CSA+ : Cybersecurity Analyst+ (CSA+)

Cybersecurity Analyst+ (CSA+)
ISBN : 978-1-61691-971-9
Gain hands-on experience in CompTIA CS0-001 certification exam with Cybersecurity Analyst+ (CSA+) performance-based labs. Performance-based labs simulate real-world, hardware, software & command line interface environments and can be mapped to any text-book, course & training. CompTIA Cybersecurity Analyst (CSA+) certification exam is an international, vendor-neutral credential designed for IT security analysts, vulnerability analysts, or threat intelligence analysts to configure and use threat detection tools; perform data analysis; and interpret the results to identify vulnerabilities, threats, and risks to an organization with the end goal of securing and protecting applications and systems within an organization.


Online labs can be used to supplement training. uCertify labs are an inexpensive & safe way to explore and learn. uCertify labs are versatile - labs simulate real-world, hardware, software & command line interface environments and can be mapped to any text-book, course & training.

Here's What You Get

Performance based lab

Hands on Activities

Assessing Information Security Risk

  • Viewing and downloading the policy templates
  • Opening the policy template and setting the company name
  • Reviewing and modifying the policy items
  • Adding revision to the revision history

Analyzing the Threat Landscape

  • Finding information security blogs
  • Consulting a vulnerability database
  • Identifying the most significant emerging technologies of 2016

Analyzing Reconnaissance Threats to Computing and Network Environments

  • Performing reconnaissance on a network
  • Installing Wireshark and WinPcap
  • Acquainting yourself with Wireshark's interface
  • Analyzing the capture file to find the attack(s)
  • Generating network traffic and using filter
  • Examining the traffic between client and server
  • Assessing the impact of malware

Analyzing Attacks on Computing and Network Environments

  • Confirming the spoofing attack in Wireshark
  • Examining the DDOS_Attack.pcap file
  • Identifying security apps available for Android

Analyzing Post-Attack Techniques

  • Downloading and running scanning tools

Managing Vulnerabilities in the Organization

  • Installing Tenable Nessus

Implementing Penetration Testing to Evaluate Security

  • Identifying search options in Metasploit
  • Performing initial scan

Collecting Cybersecurity Intelligence

  • Installing Snort
  • Exporting your Windows Server logs

Analyzing Log Data

  • Making syslog entries readable
  • Installing Splunk on the server

Performing Active Asset and Network Analysis

  • Manipulating Kali Linux VM's network interfaces
  • Retrieving a real-time list of running processes
  • Starting a live packet capture
  • Using Process Explorer to view specific details about running processes on the system
  • Examining the ipconfig options
  • Initiating an SSH session from your Windows 10 client to your Windows Server
  • Accessing remotely the DT_Watch folder to generate audit logs
  • Acquiring the Trojan horse simulator
  • Uploading the Trojan horse simulator to VirusTotal
  • Uploading the Trojan horse simulator to Malwr
  • Identifying a suspicious account on the Active Directory domain
  • Enabling auditing of the DT_Watch folder
  • Enabling logging for audited objects
  • Examining the audited events

Responding to Cybersecurity Incidents

Investigating Cybersecurity Incidents

Addressing Security Architecture Issues

  • Implementing security during the SDLC

Exam Information

The CompTIA Cybersecurity Analyst (CSA+) is an international, vendor-neutral cybersecurity certification that applies behavioral analytics to improve the overall state of IT security. CSA+ validates critical knowledge and skills that are required to prevent, detect, and combat cybersecurity threats.

Career Prospects
  • Security Analyst
  • Vulnerability Analyst
  • Cybersecurity Specialist
  • Threat Intelligence Analyst
  • Security Operations Center (SOC) Analyst
Exam FAQs
What are the prerequisites for this exam?
There is no required prerequisite for CompTIA CS0-001 certification exam, but the candidate should hold CompTIA Network+, Security+ or equivalent knowledge. He or she should have a minimum of 3-4 years of hands-on information security or related experience.
What is the exam registration fee?
USD 320

Pricing and taxes may vary from country to country.

Where do I take the exam?
What is the format of the exam?
Multiple-choice and performance-based
How many questions are asked in the exam?
The exam contains 85 questions.
What is the duration of the exam?
165 minutes
What is the passing score?

(on a scale of 100-900)

What is the validity of the certification?
TBD - Three years after launch.
Where can I find more information about this exam?
To know more about the CS0-001-lab, click here.

uCertify provides courses, simulator, labs, test prep kits for IT certifications including Microsoft, Oracle, Cisco, CompTIA, CIW, PMI, ISC2, Linux, Zend, Google, IC3 , Adobe and many more.

© 2002-2017 uCertify. All Rights Reserved