CAS-005 · Question #346
CAS-005 Question #346: Real Exam Question with Answer & Explanation
The correct answer is B: Penetration test. A penetration test is the most appropriate method to test and verify an organization's capabilities to detect and prevent specific Tactics, Techniques, and Procedures (TTPs) as mapped to the MITRE ATT&CK framework. During a penetration test, ethical hackers simulate real-world at
Question
A retail organization wants to properly test and verify its capabilities to detect and/or prevent specific TTPs as mapped to the MITRE ATTACK framework specific to APTs. Which of the following should be used by the organization to accomplish this goal?
Options
- ATabletop exercise
- BPenetration test
- CSandbox detonation
- DHoneypot
Explanation
A penetration test is the most appropriate method to test and verify an organization's capabilities to detect and prevent specific Tactics, Techniques, and Procedures (TTPs) as mapped to the MITRE ATT&CK framework. During a penetration test, ethical hackers simulate real-world attacks, attempting to exploit vulnerabilities and execute the TTPs associated with advanced persistent threats (APTs). This allows the organization to evaluate its detection mechanisms, security controls, and response capabilities in a controlled environment.
Community Discussion
No community discussion yet for this question.