What do you think?
Rate this book
CompTIA CySA+ Study Guide Exam CS0-002
This updated study guide by two security experts will help you prepare for the CompTIA CySA+ certification exam. Position yourself for success with coverage of crucial security topics! Where can you find 100% coverage of the revised CompTIA Cybersecurity Analyst+ (CySA+) exam objectives? It’s all in the CompTIA CySA+ Study Guide Exam CS0-002, Second Edition ! This guide provides clear and concise information on crucial security topics. You’ll be able to gain insight from practical, real-world examples, plus chapter reviews and exam highlights. Turn to this comprehensive resource to gain authoritative coverage of a range of security subject areas. The CompTIA CySA+ Study Guide, Second Edition connects you to useful study tools that help you prepare for the exam. Gain confidence by using its interactive online test bank with hundreds of bonus practice questions, electronic flashcards, and a searchable glossary of key cybersecurity terms. You also get access to hands-on labs and have the opportunity to create a cybersecurity toolkit. Leading security experts, Mike Chapple and David Seidl, wrote this valuable guide to help you prepare to be CompTIA Security+ certified. If you’re an IT professional who has earned your CompTIA Security+ certification, success on the CySA+ (Cybersecurity Analyst) exam stands as an impressive addition to your professional credentials. Preparing and taking the CS0-002exam can also help you plan for advanced certifications, such as the CompTIA Advanced Security Practitioner (CASP+).
704 pages, Paperback
Published July 28, 2020
73 people are currently reading
63 people want to read
About the author
Mike Chapple
103 books35 followersMike Chapple, Ph.D. is teaching professor of information technology, analytics, and operations at the University of Notre Dame's Mendoza College of Business. Mike's past experience includes serving as Executive Vice President and CIO of the Brand Institute and as a cybersecurity researcher at the U.S. National Security Agency and U.S. Air Force.
Mike is a cybersecurity certification expert. His books and video courses have helped millions of students successfully pass their certification exams. He is the author of over 30 books, including the Official CISSP Study Guide and other books covering the Security+, CySA+, PenTest+, and CISM certifications.
Mike runs the CertMike.com website as a portal to his certification preparation resources, including books and video courses on LinkedIn Learning.
Mike is a cybersecurity certification expert. His books and video courses have helped millions of students successfully pass their certification exams. He is the author of over 30 books, including the Official CISSP Study Guide and other books covering the Security+, CySA+, PenTest+, and CISM certifications.
Mike runs the CertMike.com website as a portal to his certification preparation resources, including books and video courses on LinkedIn Learning.
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 7 of 7 reviews
May 15, 2023
Such a riveting read!! 10/10! would recommend it to everyone i know!
February 15, 2022
I found this study guide very helpful during my CompTIA CS0-002 exam preparation as I've recently passed this exam. It is very comprehensive and explains every topic. I practiced a lot as well on the
CompTIA CySA+ practice test
. This practice test follows the CompTIA questioning style and cover all core exam objectives in depth that are required to pass the exam.
March 11, 2023
This book is a good foundation for what is needed for the test but you'll need a lot more than this to pass. Id recommend also getting the practice test book and watch certify breakfast's videos. You'll need to know a lot of practical knowledge for Nmap aswell as understanding differences between outputs of credentialed scans, non credentialed scans and compliance scans.
April 23, 2021
Despite being quite the verbose author, this was the best comprehensive study resource for the CySA+ exam. Keep the objectives out while reading to cut down on Chapple's long-winded explanations. Chapter 10 & 12 were the most helpful! Couldn't have passed without this book.
February 7, 2021
Well I passed the test so it must be good! 😊
September 21, 2021
This was very helpful in my studying! I passed my CYSA+ exam today and I am now certified!
December 22, 2022
Informative but quite dry, and reads like a textbook. It would've been nice if it had more examples, stories, etc. to liven it up. Includes some info that goes beyond exam objectives, but is useful for an InfoSec career. Each chapter ends with lab exercises and example exam questions, and a practice exam is included as an appendix.
Notes
Using Threat Intelligence
Lists of open source threat intelligence sources
• https://www.senki.org/operators-secur...
• https://cybersecurity.att.com/open-th...
• https://www.misp-project.org/feeds/
• https://threatfeeds.io/
Designing a Vulnerability Management Program
Infrastructure vulnerability scanning tools
• Tenable Nessus: well-known, widely respected.
• Qualys: uses SaaS management console to run scans using appliances located on-prem and in cloud.
• Rapid7 Nexpose: capabilities similar Nessus and Qualys.
• OpenVAS: open source, free alternative.
Interception Proxies
Interception proxies can evaluate web app security: Zed Attack Proxy (ZAP), Burp Suite Proxy.
Software and Hardware Development Security
Web application vulnerability scanners: Acunetix WVS, Arachni, Burp Suite, HCL AppScan, Micro Focus's WebInspect, Netsparker, Qualys's Web Application Scanner, W3AF.
Security Operations and Monitoring
Malware analysis tools: VirusTotal, VirSCAN, Jotti.
Performing Forensic Analysis and Techniques
Forensic suites and tools: FTK, EnCase, CAINE, Autopsy, SIFT.
Notes
Using Threat Intelligence
Lists of open source threat intelligence sources
• https://www.senki.org/operators-secur...
• https://cybersecurity.att.com/open-th...
• https://www.misp-project.org/feeds/
• https://threatfeeds.io/
Designing a Vulnerability Management Program
Infrastructure vulnerability scanning tools
• Tenable Nessus: well-known, widely respected.
• Qualys: uses SaaS management console to run scans using appliances located on-prem and in cloud.
• Rapid7 Nexpose: capabilities similar Nessus and Qualys.
• OpenVAS: open source, free alternative.
Interception Proxies
Interception proxies can evaluate web app security: Zed Attack Proxy (ZAP), Burp Suite Proxy.
Software and Hardware Development Security
Web application vulnerability scanners: Acunetix WVS, Arachni, Burp Suite, HCL AppScan, Micro Focus's WebInspect, Netsparker, Qualys's Web Application Scanner, W3AF.
Security Operations and Monitoring
Malware analysis tools: VirusTotal, VirSCAN, Jotti.
Performing Forensic Analysis and Techniques
Forensic suites and tools: FTK, EnCase, CAINE, Autopsy, SIFT.
Displaying 1 - 7 of 7 reviews