1. Home
  2. CompTIA
  3. SY0-301

CompTIA SY0-301 Online Practice Questions and Exam Preparation

SY0-301 Exam Details

  • Exam Code
    :SY0-301
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :820 Q&As
  • Last Updated
    :Dec 12, 2021

CompTIA SY0-301 Online Questions & Answers

  • Question 151:

    An encrypted message is sent using PKI from Sara, a client, to a customer. Sara claims she never sent the message. Which of the following aspects of PKI BEST ensures the identity of the sender?

    A. CRL
    B. Non-repudiation
    C. Trust models
    D. Recovery agents

  • Question 152:

    Which of the following would allow the organization to divide a Class C IP address range into several ranges?

    A. DMZ
    B. Virtual LANs
    C. NAT
    D. Subnetting

  • Question 153:

    Which of the following defines a business goal for system restoration and acceptable data loss?

    A. MTTR
    B. MTBF
    C. RPO
    D. Warm site

  • Question 154:

    Which of the following would a security administrator implement in order to identify change from the standard configuration on a server?

    A. Penetration test
    B. Code review
    C. Baseline review
    D. Design review

  • Question 155:

    Sara, a hacker, is completing a website form to request a free coupon. The site has a field that limits the request to 3 or fewer coupons. While submitting the form, Sara runs an application on her machine to intercept the HTTP POST command and change the field from 3 coupons to 30. Which of the following was used to perform this attack?

    A. SQL injection
    B. XML injection
    C. Packet sniffer
    D. Proxy

  • Question 156:

    To protect corporate data on removable media, a security policy should mandate that all removable devices use which of the following?

    A. Full disk encryption
    B. Application isolation
    C. Digital rights management
    D. Data execution prevention

  • Question 157:

    Which of the following should Jane, a security administrator, perform before a hard drive is analyzed with forensics tools?

    A. Identify user habits
    B. Disconnect system from network
    C. Capture system image
    D. Interview witnesses

  • Question 158:

    Which of the following practices is used to mitigate a known security vulnerability?

    A. Application fuzzing
    B. Patch management
    C. Password cracking
    D. Auditing security logs

  • Question 159:

    Which of the following is an attack vector that can cause extensive physical damage to a datacenter without physical access?

    A. CCTV system access
    B. Dial-up access
    C. Changing environmental controls
    D. Ping of death

  • Question 160:

    A security analyst has been notified that trade secrets are being leaked from one of the executives in the corporation. When reviewing this executive's laptop they notice several pictures of the employee's pets are on the hard drive and on a cloud storage network. When the analyst hashes the images on the hard drive against the hashes on the cloud network they do not match. Which of the following describes how the employee is leaking these secrets?

    A. Social engineering
    B. Steganography
    C. Hashing
    D. Digital signatures

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-301 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.