Scroll to top button

CompTIA Cybersecurity Analyst (CySA+) Course & Labs

ISBN : 9781616910259

Kick start your prep for the CompTIA CySA+ CS0-001 certification exam with the CompTIA Cybersecurity Analyst (CySA+) course and lab. The lab simulates real-world, hardware, software, and command-line interface environments and can be mapped to any text-book, course or training. The study guide provides complete coverage of the CS0-001 exam objectives and includes topics such as policy and compliance; forensic analysis, vulnerability scans, identity and access management security; and many more. The CompTIA Cybersecurity Analyst CS0-001 certification exam is designed for IT security analysts, vulnerability analysts, or threat intelligence analysts.

The CompTIA Cybersecurity Analyst (CySA+) is an international, vendor-neutral credential that applies behavioral analytics to improve the overall state of IT security. CompTIA CySA+ certification exam validates the critical knowledge and skills that are required to prevent, detect, and combat cybersecurity threats. The exam validates the expertise of professionals to configure and use threat detection tools; perform data analysis, interpret the results to identify vulnerabilities, and much more.

Glossary of terms
Pre Assessment Questions
Full Length Tests
Post Assessment Questions
Performance lab
Learn the real world skills using LiveLab.
Exam related FAQs
What are the prerequisites for this exam? Network+, Security+ or equivalent knowledge. Minimum of 3-4 years of hands-on information security or related experience. While there is no required prerequisite, CySA+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus.
What is the exam registration fee? USD 349
Where do I take the exam? Pearson VUE
What is the format of the exam? Multiple-choice and performance-based
How many questions are asked in the exam? The exam contains 85 questions.
What is the duration of the exam? 165 minutes
What is the passing score? 750

(on a scale of 0-900)

What is the exam's retake policy?

Here are the retake policies:

  • If a candidate has passed an exam (or multiple exams) and achieved a certification, he/she cannot take the exam again, using the same exam code, without prior consent from CompTIA.
  • CompTIA beta examinations may only be taken one (1) time by each candidate.
  • A test found to be in violation of the retake policy will be invalidated and the candidate may be subject to a suspension period. Repeat violators will be permanently banned from participation in the CompTIA Certification Program.
  • Candidates must pay the exam price each time they attempt the exam. CompTIA does not offer any free re-tests or discounts on retakes.
What is the validity of the certification? CompTIA CySA+ certification expires after three years from the date of issue, after which the certification holder will need to renew their certification via CompTIA's Continuing Education Program.
Where can I find more information about this exam? To know more about the CySA-plus, click here.
Which certification covers this exam?
What are the career opportunities after passing this exam?
  • Security Engineer
  • IT Security Analyst
  • Vulnerability Analyst
  • Cybersecurity Specialist
  • Threat Intelligence Analyst
  • Security Operations Center (SOC) Analyst
  • What Does This Book Cover?
  • Setting Up a Kali and Metasploitable Learning Environment
  • Setting Up Your Environment
  • Objectives Map for CompTIA Cybersecurity Analyst (CySA+) Exam CS0-001
  • Cybersecurity Objectives
  • Evaluating Security Risks
  • Building a Secure Network
  • Secure Endpoint Management
  • Penetration Testing
  • Reverse Engineering
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Footprinting
  • Passive Footprinting
  • Gathering Organizational Intelligence
  • Detecting, Preventing, and Responding to Reconnaissance
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Identifying Vulnerability Management Requirements
  • Configuring and Executing Vulnerability Scans
  • Developing a Remediation Workflow
  • Overcoming Barriers to Vulnerability Scanning
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Reviewing and Interpreting Scan Reports
  • Validating Scan Results
  • Common Vulnerabilities
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Security Incidents
  • Phases of Incident Response
  • Building the Foundation for Incident Response
  • Creating an Incident Response Team
  • Coordination and Information Sharing
  • Classifying Incidents
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Analyzing Network Events
  • Handling Network Probes and Attacks
  • Investigating Host Issues
  • Investigating Service and Application Issues
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Building a Forensics Capability
  • Understanding Forensic Software
  • Conducting a Forensic Investigation
  • Forensic Investigation: An Example
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Containing the Damage
  • Incident Eradication and Recovery
  • Wrapping Up the Response
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Understanding Policy Documents
  • Complying with Laws and Regulations
  • Adopting a Standard Framework
  • Implementing Policy-Based Controls
  • Security Control Verification and Quality Control
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Understanding Defense in Depth
  • Implementing Defense in Depth
  • Analyzing Security Architecture
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Understanding Identity
  • Threats to Identity and Access
  • Identity as a Security Layer
  • Understanding Federated Identity and Single Sign-On
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Understanding the Software Development Life Cycle
  • Designing and Coding for Security
  • Software Security Testing
  • Summary
  • Exam Essentials
  • Lab Exercises
  • Host Security Tools
  • Monitoring and Analysis Tools
  • Scanning and Testing Tools
  • Network Security Tools
  • Web Application Security Tools
  • Forensics Tools
  • Summary

Hands on Activities (Labs)

  • Performing reconnaissance on a network
  • Identifying search options in Metasploit
  • Performing initial scan
  • Initiating an SSH session from your Windows 10 client to your Windows Server
  • Conducting vulnerability scans
  • Consulting a vulnerability database
  • Examining the DDOS_Attack.pcap file
  • Retrieving a real-time list of running processes
  • Examining the audited events
  • Adding revision to the revision history
  • Viewing and downloading the policy templates
  • Opening the policy template and setting the company name
  • Reviewing and modifying the policy items
  • Implementing security during the SDLC
  • Using Process Explorer to view specific details about running processes on the system
  • Making syslog entries readable
  • Installing Splunk on the server
  • Downloading and running scanning tools
  • Acquainting yourself with Wireshark's interface
  • Analyzing the capture file to find the attack(s)
  • Generating network traffic and using filter
  • Confirming the spoofing attack in Wireshark
  • Starting a live packet capture

Customer Testimonials

Luis Gallegos
I started using uCertify to prepare myself for the CySA+ exam and can honestly say that it is an awesome tool for preparing yourself. It has multiple methods to train which includes flash cards, interactive labs, and practice exams. The lessons and flash cards are basic training aids that are still very effective. But the strength of this course lies in its labs and practice exams. Overall, this course is a useful training aid in preparation to taking the CySA+ certification exam from CompTIA. uCertify did a great job in providing several methods for the student to learn the subject and succeed in passing the certification exam.
Carl Jones
Each chapter is quite formal in its tone but does include step checks with interactive drag and drop type questions. Occasionally it will refer to labs that are part of the session. You can click on the link in some of the chapters to launch the relevant lab which is nice. Each chapter also has a number of flash cards and a quiz section. The exam questions are mostly multiple choice. Once again the feedback on the quizzes and exams are good and detailed. All in all a fairly good learning package for the Cyber Security exam.
Semi Yulianto
Basically the course consists of several sections namely Pre Assessment, Chapters & Lessons, Performance Labs, Practice Tests, and Post Assessment. Each section focuses on assisting the participant or learner to emphasize on the learning experience for each and every domain and topic. Overall, I'm pretty satisfied with the way this course is presented. Complete features which will surely help the participants in mastering the domains & topics in CompTIA CySA+.