SY0-401 Exam Details

  • Exam Code
    :SY0-401
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1789 Q&As
  • Last Updated
    :Dec 14, 2021

CompTIA SY0-401 Online Questions & Answers

  • Question 1681:

    Which of the following application attacks is used to gain access to SEH?

    A. Cookie stealing
    B. Buffer overflow
    C. Directory traversal
    D. XML injection

  • Question 1682:

    After entering the following information into a SOHO wireless router, a mobile device's user reports being unable to connect to the network:

    PERMIT 0A: D1: FA. B1: 03: 37 DENY 01: 33: 7F: AB: 10: AB Which of the following is preventing the device from connecting?

    A. WPA2-PSK requires a supplicant on the mobile device.
    B. Hardware address filtering is blocking the device.
    C. TCP/IP Port filtering has been implemented on the SOHO router.
    D. IP address filtering has disabled the device from connecting.

  • Question 1683:

    An administrator has advised against the use of Bluetooth phones due to bluesnarfing concerns.

    Which of the following is an example of this threat?

    A. An attacker using the phone remotely for spoofing other phone numbers
    B. Unauthorized intrusions into the phone to access data
    C. The Bluetooth enabled phone causing signal interference with the network
    D. An attacker using exploits that allow the phone to be disabled

  • Question 1684:

    All executive officers have changed their monitor location so it cannot be easily viewed when passing by their offices. Which of the following attacks does this action remediate?

    A. Dumpster Diving
    B. Impersonation
    C. Shoulder Surfing
    D. Whaling

  • Question 1685:

    Matt, an administrator, notices a flood fragmented packet and retransmits from an email server.

    After disabling the TCP offload setting on the NIC, Matt sees normal traffic with packets flowing in sequence again. Which of the following utilities was he MOST likely using to view this issue?

    A. Spam filter
    B. Protocol analyzer
    C. Web application firewall
    D. Load balancer

  • Question 1686:

    In which of the following steps of incident response does a team analyse the incident and determine steps to prevent a future occurrence?

    A. Mitigation
    B. Identification
    C. Preparation
    D. Lessons learned

  • Question 1687:

    A system administrator wants to implement an internal communication system that will allow employees to send encrypted messages to each other. The system must also support non-repudiation. Which of the following implements all these requirements?

    A. Bcrypt
    B. Blowfish
    C. PGP
    D. SHA

  • Question 1688:

    An administrator is hardening systems and wants to disable unnecessary services. One Linux server hosts files used by a Windows web server on another machine. The Linux server is only used for secure file transfer, but requires a share for the Windows web server as well. The administrator sees the following output from a netstat -1p command:

    Which of the following processes can the administrator kill without risking impact to the purpose and function of the Linux or Windows servers? (Select Three)

    A. 1488
    B. 1680
    C. 2120
    D. 2121
    E. 2680
    F. 8217

  • Question 1689:

    Which of the following tools will allow a technician to detect security-related TCP connection anomalies?

    A. Logical token
    B. Performance monitor
    C. Public key infrastructure
    D. Trusted platform module

  • Question 1690:

    An attacker Joe configures his service identifier to be the same as an access point advertised on a billboard. Joe then conducts a denial of service attack against the legitimate AP causing users to drop their connections and then reconnect to Joe's system with the same SSID. Which of the following Best describes this type of attack?

    A. Bluejacking
    B. WPS attack
    C. Evil twin
    D. War driving
    E. Relay attack

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-401 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.