YYYY, (e.g. smartphone-12-25-2013.tmp) containing the price of the item being purchased. Which of the following is MOST likely being exploited to manipulate the price of a shopping carts items?

Input validation

SQL injection

TOCTOU

Session hijacking

Correct Answer: C