1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 111:

    A malicious system continuously sends an extremely large number of SYN packets to a server. Which of the following BEST describes the resulting effect?

    A. The server will be unable to server clients due to lack of bandwidth

    B. The server's firewall will be unable to effectively filter traffic due to the amount of data transmitted

    C. The server will crash when trying to reassemble all the fragmented packets

    D. The server will exhaust its memory maintaining half-open connections

  • Question 112:

    A systems administrator is deploying a new mission essential server into a virtual environment. Which of the following is BEST mitigated by the environment's rapid elasticity characteristic?

    A. Data confidentiality breaches

    B. VM escape attacks

    C. Lack of redundancy

    D. Denial of service

  • Question 113:

    A security administrator is reviewing the following PowerShell script referenced in the Task Scheduler on a database server:

    Which of the following did the security administrator discover?

    A. Ransomeware

    B. Backdoor

    C. Logic bomb

    D. Trojan

  • Question 114:

    A bank is experiencing a DoS attack against an application designed to handle 500 IP-based sessions. in addition, the perimeter router can only handle 1Gbps of traffic. Which of the following should be implemented to prevent a DoS attacks in the future?

    A. Deploy multiple web servers and implement a load balancer

    B. Increase the capacity of the perimeter router to 10 Gbps

    C. Install a firewall at the network to prevent all attacks

    D. Use redundancy across all network devices and services

  • Question 115:

    A security analyst is reviewing patches on servers. One of the servers is reporting the following error message in the WSUS management console:

    The computer has not reported status in 30 days.

    Given this scenario, which of the following statements BEST represents the issue with the output above?

    A. The computer in Question : has not pulled the latest ACL policies for the firewall.

    B. The computer in Question : has not pulled the latest GPO policies from the management server.

    C. The computer in Question : has not pulled the latest antivirus definitions from the antivirus program.

    D. The computer in Question : has not pulled the latest application software updates.

  • Question 116:

    An analyst is using a vulnerability scanner to look for common security misconfigurations on devices. Which of the following might be identified by the scanner? (Select TWO).

    A. The firewall is disabled on workstations.

    B. SSH is enabled on servers.

    C. Browser homepages have not been customized.

    D. Default administrator credentials exist on networking hardware.

    E. The OS is only set to check for updates once a day.

  • Question 117:

    Joe, a user, has been trying to send Ann, a different user, an encrypted document via email. Ann has not received the attachment but is able to receive the header information. Which of the following is MOST likely preventing Ann from receiving the encrypted file?

    A. Unencrypted credentials

    B. Authentication issues

    C. Weak cipher suite

    D. Permission issues

  • Question 118:

    A systems administrator is configuring a system that uses data classification labels. Which of the following will the administrator need to implement to enforce access control?

    A. Discretionary access control

    B. Mandatory access control

    C. Role-based access control

    D. Rule-based access control

  • Question 119:

    Ann, a customer, is reporting that several important files are missing from her workstation. She recently received communication from an unknown party who is requesting funds to restore the files. Which of the following attacks has occurred?

    A. Ransomware

    B. Keylogger

    C. Buffer overflow

    D. Rootkit

  • Question 120:

    Every morning, a systems administrator monitors failed login attempts on the company's log management server. The administrator notices the DBAdmin account has five failed username and/or password alerts during a ten-minute window. The systems administrator determines the user account is a dummy account used to attract attackers. Which of the following techniques should the systems administrator implement?

    A. Role-based access control

    B. Honeypot

    C. Rule-based access control

    D. Password cracker

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.