Valid CAS-005 Dumps shared by EduDump.com for Helping Passing CAS-005 Exam! EduDump.com now offer the newest CAS-005 exam dumps, the EduDump.com CAS-005 exam questions have been updated and answers have been corrected get the newest EduDump.com CAS-005 dumps with Test Engine here:
A security engineer wants to enhance the security posture of end-user systems in a zero trust environment. Given the following requirements: - Reduce the ability for potentially compromised endpoints to contact C2 infrastructure. - Track the requests that the malware makes to the IPs. - Avoid the download of additional payloads. Which of the following should the engineer deploy to meet these requirements?
Correct Answer: A
DNS sinkholing is the best solution to meet these requirements. By redirecting malicious DNS requests (such as those from compromised endpoints attempting to contact command and control (C2) infrastructure) to a "sinkhole" server, the security engineer can prevent communication between the malware and the attacker's infrastructure. Additionally, DNS sinkholing allows for tracking and logging of the requests that the malware attempts to make, while also preventing the malware from downloading additional payloads by blocking these connections.