Pass Your CompTIA CAS-001 Exam Easy!

I can confirm this bank is 100 percent superseded, saw 0 from this bank. Did see a couple sims from 239 that are still valid. Do not rely on these banks as your sole source, you will fail. Good luck.

Has any one taken the CASP CAS-002

I just passed this april 28th studying the premium files.
The dumps you mentioned missed a large amount of questions from my test.

I took this test for the same company but my position was for 135k, what position are you going over for?

Sims:
CIA
Build network for $50,000
Two telco routers
Patch a system

OK, so I'm signed up to take this thing on May 11. I've been studying James, Bernice and JB, and I have SIMS from the company requiring the test (Vectrus) that are complete and correct. I've got one shot--if I pass, it's a $160K job; if I fail, I stay with the $68K job I have now. There is no second chance. I've run thru all 3 dumps, and with the exception of the annoying 'actualanswers.com' ads splattered all thru James' dump, they're all very similar. Some of the SIMS are incorrect--the SIMS I have are verified correct by at least 120 different test takers, so I know what I'm saying. I have to get this done before June so my CE doesn't expire for all of my other CompTIA certs. This is a big one. Running thru 65 questions at a time, 2x thru, resting with a drink, then 2x thru again. Haven't laid much time on SIMS yet--that comes now. I'll report back my results on May 12.

Just passed the CompTIA CASP. I spent a total of 12 months preparing.

This is what I read:
McGraw Hill CompTIA CASP by Conklin, White, Williams
Sybex CASP by Gregg Haines
CASP New Horizons Materials (http://www.nhsacramento.com/training-and-certifications/comptia#!/product/1577) and performed their quizzes

Videos:
CareerAcademy (http://www.careeracademy.com/comptia-casp-certification-training.aspx) videos and quizes

Exam Collections pool:
1. CompTIA.Certkey.CAS-001.v2014-12-18.by.Bald.493q.vce
2. CompTIA.Actualtests.CAS-001.v2014-04-21.by.BERNICE.349q.vce
3. CompTIA.test-inside.CAS-001.v2013-10-11.by.JB.267q.vce
4. CompTIA.ActualAnswers.CAS-001.v2013-02-27.by.james.272q.vce

The dumps are valid but there are a handful of questions I never saw and didn’t know how to answer them.

Anyone tried this dump lately?

I want to take the cas-001 exam before it expires on june, any ideas of valid dumps?

Took the 002 version yesterday, failed it. 7 simulations about 3 of them from here. Going back to take 001 in 2 weeks using dumps.

Took the CAS-001 test this afternoon and passed. 65 questions including 4 Sims. I got 4 Sims right off the bat. The same ones listed here by IAT3. I got 3 of the 4. I didn't know what to do with the Telco Router CLI SIM either as I don't have a strong networking background. The dump I used had just under 500 questions, I got it Aug-Sep 14 time frame. It was not from this site. Most of the questions were word for word . There were about 8 or 9 that I had not seen anywhere before. A couple were kind of "out there". Maybe those were the throw away questions I don't know. I literally found this thread the night before my exam. I don't think I would have passed if I had not found this site.
Thanks to all who posted tips on the Sims. Now I just have to wean myself off my son's ADD Meds that I've been taking for the last week while I crammed. :-/
Yes they really did help.
Hopefully CompTIA doesn't consider that cheating. :-)
Oh and CAS-001 won't be retired until June 2015. So you still have time if that's the one you're studying for.

I agree with HGlaucemic, "As for the questions, maybe 10 were there that weren't on the 493 question dump. But if you have the basic concepts of this stuff down, not too bad." I used other study material along with dumps and passed. I heard from my instructor the test will be changing soon, probably before April. Good luck!

Took CAS-001 this morning and passed. 4 SIMS right out the gate. Only one that I couldn't figure out was with the Telco firewall and two routers with CLI. And as for the install.exe using md5sum.exe, watch carefully when two downloads look exactly the same. Hover over the links and one will be http and one https. You can figure out the rest.

As for the questions, maybe 10 were there that weren't on the 493 question dump. But if you have the basic concepts of this stuff down, not too bad.

PASS Still valid, 65 questions total 5 SIMS.


several new questions not on dump.

1. Know SCSI authentication without user name and password.

2. know Job rotation.

3. Know which is the best risk management formula.


+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
SIMS 1.

patch a system.

Open command prompt.

Click and download the install.exe from the first mirror link.

in CMD prompt type dir

in CMD prompt type md5sum.exe install.exe

match the checksum number in the CMD prompt to the checksum number in the download GUI. if match.

In CMD prompt type install.exe ( Be careful and pay attention to the invalid certificate when the executable launch) download the next install.exe until you find the one without certificate error when install.
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

SIM 2.

Match CIA to the following items

Digital Signatures - Integrity
Encryption - Confidentiality
Load Balancing - Availability
Hot Site - Availability
DoS Attacks - Availability
Steganography - Confidentiality
Checksums - Integrity
Hashes - Integrity
Access Control list - Confidentiality
Data Classifications - Confidentiality
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

SIM3

Identify brute for attack.
1. look at the server log and find the one with admin =403 several times and mark the host as the victim.
2. Identify SQL inject attack source.
Look at all the server logs and find one with AAAAAAAAAAAAAAAAAAAAAAAxdxdxxdxd5xd5. look at the beginning of the log and find the IP 45.x.x.x.
3. Find the host with the IP and mark as source Attack.
4. Open firewall and choose the ip 45.x.x.x. to 192.x.x.x DENY.

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

SIM 4.

2 tasks to identify SQL attachk.

(Im not confident on the answer as "show run" did not return anthing in CMD as other suggested.
I did to block the firewall from 0.0.0.0 to the subnet 192.x.x.x.

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

study. spent 5 hours cram and went straight to test. previously start to study about 8 months ago but stop.
used James and JB

Any more updates?

What did you use(kofi & soldr) as your reference material for the test? a prompt response would be appreciated

Just took this exam today and passed (CASP). This dump is still good. I had the same exact SIMS as the last poster from the U.S. I'm in Korea btw. Test soon. I don't think they'll keep the same one too much longer guys.

riverineIT,
I had the same questions just like you did. I had the same 4 SIMS that you had. I couldn't solve the second simulation where you are giving a Telco firewall and two routers with CLI to view the log and configure the routers and fire to block the sql attack. Can you please help with a solution before I retake it. I also had 65 questions and wish I had seen your post earlier.

Any further updates by anyone? Planning to sit for the test soon.

Took CASP today and passed! This was my second attempt. I used this forum for assistance with the SIMS and it definately gave me better insight on the SIMS. I had 65 questions and 4 SIMS.

SIM 1- same drag and drop CIA category...however Raid-1 was not listed.

SIM 2- identify the sql injection attack and modify the acl in the routers. Pretty easy. used to forum to understand this, just ensure that you know what a sql injection attack looks like and you will be good.

SIM3- Identify svr being attacked by brute password attack, identify source of sql injection attack, modify the acls in firewall.

You will need to look at all the svr logs and look for anything suspicious. Once again familiarize yourself with knowing what a sql injection attack looks like. this was the most challenging for me, you have to have keen attention to detail. I looked at the logs of one of the servers and it had a host connecting and running a GET request to access the index.html file. I denied that host ip in the acl. For the brute password attack, just simply look at the svr log and look for any odd string of characters. I noticed in my sim that the source of the sql injection attack, was also the same ip conducting the brute force attack. once again pay attention to detail and ensure you are following the questions. ensure you dont confuse the host with the victim and vice versa.

SIM4- verify hash utilizing md5sum. easiest one. everything is step by step as discussed in the forum. if you are not familiar with CLI commands, you will need to reassess if you should take the test.

there was 40 questions from the dump on the test. There were alot of beta questions i assume, covering SOHO routers and about 4 questions on College Campus wifi and sso requirements. I ran into my instructor after the test and he stated that CASP-02 is set to be released NOV30, 2014. I recommend you take the test soon because most of these questions in this dump will no longer be valid. Thanks for all the assistance from everyone here on the forum. Good look to all of you that will be taking CASP. It is definately more challenging that I expected. There is a significant focus on network administration knowledge, i advise you to brush up on those skills if you havent done that in awhile. My background is Sec+, MCSA w2k3, and 12 years military experience as sys admin, network security analyst and information assurance officer.

I wanted to give a couple of pointers for the network simulation that requires you to complete a network diagram with the use of mstsc.exe, show run, ping, and ipconfig. First of all, when you are looking at the diagram the basic things to remember are that the only devices that can have multiple IP address are routers. So this means the two squares in the middle that have a spot for 3 IPs have to be routers. Next you should know that the only thing that can talk to routers and has the ability of having multiple other devices plugged into it are switches so the three devices attached to the routers are switches. What is attached to the switches can be determined from the IP of the switch. Look at the 3rd octet and pair all the devices in the same network on the matching IP of the switch (i.e. x.x.11.x on the switch means that the printer or server or win 7 box with x.x.11.x have to be attached to that switch). Another thing to remember is that printers and Win 7 boxes have no need to be in the DMZ so it will always be a server and you can determine the right server by using the same method as I have already explained.

Remember you can use the ping utility with both an IP or a host name and when you use one the other will be given to you in the reply (i.e. if you use cmd:/ping sara the reply will say pinging x.x.x.x with 32 bytes of data: And now you know that x.x.x.x belongs to sara). If you can use the mstsc.exe (this is Microsoft's remote desktop) and it actually works then that device is a server or a Win 7 box)

I hope this helps some people out when they get this sim on the exam. I know some people don't have a strong background in networking.

3rd Times A Charm:

How many SIMS were on the exam? and what SIMS did you get?

Looking at other posts many people are having trouble with the SIMS..

Can anyone provide the exact steps for adding a new line to deny a whole subnet in the firewall?
Do we have to go to the simulation's command line and start by entering 'show access-lists', then enter 'configure'?

Has anyone taken the exam recently?

Lori, what SIMS were on he exam?

Took the test and sadly failed. The SIMS is what failed me: From looking at other post; others are having trouble. Please give details.

Can someone PLEASE! help me with the SIMS?

Please help!!

Could someone please explain the Network Simulation a little more in detail. Thanks in advance.

I Took the test and sadly failed.
This file is still valid..



SQL injection (2 questions)
Right click check log of server, identify attack and find source. Make a deny change in the ACL.

If you don't what an sql attack looks like just look for a long string of text that doesn't look like any of the other logs. When you find that log, note the IP the long string is coming from that's the source. Note the IP of the server you are on and then click the FW and click deny on that ip set.




Md5sum.exe question.

Roll over download link and look at bottom of screen. You'll see either an https or http URL. Download the https file. In command prompt type: Md5sum.exe install.exe
There are four HTTPS links and two HTTP links. Look at the bottom to verify that you use HTTPS. Find one without a certificate error and download it. At the command prompt run "dir" to display the contents of the directory. Run "md5sum.exe install.exe" to view the md5sum and ensure that it is identical to the one shown on the website. Then run "install.exe" and you're good.

I guess I was not sure if I downloaded and installed the correct one?



Drag and Drop the following types on to the appropriate CIA category?

Just like the dump….


Two routers and a firewall, block the bad guys SQL Attack.

I was unsure about this one..
I Just denied the entire 192.168.x.x subnet.. ???

Good Luck to All..

Took the test and failed. I'm not sure why? This file is still valid..


65 questions total = with 5 SIMS.


2 = SQL injection
Right click check log of server, identify attack and find source. Make a deny change in the ACL. If you don't what an sql attack looks like just look for a long string of text that doesn't look like any of the other logs. When you find that log, note the IP the long string is coming from that's the source. Note the IP of the server you are on and then click the FW and click deny on that ip set.



1 = Md5sum.exe
Roll over download link and look at bottom of screen. You'll see either an https or http URL. Download the https file. In command prompt type: Md5sum.exe install.exe
There are four HTTPS links and two HTTP links. Look at the bottom to verify that you use HTTPS. Find one without a certificate error and download it. At the command prompt run "dir" to display the contents of the directory. Run "md5sum.exe install.exe" to view the md5sum and ensure that it is identical to the one shown on the website. Then run "install.exe" and you're good.


1 = Drag and Drop the following types on to the appropriate CIA category?
Just like the dump….


1 = Two routers and a firewall, block the bad guys SQL Attack.
The logs clearly show two different IP's from a single subnet accessing each router. It was something like 192.168.200.254 accessing router 1 and 192.168.200.3 accessing router 2. Just deny the entire 192.168.200.0 subnet in the firewall and you're good…

Is this file still valid? How many SIMS are on the exam? total questions? any help would be appreciated.. What did you use to study?

Is this file still updated?

Is this file still valid?

Any one take the exam? Is this dump still valid? Is there a place/site where I can learn SIMs?

Anyone took the exam recently?

Matt,


Because of the way this blog is setup You cannot leave your email IDs or contact info in comments...can u please upload the ppt and post the link for everyone.

Thanks

Can someone point out to me what I should be looking for in relation to the lab for the SQL injection and XSS attack? How can I tell this from the log file? What key thing should I be looking for?

Matt, why dont you upload that to online drive and just share the link here ...thanks

Matt, Please email the ppt on the sims, I need these to pass the exam. The rest is a piece of cake. Tried it once, ready to go at it again and pass this time. thank you!

I have a handy ppt that a coworker created that I can email. I was looking at it for refresher purposes minutes prior to starting the exam. Other than that I used this dump and the comments in this section. If you want the ppt post your email and I can send it to you.

Does anyone have a SIM guide? or A link pointing to a CASP SIM Guide?

Matt,

Can you please give the details on the 7 sims? (network discovery) Also, what else did you use to study?

Passed today on the first try, about 50% of the questions were on it so I give it a semivalid rating. I had all 7 sims and the avice given previously was extremely helpful. Only the network discovery took me some time to figure out and place everything properly.

Christian,

Can you please give more information on your post? Where is this dump? "actualtest" ..

Your advice is greatly appreciated.

Thanks

I just want to shout out Batman/LifeSec/Sid/Vctoria!! Took my test today and passed. I studied the latest dump from actualtest, and the comments on this thread. The dump actually had all the sims on it, and they were certified....no pun intended!! Thanks!!!

Took the exam today and passed. 65 questions with 7 sims. About 20 questions are still in this dump. This dump is same with the 267q dump.

Do anyone have examples of how to use the following commands, "netstat and mstsc" to get the correct uses for Carl, Amber and Laura machines...Not to familiar with those commands

Hello folks I could use some help as well. I took my test in December 2013 failed. I am planning to retake it again. I have two books on CASP and one examfocus study notes. Can you also please tell me which VCE is good now for passing this cert. Thanks

I've been reading a lot about the network topology sim about using SSH to connect to the switches and routers? does the simulation comes with SSH utility such as Putty?

for anyone who took and pass the exam; could you kindly provide feed back on the followin SIMs:

SQL injects
Which of the server was the Victim Servers A – G) and which one was the attacker; also does anyone has a good example how SQL Injects looks like.

Buffer Overflow
Which of the server was the Victim (Servers A – G) and which one was the attacker; also does anyone has a good example how Buffer overflow looks like.

thank you

Could anyone confirm if i have the following correct for one of the SIMs

RYAN \SWITCH \192.168.34.4
PETE\WEB SERVER\192.168.34.x
AMY\ROUTER\10.10.1.2\10.0.0.X\192.168.23.X
SARA\SWITCH\192.168.100.4
JOHN\ROUTER\10.0.0.2\192.168.100.X
ILL\SWITCH\192.168.23.4
CARL\PC\192.168.23.33
AMBER\SERVER\192.168.100.82
LAURA\SERVER\192.168.100.12
LEE\PRINTER\192.168.23.11

Quiet Professional and Me,

Did you use the paid version of the VCEs?

CAS-001 Premium VCE File for $49.99?

Does anyone else have any additional advice for me?

Nic,

Congrats on passing. Can you please publish a link to view the pictures of the sims and the extra questions?

Thanks,

Hi user123423,


Please confirm which “vce” file you are referring to?

Is it this one? “ CompTIA.ActualAnswers.CAS-001.v2013-02-27.by.james.272q.vce “


Also, has anyone tried the “Premium VCE file” “CAS-001.vce” for $39.99? if so, What did you think? Looks like it was last updated on Jan 23, 2014.


I’m taking the test in a few weeks..

Any advice would be greatly appreciated.

Thanks!

Passed it today! Only a little over half of the 58 questions (had 7 SIMs for a total of 65) were word for word from the VCE file. Had the same 7 SIMs that I had last time. Anyway, for user123423, Lifesecs chart is almost correct but use netstat and mstsc to get the correct uses for Carl, Amber and Laura; he has them wrong or they changed. CIA is wrong on the VCE file with four discrepancies. Do NOT use this as your only study method. I would suggest the McGraw Hill test prep book and its trainer to use first to get a good handle on the objectives. Also, find examples of attacks and what they look like in logs. I spent over 30 hours of studying this time for the 2nd time taking the test.

I just took the CASP on the 18th of Feb. I passed. The comments by Batman and Victoria really helped me pass the sims portion. I used PASS4SURE and Exam Collection VCEs and all but 3 questions I never seen was on the test. I did not have to really read the questions. I could read the answers and figure out the question. Study the qustions...I could not get the mstsc.exe remote into the boxes to work. In fact I partially completed the network sims because it kept locking up on me. Good Luck...

Well I just took the test and sadly failed.. However Actual Test multiple choice questions was basically word for word. There wasn't a question I didn't remember. Now the Sims... I got all 7 sims mentioned on here. 1. MD5sum (easy) 2. CIA (easy) 3. 50k diagram I put WAF in the dmz, the NIPS/NIDS and spam filter in the internet line, and the AV server and patch server in the server VLAN. 4. Network diagram, got exactly what lifesec had but messed up on the name of the two servers (laura and amber). 5-6. SQL injection as the victim of the attack I put the server down instead of the HOST :(.... for both questions... 7. I had the router 1 talking to router 2 with the log and cmd tab, this one I had NO IDEA on... I saw Batman saying deny the entire subnet, still wasn't quite sure. But yeah I thought I passed this for sure. So I'm taking it again on Sunday, quite surprised I didnt pass but I guess the two SQL injections and router sim screwed me over.. If anyone has any inpute on this please let me know!

Nic,

Congrats on passing. Do you have the SIMS for the exam you took? I need to be certified by 12 Mar and I already took and failed it once. The darn sims really tripped me up. Thanks

FAILED on Wednesday:( Took a New Horizons course and used the Sybex book and was not prepared at all. The Instructor had taken the beta and assured us it was all terminology and acronyms ... he was so wrong!
Once the first SIM came up I said WTF! Had 65 questions and 7 of them were SIMs. I managed to get the "scoping out the Network" SIM (after 40 mins) and the patch download/hash check SIM. Unsure of the 50k SIM but used the Firewall, NIPS, AV Server, SPAM filter and WAF and did the following:
I put the NIPS, SPAM Filter and firewall before the first router.
I put WAF in the DMZ with the web server.
The AV server in the normal server VLAN.
The CIA one I'm sure I messed up on and the 2 attacks/configure routers ones I didn't do well since I’ve never seen attacks in server logs before.
I downloaded the vce file and reviewed the first 60 questions on my iPad's VCE viewer and so far I've seen word for word 10 of the 58 questions I faced. Going to use this on the PC to get the simulations down and go through the rest of the 272 questions over the weekend. I'll use the MGH book and my NH course text to review the 9 objectives that I missed questions on. Keeping my fingers crossed that I can pass next Wednesday!

Failed yesterday, mastered the questions studied 349 from pass4sure.com the sims...O'boy! I read the blog a million times but once in from of the sims I crashed n burned. I had the 6 Sims mentioned by many but I truly had the hardest time with the network & block, id source of attack in server and fw I really want to master this! Where to start...

I PASSED!! I have to thank Victoria, LifeSec, and Batman. I took the exam 2 months ago and failed and then retried a week ago and passed. I used this VCE and about 80% of the questions were word-for-word from this VCE. I had the 7 sims that every one on here comments about. I have a complete photo library of the sims (including the network diagram) and I am trying to figure out a way to post them somewhere to make them accessible to you. I also have the 9 questions that were not in this VCE written down so they can be added to the VCE. Give me about a week and I will publish a link to view the pictures of the sims and the extra questions. Thank you again to Victoria, LifeSec, and Batman. And especially James!! Good luck everybody!!

Helper, is this file still updated? What study materials did you use to pass the CAS-001 exam? Any advice would be great! Thanks


CompTIA.ActualAnswers.CAS-001.v2013-02-27.by.james.272q.vce

Helper, please confirm questions are updated for this dump....

"CompTIA.ActualAnswers.CAS-001.v2013-02-27.by.james.272q.vce"

Also, do you have any other advice to prepare for the CAS-001 exam?

Thanks,

I PASSED!
Sims: 1. Block attack from the firewall. I think this is new. There was a tab on the router to do a CMD. You could do show run and show int. 2. Sql attack. (ACL Router1) 3. Buffer attack. (ACL Router1) 4. CIA 5. Network. 6. Download and install the install.exe 7. AV server, Patch server, NIDS/NIPS, Spam Filter and WAF.

Hint for the network. Start by "Ping" Ping (names) and you will get the ip address for the PC, Server, and Printer. The ips are then matched to the switches and routers.
The CMD is carl and you can do a netstat and but no help since it just shows the two servers. Do an ipconfig so you can get your ip and what subnet you belong to.
SSH (name) and that will help you to your routers and switches. From their you do 'show run'. Better know the difference from a router or switch. The show run will show what connections you have to your pc, server, router, switch and printer. If you follow the subnets of the ips you can plug in where everything belongs. Just plug in the name, device and ips and your going to pass.

Questions were about the same but couple of new ones.

The md5sum.exe is a very simple thing to do. First download the md5sum.exe. Windows should download the files to your download folder. Next find another .exe file to download. That .exe file should also download to your downloads folder. Open CMD.
Type dir and see if can find the Downloads Folder.
Type cd downloads This will get you into your Downloads Folder.
Type dir You will see a list of files. You should see md5sum.exe and the other .exe file you downloaded.
Type md5sum.exe .exe
A hash will be generated and use this hash to match.
Example: md5sum.exe photoshop.exe

Any update on this exam? how about the sims? are they still the same with the ones mentioned by victoria? Ill be taking the exam next month.

Hello, anyone took the exam recently? Are the Sims still the same?

I failed this one got the same sims as (try again)

50k digram
cli drag & drop missing the raid 1
ssl injection
ssl injection
md5 I did a dir and couldn't get to the directory... no name listed for the dir.... I could see md5sum.exe no name of the directory please help ???

network digram

Hi all successful CASPs, with regards to the 50k appliances question, where did you place your appliances? I am not sure where to place WAF, NIPS, AV server, Patch server and Spam filter. Thanks and happy new year all.

Had a question about the CIA triad answers, what the sim has does not seem right. Here what I think the answers should be, can anyone verify?
Digital Signatures - Integrity
Encryption - Confidentiality
Load Balancing - Availability
Hot Site - Availability
DoS Attacks - Availability
Steganography - Confidentiality
Checksums - Integrity
Hashes - Integrity
Access Control list - Confidentiality
Data Classifications - Confidentiality
RAID 1 - Availability

PASSED: I used AcutalTests.com's version. However, had a few I had a few new questions the rest where from the dump/study questions. Thanks to Victoria, Batman and LifeSec I was able to pass the sims.

I studied the sims and memorize LifeSec diagram.

Study Hard!!!
Do not just rely on dumps...
You need real life experience, knowledge in different domains and some theory.

Passed the CASP about a month ago in China/Beijing. This is not an exam easily passed by just studying dumps. You need to have some knowledge and understanding of the different domains.

The only book i can recommend is Sybex one, as it actually covers all domains. If u get the book straight and you understand it. You wont need any dumps.

if you try to pass the exam without actually knowing all the domains CASP covers, this dump will not let you pass for sure but will aid you.

What if any books/study guides should I purchase, along with the dump?

Thank you.

Ken Yedica

Hi Folks,

I am not sure is this comments section the forum section?
I read to learn about the SIM section in the forum. I recently took the test and failed because of the SIM questions. Please someone help me with the SIM questions.

Again is this the forum? If not where can I find it? Thanks!!

All,
Having taking this one time and failing I am trying to be very clear and appreciate any help the team here would be willing to give out.
Now that being said I am looking for more guidance on the giant build a network SIM. It seems that after pinging and getting ips on things you can place the "Amy" router by association of same subnet. Is that what others did as first placement? My second question is it seems that from the initial window (which people are saying is Carl) is location you run "NETSTAT" from. I think the only thing I get from netstat is the port number and name/ip of a machine I am attached to. From that I am guessing that I can see what servers are web servers by looking for port 80 or 443. There is probable something that shows printer port but I am just guessing here. I am hoping someone here that feels good about this SIM will add to what all the others here have put regarding logical things that should be done. Thanks for your help.

Yes, on the SIM the attacker IP will be listed in the log the servers. You will just have to know what a sql injection, directory traversal, and buffer overflow looks like.
On those sims. you will have to follow the instructions. Don't block only what they say to and mark who is the source on only what they say. I almost messed that up, but caught myself.

I passed today... Sims were similar, say dump will get you 25% there and explanations here will get you the rest of the way there if you know what to do on the SIMs because a lot of the explanations on here and the dump sims are very bad to say the least.

Test is still somewhat valid. I had probably 20 questions from this dump on my test. 65 questions total- 7 sims. The info that Victoria, Batman, and LifeSec provide is VERY relevant to the test. If you understand what they are talking about in the sims then you should do fine. Make sure you understand the material that is going to be on the test because most of the test answers will have to come from your knowledge. They're not hard if you understand the material.

I had all of the sims that Victoria had except I had the CIA triad instead of the WS-Security, Kerberos, etc one.

If you feel confident in your knowledge, take the test now. You know what the sims are going to be and that is very helpful. Or you can wait to take it when they update the test in the new year.

Can someone will post a new test engine. This one may not be valid now.

New to the fourm. Need help with one of the sim 1, and 2. When you go to the server logs to identify the system being attack, will the attacker IP show up in the the logs? if not how can you tell the victim, and attacker??

Ok I took the test today and failed. So frustrating because I still didn't grasp everything even though Victoria, LifSec, Batman and the rest of you guys gave such great input. I had 65 questions total.
7sims
1. Network diagram 50k
2. SQL injection
3. SQL injection
4. Md5
5. Network diagram
6. CIA
Dump is still half good. Useful. New questions were really easy. It was the sims that failed me. I took over 45 mins on the Amy, Carl one.... Boy, all the notes really make sense now. I don't have a networking background so I really had not saving grace. I will take it again before things change. Everyone is right, if you get the sims down your are golden. I know exactly what to do now so I will take it again probably in a week. I wish test takers the best.

I know there is a lot on here about the big sim where you have to figure out what and where everything is. I worked with that sim and had a very hard time with it and could not logically figure the thing out. You are given a initial console which has a dos prompt so you know that a windows machine but could not figure out where on the diagram that was. How exactly did people go through to slowly learn what is where ? I have to take this again and sure would like to get that big ole sim right to hopefully pass.

@connie... thanks for feedback

Is this still valid?

I FAILED today. This dump has a little less than 50% of the test questions on it. I used the Gregg and Haines Sybex book and did not feel very comfortable with the information in it. I am going to get the other book and try again. I had 7 sims on it and 4 of them were from this dump.

Hello all please help..

Valid still or no??

If not please assist.

What book did you use to study? I have the sybex book. I just finished reading it and now working on the labs in the appendix. I have a pretty good background in networking/security so what other materials would you suggest. I am self study only. DoD professional. is this vce only good for the lab questions only?? planning on testing prior to turkey day.

passed today. still 50% valid. sims are that were all mentioned by Victoria. spent at least 1 hour on them. by the way, I also used two books recommended by comptia for study. don't rely only on the dump. but this dump helped a lot.

Thanks to:
James
Victoria
LifeSec
E Haas
Batman
Sid

good luck to everybody!

@Terry: there is also a statement of " One of these situations was a two hour scheduled maintenance activity aimed to improve the stability of the WAF". So MTTF should be (14-2)/(4-1)=4.

On JB dump 267questions. Q164 ask about what is MTTR. It gives a down time of 14 hours and says that is over 4 separate situations. To me thta is 3.5 hours taking 14 hours/4 times but answer key says 4 hours. Any comment on what is right answer?

I passed today to it is 50% valid. I would use actual test dump too.

Thanks to:
Victoria
LifeSec
E Haas
Batman

Sims-
Same as Sid

Questions areas not to waste your time studying
Ports
Crypto
OSI model
Legal and regulations
backup and recovery
And there was two question on SDLC

Also this is my second time taking it. First time was mostly VDI questions this time in more toward VPN's, and infrastructure security.

Last thing the book with the lighthouse "worthless

I successfully passed the exam this morning. Victoria was correct on the amount of dump questions on the exam. I had 58 multiple choice questions 23 of which I recognized immediately came from this dump. The new questions aren't difficult if you understand the concepts in the Sybex book and use process of elimination to answer the questions. The 7 Sims at the beginning were a breeze thanks to Victoria, Batman, Lifesec and Moving_up. Victoria if you are ever in NC, dinner is on me.

I had the same network identifying sim as Victoria with Carl being a server and Amber and Laura being PCs.

I used the NIPS, WAF, and patch server just before the DMZ. I placed the Spam Filter into the DMZ and the AV Server on the same backbone as the File servers. $50K exactly.

Everything in this forum is valuable to passing the test and hopefully my addition helps even further. The dump is still somewhat useful but you better know why the answers are what they are based on reading the Sybex book. I have a feeling this dump will be no good by the end of this month as they start changing out questions to test new questions for the new CASP-002 exam next year.

Good luck to the future test takers. I'd advise you to schedule your test soon if you want this dump to be of any help to you or wait for the next dump if someone makes one before the new exam comes out but I have a feeling the questions are going to change monthly from here on out.

Thank you Victoria. I will report back tomorrow on my success or failure and my thoughts on the exam. I still welcome any last minute advice. I test at 9:30am EST.

Sid, to access the logs in the sims you will have to click on the server or router icons in the diagram. When you do you'll have an option to look at logs or make a server a victim or source of the attack. You'll know what I mean when you see it. This sims are pretty easy to navigate through. If you need to use the command prompt to shutdown a router or use a command just type help and it will display the commands for you in case you forget.

Sid

If you are taking the exam this Friday can you let us know how the exam was? Also if this dump is still valid or not too.

Good luck on your exam.

I have scheduled the exam for this Friday, Nov 1. To say I am intimidated is an understatement. I believe I have studied enough books to handle the questions and have enough networking to handle the network discovery Sim. My concern is the attack Sims. I am not an intrusion specialist so I'm not sure what is meant by reading the server logs. I know what to look for once I access the logs the problem is are they talking about the Event Viewer logs or some other logs located in another place on the server. Those that have taken and passed the test, could you post how to access the logs on the servers for the attack Sims? Thanks for any suggestions and pointers. Victoria, I'd love to hear from you, your posts have been wonderful.

Per actual answers web site, the most current information was posted 9/28/13 can someone either verify or post the latest information?

I am looking to take the exam next Saturday.

The sims in the dump you'll see on the test, but the answers are not clear. Read the forum and you'll get an idea on what the answers are. Expect to see some questions on the test. My last test was half new and half from this dump. Hope this helps.

Not valid!!!

I passed today after the second try and thought I was going to fail. Shout out to LifeSec for breaking down the network diagram!! Except I had Carl as a Server and Lee as a Printer, Amber and Laura were the PCs. I had a total of 58 questions and 7 Sims. I counted 26 new questions that are not on this dump. CompTIA is getting tricky with the questions now so the wording is different. I think the main thing to focus on is passing the Sims. If you ace all 7 of those, you're golden. Many of us combined on this forum have given the answers to pass the test.

Guys,
I am new to examcollection here and this vce test engine. I see in this comment section here lots of comments that talk about seeing a "forum". Is this "forum" this comment link or some other place? thanks for any assistance.

Failed. Dump no longer valid.Sims were on the test but identifying the network sim was very confusing. Need to spend more time reading/reviewing the Sybex book.

Failed! I took the test yesterday. About 15-20 questions were from this dump. New questions were very difficult to understand. SIMS were from dump so know how to do them well. Not sure why I failed. I guess I will need to learn more from the Sybex book, Do not know what to do for next time.

Disregard last comment. Can someone provide clarification and or an explanation on why you choose to use a Patch Server or a Firewall in the 50K sim?

Can someone explain on Sim with 50K how you decided to use a patch server over a Web Application Firewall?

I just took the test and passed an hour ago. I had the same SIMs as Henry from the PI but I only had about 10 - 15 multiple questions from this dump. Luckily I also studied from the online course recommended by CompTIA and from an ebook. This exam was the most difficult I've taken and when my time ran out, I thought I failed. Unexpectedly the words "Congratulations" appeared before me. Good luck guys. All I can say is that I am glad I took the time to learn the material rather than just relying on the dump. I ran out of time trying to figure out the network diagram.

PASSED (completed test in 1hr 45 mins) . took the test on Friday 18 Oct. I used AcutalTests.com's version, which I think is the same as this dump (never did a complete comparison, but just looking at the sims and some question, they both seem to be the same). had about 10 new questions the rest where from the dump/study questions. just read the posts here especially the ones by Victoria, Batman and LifeSec. the sims are intense if you have never done any networking or admin work before. I studied the sims and memorize LifeSec diagram.first thing I did was draw the diagram and write down other notes on the scratch paper provided. this help me in the sims.

I took the English version in the Philippines .I got a total of 65 questions with 7 questions being sims.

The sims I got . were:

1) CIA drag and drop -- did not see the RAID-1
2) and 3) were the server attacks. as mentioned before the information was the same for both of the question just different outcome. one was about SQL injects and the other was about Buffer Overflow . just read the log files of each server and find the victim and find the ip address of the attacker. then modify the setting
4) 50K equipment . I used firewall, NIPS, anti-virus server and patch server
5) new sim . something about modifying both router cause of a SQL attack.don't remember the whole thing.but basically you have to click on each router and modify the settings
6) sime was the same diagram as LifeSec. in my case Amber and Laura were PC . verified by using mstsc.exe
7) sime about using md5sum to check the hash before installing the correct patch. it has been mentioned before

Well Eric, you wouldn't be sure. Maybe me and you had a different test. Anyway, the sims are serious but if you study this forum your golden on them. My test had alot of questions that were reworded and a few towards the end that I had never seen.

I passed tody and I'd say 80% is still valid, I'm not sure about the two comments before me being 50% valid?

Anyway the 7 sims are serious, good luck people.

I just passed the exam. Yes! I concur with AJ - there were a few different questions on the test but if you use other resources you should be golden. I can't state this enough. Study the SIMs mentioned in this forum - It will save you annd SIM #5 is a beast - I know I got it wrong but the others are easy that's if you've prepared. I also got the drag and drop for the CIA triad. Make sure you read everything. Good Luck!

Hello All. I just took the exam today and passed :)
I got seven sims like Batman and Victoria mentioned. However, the multiple choice questions they asked are not all in this this collection. I would say about 50% of them are not from this VCE. They were not hard, but you still need to spend more time to understand and then answer.

@ The forum!!!,

The guy Hashim is a troll, or may be a member of CompTIA! This guy goes between James two vce's, and questions the validity of the dumps questions. This guy isn't studying anything as he has been advised by several people of how to and or what to prepare for. Please see below comments:

Shaun from Germany - Feb 05 2013, 12:07 AM Report Spam

@Hashim read this book cover to cover CASP: CompTIA Advanced Security Practitioner Study Guide Authorized Courseware: Exam CAS-001 (CompTIA Study Guide)


Hashim from United States - Jun 23 2013, 1:15 PM Report Spam

Thanks, Izrel! I'm actually reading this book now. How helpful would you say this book is?

•

•
Hashim from United States - Jun 21 2013, 1:44 PM Report Spam

Izrel, What book did you use?

Izrel from United States - Jun 22 2013, 4:07 AM Report Spam

COMPTIA ADVANCED SECURITY PRACTITIONER BY SYBEX. YOU KNOW THE ONE WITH THE LIGHTHOUSE ON THE FRONT COVER!


Please future user's of this particular dump. Ignore this guy! He's wasting true people's hard earned study time!

Regards,

Izrel

Can you also please tell me more about the sim 1&2. When you go into the servers' logs to identify the victim server, does the attacker IP shows up in the victim server log?

Hello,
Thanks to all that shared. I was reviewing the sims, but is there a confirmed answer for the one where we have to place the security appliances with a budget of 50k? I reviewed and everyone has different answer, I don't know which is the best. Thanks in advance

Old School - what did you use as your study material ?>

Just passed the exam(Friday, Oct 11th). 71 mulitple choice and 7 sims. I have nothing to add that hasn't already been posted. Use 272 dump. In my opinion dump is 90 to 95% accurate with the exam. Use what has been posted here, it will surely help. I'm proof. Thank you all who took the exam before me and passed for posting. Everyone studying and preparing to take it, keep studying and I wish you well.

Are the answers in this test correct? I'm going over it, and it seems like some questions have incorrect valid answers. Please advise

Big thank you to Batman, Victoria, Lifesec for sim details. Took the test today and passed. The Dump was dead on. I think I had 3-4 questions that I did not see in the dump but they were well covered in the books.

Yes is 100% valid i take the test on Monday and pass I got 7 Sims read Victoria, Batman and LifeSec diagram and done.

Is this Valid? If so can someone let me know please?
I dont want to study this VCE if it isn't correct.

v/r
Mike

This dump is valid word for word and the simulations are the same, thanks to LifeSec diagram, the only thing that changed some IP everything is same thank you Victoria, Batman and LifeSec and all yes perfect score no different question

Carl was a server for me and my bud (we passed) who took it so I am not sure if what you have listed is 100%, what I would do for anyone is focus on the commands and how to figure out what is a router and switch and proper placement of your devices. They may switch up the IPs or who is what and you wouldn't want that. Best thing you can do for the SIMs is study the process the "how to" get the answer. Everything else will fall into place. Especially once you sit in front of the simulation. Its only 7 sims so I think everyone can agree when I say "just take some time to understand how the answer was gotten". This way if they trip you up and change some things around. you won't be caught with your pants down so to speak.

The dump is valid I just took my test on Friday and passed.

Hi today I will take the test and tell you if this dump is valid or not, I hope it's help me a lot.

Ok so who has recently took the test and confirmed the dump and/or sims are current? If the sims are current and up to date, is there a link that has the sims?

Thanks for your help, I need to pass this exam as soon as possible.

;)

Victoria #5: This question took me about an hour because I did not understand the question. I knew that I had to design network base on diagram; however, I was confused by the hostnames. Here how I cracked it, but don't remember all their IP addresses (URL: http://postimg.org/image/yf2eca1p3/) // sorry for a shitty diagram.

-Amy/Router/ 3 IP Addresses
-John/Router/ 2 IP Addresses (10.9.0.2) & (192.168.100.X)

-Ryan/Switch/ 192.168.34.4 (DMZ)
-Jill/Switch/192.168.23.4 (Where Carl and Lee connect to)
-Sara/Switch/192.168.100.4 (Amber & Laura)

-Pete/WebServer/192.168.34.x (DMZ Under Ryan)

-Amber/Server/192.168.100.82
-Laura/Server/192.168.100.X

-Carl/PC/192.168.23.33
-Lee/PC or Printer/192.168.23.11

You can us SSH for Router & Switch, once you get in there do a "SHOW RUN"; then you'll find the IP address and connections.

You can PING all hosts except switches. (I THINK) Therefore, you can find the IP address, for example "ping Lee you'll find 192.168.23.11"

Netstat will show connection with Amber (192.168.100.82) and Laura 192.168.100.X (12 or 16)

mstsc.exe you'll able to remote to Pete (WebServer), Amber (Server), Laura (Server)..however access will be denied.

I just read my comment, I want to stress that batman and Victorias process's are correct however the subnet that he identified or anyone else in this forum mentioned may not be the same when you get there. The discover your own network. I'll tell you I am pretty positive "you" the test taker is Carl, a buddy of mine took it before me and he was Carl and when I went I was Carl. Amy is a router. The names make no sense probably now but they will when you sit at the sim. The hostnames of the devices are listed as John, Jill, Sara, lee, Carl and a few others I can't think of at the moment.
The md5sum.exe one, I had 3 links that linked to an https site, one was a cert error and two had hashes but only one of those matched. I downloaded one at a time and verified before moving to another one. Use the directory cmd to make sure it's in there. Once u verify your good just install it from the cmd line.

The 50k I had a WAF, nips, spam box and a patch and AV server. Gave me 50k exactly. Hope that helps

So here I am paying it forward. I took the exam and passed, this dump is still valid but like EHaas and the others said, you have to supplement with something else's ( I had the sybex book) just to give you something solid that can explain things when you don't understand something. I found that when I didn't understand an answer or a term I would look it up and once I read it I got it.

The Sims... Damn those things, LOL! Yes, Victoria and batman are on it. I will add that I would hone in on the commands and how to identify a switch and a router, switch has way more interfaces. How to read server logs and identify the different types of attacks. The subnets for the attackers change so focus on the how to identify (key identifiers) rather than the subnets listed below.
Ciao bella

My advice is to go through this blog from beginning to end. Pay attention to Victoria and Batman about the sims. Do not just study this dump, make sure you supplement with a study guide or something. They ask you about 5-6 questions that are not on the dump, some are also reworded and may have a different answer, but the bulk of the questions in this dump are correct. I cannot emphasize this enough because there is know way that I know to do the sims until you get there. Study and prepare for the Sims, because they are what will fail you if you fail. While the questions are important, if you use this dump I think that you have a great chance of passing, if you do the Sims correctly. The sims are not hard, they just require you to organize your Thought a bit. If you do the work you WILL pass. Hope this helps.

E Has I have a question for you??

How many of the questions in your opinion were on the exam from the dump? Also for the sims where are the explanation for the sims that are on the exam?

Any help thanks, I just want to ensure this a correct before I pay and take it :)

Thank you E Hass thats great to know

Still Valid

How valid is this dump? Help I am looking to take the exam next Monday.

Thanks

Passed.. Dump is very helpful but some questions are worded differently, so do read each question to be sure. My 2 cents on the sims..the sims were on the beginning of the test but you can flag them and go back later, because they do come off as intimidating when you are first beginning (warm up on some multi-choice questions to get into the groove and then go back). The network search SIM (Host name, netstat, Ping, etc.) will most likely take the longest, because of the commands you have to type, the other SIMs actually go pretty fast once you know what you are doing in the SIMs. In my case it took more time to learn how to use the Simulator than actually answer the questions. The Firewall/Sql sim was one that came off as very intimidating, but was fairly easy to answer look at the firewall log, review pings from and to, apply ACL (Deny) change in firewall..Done. (don't get sucked into all the hyperbole). Good luck.

Big thanks to all especially Victoria and Batman on breaking down the Sims. It was hard to just read about it on this blog and comprehend; but It makes sense once in the test and the nerves start to calm down.

Taking my CASP this week. Can anyone explain the SIM on the VCE where ACL and you have been given 4 or 5 tasks to do, tell me why when you hit "show answer" it only shows one ACL modification to port 3389? Where are ther explanations to the other tasks, or is that one of the wrong ones?

Also, the one with the limited funds and you have to purchase the best equipment to secure your network, well as I looked at it, I chose a FW, NIPs and then a patch server and AV server in my Server Farm. That gives you 50K exactly.. can anyone cofirm if that is the solution you came up with?

Hello, I going to take this exam on Monday 30 and I need to know some advice from study guides, I have skillport CASP curse on-line thats the only guide I am using for study thank for any help.

4 things.
1. The test does not contain that many scenario based questions.

2. 3 of the sims are wrong

3. Someone at comptia wrote a few of those questions

4. If you have no experience in the field why take a test to be an "advanced security practitioner "? you would probably have better luck if you stayed at a holiday inn last night...

Does anyone have any input on the control/threat/risk sim?
what to study for this?

I am sorry i never read this before today did my exam today Sept 02. luckily or miraculously i passed. I got 71 questions. the first 7 or 8 questions were sims the other were multiple choice. i did not understand some of the sims

Congratulations to you and thanks for sharing, Batman!

You have to know basic CCNA networking stuff to pass SIM #5. Ping all ten names by hostname to see which ones you can access. You'll get some IP's this way. Then try mstsc.exe and use the IP's you found to figure out which devices are Windows boxes and whether they are servers or PC's. A couple are Windows 7 boxes and I think one was Server 2008 R2. If you can't access it by mstsc (RDP) then it might be a router, switch, or another non-Windows device. SSH into the router (the IP of your default gateway, of course) to find the hostname and IP of the router. In the router you can see Gigabit Ethernet connections with associated IP's in the description field. One of these will end up being a switch and you can SSH into that also. You'll need to know all of the commands ping, netstat, hostname, mctsc.exe, ssh, ipconfig, show run, and show interface to navigate this maze without a map.

I got the same SIM Victoria described in #6 with drag and drop Kerberos, SSL Accelerator, HSM, XACML, WS-Security, Reverse Proxy. Just look those terms up on Wikipedia or OWASP and it will be super easy.

I also got Victoria's SIM #7 - two routers and a firewall, block the bad guys. This is super easy (if you understand subnets and firewalls.) The logs clearly show two different IP's from a single subnet accessing each router. It was something like 192.168.200.254 accessing router 1 and 192.168.200.3 accessing router 2. Just deny the entire 192.168.200.0 subnet in the firewall and you're good.

I didn't see the CIA SIM, unfortunately. It would have been an easy one although the answers on the dump are clearly wrong as mentioned by drw.

This was a difficult exam and it deserves some prestige. Good luck!

Passed.

There were 13 new multiple choice questions but remember that some questions aren't scored. A couple of these new questions seemed incredibly easy and a couple of others seemed to have no right answer. A couple of dump questions were reworded slightly. There were 71 total questions including 7 SIMS with three new ones mentioned by Victoria in #5, #6, and #7. I had the exact same 7 SIMS as Victoria.

There were two SQL injection SIMS exactly like question 205 in the dump. The contents of each SIM seemed to be exactly the same including log files and IP addresses but with different objectives in each one. They were both a little difficult so you should know how to recognize SQL injection, XSS (Cross Site Scripting), and buffer overflow. The dump provides no help here so good luck. Look these terms up on OWASP.org and that will help.

SIM #3 was from question 206 in the dump. I chose #11 WAF and a #4 NIPS/NIDS in the DMZ behind the outer router, #1 AV Server and #6 Patch Server in the Server VLAN, and a #9 SPAM filter behind the switch with the other servers in the DMZ. I forgot to study this one so I just went with experience and intuition. The guy who created the dump must have been given an unlimited budget. :)

SIM #4 was easy. There are four HTTPS links and two HTTP links. Look at the bottom to verify that you use HTTPS. So which of the four? The first had a certificate error so it was no good. Click no and then try the next one. Find one without a certificate error and download it. At the command prompt run "dir" to display the contents of the directory. Run "md5sum.exe install.exe" to view the md5sum and ensure that it is identical to the one shown on the website. Then run "install.exe" and you're good.

Yes!

I used all of those except the Protocol Analyzer.

Anyone have any ideas on the 50K network simulation setup? The solution provided is obviously over 50K. I was thinking - Firewall, NIPS, Protocol Analyzer, AV Server, SPAM box and WAF..any other input?

Victoria the same thing happened to me when I took the test on yesterday, I would have passed if I had mastered the 7 sims. Does anyone know if there is a good study online that shows step-by-step how to complete the sims since the actualanswers portion is too hard to comprehend?

If there's two test bed, then hope you test with the 1st one. The dump is good, real good. I did use the CASP book by Michael Gregg, published by Sybex. Sims have some changes but Victoria's input is right on with the seven SIMS. For network SIMs have two, know where to put your firewalls, web servers, routers, IDS/IPS. The other is to build your own network. This is also good when you have $50,000 budget how to secure your systems in your network(SIM 5, Victoria's input). Follow drw's input on CIA is good, not the dump. There's no site to practice for the SIMs, although Victoria's right on with the seven SIMs.

Many thanks to Victoria!
by the way, I total agree with "drw" about the CIA sim. thanks drw! you are right.

Ok everyone after crying now I can say I failed the test and here's what to look for lol. It wasn't bad at all. If you have a real grasp of networking, then it should be pretty easy. I had 7 sims. Make sure you study the 272 dump. All of my multiple choice questions with the exception of about 10-15 were from the dump. Word for word.

Sim #1 & 2- SQL injection and XSS attack similar to the dump. Right click check log of server, identify attack and find source. Make a deny change in the ACL.

Sim #3 - 50k dollar limit. Select devices to configure your network with a limit of 50k.

Sim #4 - md5sum.exe. Very easy. Make sure you pay attention before downloading file. Roll over download link and look at bottom of screen. You'll see either an https or http URL. Download the https file. Md5sum.exe install.exe. Done deal.

Sim #5 - identify network using ping, netstat, hostname, mctcs.exe, ssh, ipconfig. Identify hosts, ip and purpose of device. I screwed this up pretty bad cuz I couldn't tell the difference between a switch and a router. You can login to servers to try and find out what they are. I really enjoyed this sim even though I bombed on it. It also took the longest so I ran through questions first then came back.

Sim #6 - drag and drop. Match these with the correct role and requirement...Kerberos, ssl, hsm, xacml, ws-security, reverse proxy

Sim #7 - don't remember much sorry..something you have to look inside router 1 and 2 and also the firewall to block a source. There's also a command line on each router that I did not touch. Think it was a SQL injection attack but I don't remember the task. Reconfigure device to keep from being attacked.

Took the test yesterday.. and failed. The multiple choice are the same with a few additional. I had 10 sims. only 4 of which were on this vce. Does anyone know where we can practice the sims?

Valid.
71 questions total, 7 sims. All but maybe 5 multiple choice questions on the dump. Sims are same as dump +/- a few.

we're waiting for the NEO feedback

NEO, any updates?

Second question is when you are identifying the SQL server on the exam are you able to click on a server and what can you actually view. Can you open the command prompt on each one and view the host name or how are you supposed to go about identifying the server? Is there a way to identify the buffer overflow?

On the exam will you have to d/l the md5sum utility or is it provided? Is the command line the same as it is for fciv.exe filename? and how are you provided the opportunity to d/l over ssl?

Look forward to hearing from you NEO next week Saturday!

Hey I'll be completing a one week training tomorrow, I'll be taking the exam on Sat. does anyone if this dump still valid. thank you

Jac00 - Yes that is correct.

I read that this certification meet the following criteria for DOD's 8570.01-M: Information Assurance Technical Level III, IS Manager Level II and IA Systems Architect and Engineer Levels I and II. Could someone confirm. thank you

Hello, does anyone know if this dump still valid. Thanks

I went to actualanswer.com and searched for CASP it says update as of July 26th. Actualtest.com say updated as of July 11th. With that being said they both show a total of 272 questions. I thought, as they get updated the questions get larger. I wonder, does anyone know if they switch out questions?

Thanks @lollipops. The reason I asked is that it appears that the VCE upload by James had reference to actualanswers all over it. And if you say they're solid, then that gives me more confidence in the product.

Actual Answers have a good rep in the industry, if they say they got it then they got it, those guys are great!

Would "actualanswers.com" have all the new questions? Is it worth the $99.

Gotta say that I was truly humbled by this test. Have about 6 years exp in IT, 4 as a system admin, and figured I could ace the test after reading Sybex's book for the CASP exam. LOL, it was an epic fail. The sim that Moving_up mentioned about discovering the network topology was mind blowing. Never really had to mess with networking too much as a sys admin. For the past few days I have been researching on how to do that with the limited commands available, but have hit a wall. As for the other test questions, it is exactly as he mentioned, maybe(from what I can remember) 15 -20 test questions from this VCE are on the new test.I guess a new VCE or test dump needs to be put out.

@ me_again

I had to use a magnifying glass (no joke) to study the SIMS from the VCE. I also used the SIMS in the back of the Sybex book. While all that is gravy, I honestly leveraged more of my networking background (Cisco command line) and even dredged up some old tactics from my service desk years.

That only covers the SIMS though. I would highly suggest you read the book and use the quizzes and practice exams the book gives you.

I used the Sybex book by the way.

Is there a way or place to find the sims to practice with and or see what you are talking about. I can't seem to see the SIMS very well in this VCE.

Passed today. 71 questions total. 1 drag and drop, 5 sims.

CIA Triad drag and drop - No show.

50k appliance topology drag and drop - yes but modified. No slots between internal router and server switch. Only 3 slots between internal router and border router. Everything else was the same.

SQL injection sim - yes. in fact there were TWO of these with slightly different requirements. Pay attention to the TASKS!

Install.exe SIM - yes. "MD5SUM" is the utility. Use "dir" to verify contents of the "downloads" folder and existence of MD5 utility. Make sure you are downloading over SSL (443).

As mentioned earlier there is a new SIM where you have to discover your network topology from the command line of one machine using SSH, ping, netstat, RDP (mstsc.exe) and restrictive Cisco CLI commands.

One new drag and drop where you match up various tools/applications/protocols to address certain goals in a simple matrix.

About 20 - 25 multiple choice questions NOT ON THE DUMP and many of the ones that were from this dump were re-worded slightly.

I am not fighting, just trying to help. I noticed the errors on this sim and felt obliged to point them out. If anyone disagrees and has valid input or points of contention then that is what this is all about .that is. to learn from one another!

Scheduled to do the exam next Friday, how will the dump hold up? I am hearing a lot of conflict is the file expiring are Avab / Conf / Integ filled out properly? United we stand divided we fall. So let's stand together and help each other and stop the bickering let's just laugh a while and be friends and get along so let's just shake on it and carry on!!! OK!!!

Can you remember more about what the sim with the keberos, SSL etc. had on it? And can you recall anything about the other sims?

On the SIM about CIA I believe you have several in the wrong category.
I belive they should be as follows:

Availability=Load Balancing,RAID-1, Hot Site, Denial Of Service Attacks
all of these are things that affect the availability of a system, or lack thereof.

Integrity=Digital Signature, Checksums, hashes
all of these are methods to ensure the message has not been tampered with.

Confidentiality=Encryption, Access Control Lists, stenography, data classifications.
all of these are used to control accessability to the data ensuring it remains confidential.

md5sum <filename>

Could you talk more about the SIMS? Cisco router configuration? Drag and drop?

Ok so reading around google and other sources. Can anyone confirm that for the MP5 hash to display this is what needs to be ran?

C:downloadsFCIV -md5 -sha1 install

Ok so I took the test last week = Failed! - 15 -20 new questions and a couple of new sims. - However, the MD5 hash was there and I didnt understand how to verify the hash. What tool are we to use? any one familiar with the commands? I underestand back track v5 but for this test was completely lost. - In a nut shell i passed the questions but failed the sims

There was a simulation that required us to identify network componants by IP address and Names - along with identifying: on a diagram whateach NODE was SUCH as: A workstation, Server, Swtich, etc. The sim consisted of utilizing several tools such as: IPCONFIG, PING and about 4 other tools. for each item you were required to provide the NAME of the system, the IP address and weather it was a server, workstation, swtich etc.

On a final note: There was another click and place diagram - not the CIA one to identify intergity for MP5 hashing for example. This one had several items such as keberos, SSL etc. with a description on the left side and what it was on the right. Hope this is helpfull.

@ Izrel

Easy there Intarnetz-Killah. First: Look up the definition of 'behoove'.

No. I'm not working for CompTIA. I'm looking to take this Exam on Friday.

Do I want clarification? Yep. Fairly simple concept.

If somebody asking questions in a. wait for it. FORUM truly confuses you, perhaps you should seek life elsewhere. The rest of the internet will give you an aneurysm.

I guess I'll find out how accurate the VCE is for myself on Friday and report back. Until then, I'm going to continue to. RESEARCH (another word for you to look up Izrel) the questions and answers from the VCE.

Thanks for the laughs Izrel.

@ Sammael or Sammeal , " Personally I think your a troll in the room in the forum as CompTIA. Get out of here CokpTIA. If your, """ previous studies and experience lead me to believe the drag and drop answers provided in the VCE are incorrect."""" , then why are you in here debating over it? If you feel like they aren't explaining it to you me trying to explain it to you won't do a damn bit of
good!!! James dump is an excellent master piece of work. For you to come in here question asking behooves the fuck outta me!

Get yo' trolln' ass up outta here CompTIA! Your not welcome here!

@ Izrel or anybody else for that matter.

My previous studies and experience lead me to believe the drag and drop answers provided in the VCE are incorrect.

Encryption is Confidentiality.
Hot Site & DoS Attacks are Availability.

Do you feel the same? If you went with the VCE answers. please elaborate why you feel those answers were correct.

@ aztechguy

Can you elaborate on the sims you saw? Any details on questions?

What is a/i/c?

@Mahalos I agree.

Creating network, switches, routers, fw, hosts. I couldn't figure out the $$$ one. I know I got the questions down pat but the sims kicked my butt. Failed.

Just like this test , had the md5, a/i/c

Going over sims in the back of the book 2nd time around. Good luck everyone

@ Sammeal,

As this dump is displaying the CIA drag and drop setup, follow it to the bone. #202 ,
#203,
#204,
#205

Were all on the test. 61 questions including 7 simulations. Four of the SIMS are in this dump which are the numbers that I listed above. Hope this helps.

@ Sammeal ,

Yes I did. It was the one where you see in the Drag and drop for CIA Confidentiality, Availability, Integrity. Just follow it as it is in the order the dump is displaying the drag and drop sequence.

@ Izrel

Do you recall the drag and drop for the CIA triad?

I am not so certain of the VCE providers choices in that drag and drop.

Thanks.

@ Suheib,

Look guy, I didn't see the #206 on the exam. I think you should put more the emphasis on #202, #203, #204, #205 as everyone else has posted in their comments. They were on the test. Please review all the questions in the dump.

Can someone please explain to me the answer for Q206? Doing everything said in the answer costs much more than $50k???

ANS: Following steps need to do as 8 then 2 (what does this mean? do as 8 then 2?)
Replace 6 with 3, 7, 11
Replace 2 with 1, put 6 same segment
Replace 9 with 10
Replace 3 with 5
Replace 1 with 4

Can anyone explain Q206 better than explained in the exam? I am much confused on steps to take as the final capture shows different from what is explained. Thanks you much in advance.

Sorry Total of 71 questions including the SIMS (6 SIMS & 65 questions). Bottom line dump is valid. If you are not technically inclined you better study up for the SIMS. I can't recommend any book to help practice for the SIMS because I didn't use one. I believe I did what everyone else did and relied on experience. Anyways I passed. Hope this helps

Ok I just passed the exam today 6/29. However the exam that I just took was about 70-75% from the DUMP. A total of 71 questions out of that 15-20 questions were new. 6 SIMS (#203, #204, #205 #206 - New SIM Build/Create a network create subnets and IP for hosts/servers/routers/fw/switches. A new and totally different Drag & Drop).

passed 100% valid

These dumps are 100% right, as far as the labs, 2 drag and drop sims one is on the dumps, the other covers CIA. Also the "Download" sim along with 2 sims where you have to determine the source and victim of the attack, as well as selecting the rule in the correct firewall. Please don't listen to people saying the dumps aren't authentic. Just passed!!!!

@ Vincent, @ Suheib,

I just tested last week, and the questions in this dump were word for word verbatim. Even the sims in the dump were on the CASP exam. It's only 61 questions with 7 sims as stated in my posts. . Just study the dump and you will be fixed!

Anyone have the latest questions given that theses ones are outdated? If so please post

Hey all, I also tested last Thursday and forgot to post, but Juiced (lol, weird name) is correct. They hit me with seven new simulations not on this dump, but some of the questions where on there, I would say about 10-15. Not enough to pass. I took the exam in Maryland. Back to the drawing boards, cause i just wasted $339. Got my voucher from getcertified4less at a discount. Good Luck.

Can anyone else vouch for the below comment? Has test truly changed? Your response is much appreciated.

Update: I took the exam Friday and it has changed. 7 new sims and all new questions. The below comments are correct. They open with 7 sims and then 61 questions. You have a total of 3hrs 30mins for the initial reading and 2 hrs 30mins for the exam. I failed of course, because i only studied the dump. The questions were not really hard but the sims were. Hope this help . J.

Thanks, Izrel! I'm actually reading this book now. How helpful would you say this book is?

COMPTIA ADVANCED SECURITY PRACTITIONER BY SYBEX. YOU KNOW THE ONE WITH THE LIGHTHOUSE ON THE FRONT COVER!

Izrel, What book did you use?

One more thing to remember this certification doesn't give a score just a pass or fail grade!

I 4got to mention that this dump is 100 % valid!

OMG! OMG! OMG! Word for Word verbatim!! 61 questions today. Included with 7 sims as mentioned!!! 2 drag & drop simulations included. Please study all James 272 questions along with the simulations in this dump:

Drag & Drop (Question 202)
Application Patch (Question 203)
Firewall (Question 204)
SQL server attack (Question 205)

Thanks James for the extreme Dopeness on the dump!!!

Does anyone know where I could get more SIM's to study? These sims in the file are very hard to read. Also, worst case. If I were to fail ALL of the sims, could I still pass this test?

Passed. This dump was 100% valid. I had drag & drop & 3 Sims. As soon as my test started I had Sims & the drag & drop. If you are not sure of yourself, you can skip them and go back to them and answer them last. Knock out the easy stuff and use the remainder of your time to knock out the hard stuff, so try not to stress. It is a 3 hr test. I would also suggest that you make sure you have read CASP Study Guide by SYBEX. Do the labs in the back of the book so that way you will be good to go on the test.

Drag & Drop (Question 202)
Application Patch (Question 203)
Firewall (Question 204)
SQL server attack (Question 205)

Hay,

I have a question about exam question no: 202 !
Encryption = Integrity (and Confidentiality = Privacy).

It's this answer is Correct ?

Thx

Still valid. Passed the exam. Thanks

Dump is valid in USA