1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1071:

    A security administrator is investigating a possible account compromise. The administrator logs onto a desktop computer, executes the command notepad.exe c:\Temp\qkakforlkgfkja.1og, and reviews the following: Lee,\rI have completed the task that was assigned to me\rrespectfully\rJohn\r https://www.portal.com\rjohnuser\rilovemycat2 Given the above output, which of the following is the MOST likely cause of this compromise?

    A. Virus
    B. Worm
    C. Rootkit
    D. Keylogger

  • Question 1072:

    An organization handling highly condential information needs to update its systems. Which of the following is the BEST method to prevent data compromise?

    A. Wiping
    B. Degaussing
    C. Shredding
    D. Purging

  • Question 1073:

    Which of the following types of security testing is the MOST cost-effective approach used to analyze existing code and identity areas that require patching?

    A. Black box
    B. Gray box
    C. White box
    D. Red team

  • Question 1074:

    For each of the given items, select the appropriate authentication category from the drop down choices. Select the appropriate authentication type for the following items:

    Hot Area:

  • Question 1075:

    A NIPS administrator needs to install a new signature to observe the behavior of a worm that may be spreading over SMB. Which of the following signatures should be installed on the NIPS'?

    A. PERMIT from ANY:ANY to ANY:445 regex '.-SMB.-'
    B. DROP from ANY:445 Co ANY:445 regex '.-SMB.*'
    C. DENY from ANY:ANY Co ANY:445 regex '.*SMB.*'
    D. RESET from ANY:ANY co ANY:445 regex '.-3MB.-'

  • Question 1076:

    A Chief Information Officer (CIO) is concerned that encryption keys might be exfiltrated by a contractor. The CIO wants to keep control over key visibility and management. Which of the following would be the BEST solution for the CIO to implement?"

    A. HSM
    B. CA
    C. SSH
    D. SSL

  • Question 1077:

    A company would like to transition its directory service from an OpenLDAP solution to Active Directory. The main goal for this project is security. All authentications to the domain controllers must be as secure as possible. Which of the following should the company use to achieve this goal?

    A. LDAP
    B. RADIUS
    C. Kerberos
    D. Shibboleth

  • Question 1078:

    Which of the following types of controls is a turnstile?

    A. Physical
    B. Detective
    C. Corrective
    D. Technical

  • Question 1079:

    An organization relies heavily on an application that has a high frequency of security updates. At present, the security team only updates the application on the first Monday of each month, even though the security updates are released as often as twice a week. Which of the following would be the BEST method of updating this application?

    A. Configure testing and automate patch management for the application.
    B. Configure security control testing for the application.
    C. Manually apply updates for the application when they are released.
    D. Configure a sandbox for testing patches before the scheduled monthly update.

  • Question 1080:

    An organization has a policy in place that states the person who approves firewall controls/changes cannot be the one implementing the changes. Which of the following is this an example of?

    A. Change management
    B. Job rotation
    C. Separation of duties
    D. Least privilege

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.