1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 91:

    A security administrator suspects that a DDoS attack is affecting the DNS server. The administrator accesses a workstation with the hostname of workstation01 on the network and obtains the following output from the ipconfig command:

    The administrator successfully pings the DNS server from the workstation. Which of the following commands should be issued from the workstation to verify the DDoS attack is no longer occuring?

    A. dig www.google.com

    B. dig 192.168.1.254

    C. dig workstation01.com

    D. dig 192.168.1.26

  • Question 92:

    An organization has implemented an IPSec VPN access for remote users. Which of the following IPSec modes would be the MOST secure for this organization to implement?

    A. Tunnel mode

    B. Transport mode

    C. AH-only mode

    D. ESP-only mode

  • Question 93:

    An organization wants to upgrade its enterprise-wide desktop computer solution. The organization currently has 500 PCs active on the network. the Chief Information Security Officer (CISO) suggests that the organization employ desktop imaging technology for such a large scale upgrade. Which of the following is a security benefit of implementing an imaging solution?

    A. it allows for faster deployment

    B. it provides a consistent baseline

    C. It reduces the number of vulnerabilities

    D. It decreases the boot time

  • Question 94:

    A security auditor is testing perimeter security in a building that is protected by badge readers. Which of the following types of attacks would MOST likely gain access?

    A. Phishing

    B. Man-in-the-middle

    C. Tailgating

    D. Watering hole

    E. Shoulder surfing

  • Question 95:

    A user receives an email from ISP indicating malicious traffic coming from the user's home network is detected. The traffic appears to be Linux-based, and it is targeting a website that was recently featured on the news as being taken offline

    by an Internet attack. The only Linux device on the network is a home surveillance camera system.

    Which of the following BEST describes what is happening?

    A. The camera system is infected with a bot.

    B. The camera system is infected with a RAT.

    C. The camera system is infected with a Trojan.

    D. The camera system is infected with a backdoor.

  • Question 96:

    Which of the following is an asymmetric function that generates a new and separate key every time it runs?

    A. RSA

    B. DSA

    C. DHE

    D. HMAC

    E. PBKDF2

  • Question 97:

    Which of the following would be considered multifactor authentication?

    A. Hardware token and smart card

    B. Voice recognition and retina scan

    C. Strong password and fingerprint

    D. PIN and security Question,s

  • Question 98:

    An office manager found a folder that included documents with various types of data relating to corporate clients. The office manager notified the data included dates of birth, addresses, and phone numbers for the clients. The office manager then reported this finding to the security compliance officer. Which of the following portions of the policy would the security officer need to consult to determine if a breach has occurred?

    A. Public

    B. Private

    C. PHI

    D. PII

  • Question 99:

    Which of the following scenarios BEST describes an implementation of non-repudiation?

    A. A user logs into a domain workstation and access network file shares for another department

    B. A user remotely logs into the mail server with another user's credentials

    C. A user sends a digitally signed email to the entire finance department about an upcoming meeting

    D. A user access the workstation registry to make unauthorized changes to enable functionality within an application

  • Question 100:

    When sending messages using symmetric encryption, which of the following must happen FIRST?

    A. Exchange encryption key

    B. Establish digital signatures

    C. Agree on an encryption method

    D. Install digital certificates

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.