nerdexam
ExamsCAS-003Questions#216
CompTIA

CAS-003 · Question #216

CAS-003 Question #216: Real Exam Question with Answer & Explanation

The correct answer is D: File integrity monitor. File integrity monitor will monitor and detect changes to system files.

Question

A security incident responder discovers an attacker has gained access to a network and has overwritten key system files with backdoor software. The server was reimaged and patched offline. Which of the following tools should be implemented to detect similar attacks?

Options

  • AVulnerability scanner
  • BTPM
  • CHost-based firewall
  • DFile integrity monitor
  • ENIPS

Explanation

File integrity monitor will monitor and detect changes to system files.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-003 Practice