Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Discussions
  1. Home
  2. Discussions
  3. CompTIA
  4. CompTIA CASP
  5. CAS-004 Discussions
  6. CAS-004 Exam Topic 5 Question 35 Discussion
 CompTIA Discussions
Exam CAS-004 All Questions
Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam

Go to Exam

CompTIA CASP CAS-004 Question # 35 Topic 5 Discussion

CAS-004 Exam Topic 5 Question 35 Discussion:
Question #: 35
Topic #: 5

A security engineer has been informed by the firewall team that a specific Windows workstation is part of a command-and-control network. The only information the security engineer is receiving is that

the traffic is occurring on a non-standard port (TCP 40322). Which of the following commands should the security engineer use FIRST to find the malicious process?
A.

tcpdump

B.

netstar

C.

tasklist

D.

traceroute

E.

ipconfig

Get Premium CAS-004 Questions
Actual exam question for CompTIA CAS-004 exam by Riven1062 at Apr 30, 2026, 8:30:32 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit