CompTIACompTIA
CS0-003 · Question #551
CS0-003 Question #551: Real Exam Question with Answer & Explanation
Sign in or unlock CS0-003 to reveal the answer and full explanation for question #551. The question stem and answer options stay visible for context.
Submitted by lucia.co· Mar 6, 2026Security operations
Question
A security analyst observes a high volume of SYN flags from an unexpected source toward a web application server within one hour. The traffic is not flagging for any exploit signatures. Which of the following scenarios best describes this activity?
Options
- AA legitimate connection is continuously attempting to establish a connection with a downed web
- BA script kiddie is attempting to execute a DDoS through a ping flood attack.
- CAn attacker is executing reconnaissance activities by mapping which ports are open and closed.
- DA web exploit attempt is likely occurring and the security analyst is not seeing it.
Unlock CS0-003 to see the answer
You've previewed enough free CS0-003 questions. Unlock CS0-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Network traffic analysis#SYN flood#Reconnaissance#Port scanning