CompTIACompTIA
CAS-005 · Question #375
CAS-005 Question #375: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-005 to reveal the answer and full explanation for question #375. The question stem and answer options stay visible for context.
Submitted by skyler.x· Mar 6, 2026Security Operations
Question
An analyst is working to address a potential compromise of a corporate endpoint and discovers the attacker accessed a user's credentials. However, it is unclear if the system baseline was modified to achieve persistence. Which of the following would most likely support forensic activities in this scenario?
Options
- ASide-channel analysis
- BBit-level disk duplication
- CSoftware composition analysis
- DSCAP scanner
Unlock CAS-005 to see the answer
You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.