1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 111:

    A network technician needs to monitor and view the websites that are visited by an employee. The employee is connected to a network switch. Which of the following would allow the technician to monitor the employee's web traffic?

    A. Implement promiscuous mode on the NIC of the employee's computer.
    B. Install and configured a transparent proxy server.
    C. Run a vulnerability scanner to capture DNS packets on the router.
    D. Configure a VPN to forward packets to the technician's computer.

  • Question 112:

    A company is developing a new system that will unlock a computer automatically when an authorized user sits in front of it, and then lock the computer when the user leaves. The user does not have to perform any action for this process to occur. Which of the following technologies provides this capability?

    A. Facial recognition
    B. Fingerprint scanner
    C. Motion detector
    D. Smart cards

  • Question 113:

    During a risk assessment, results show that a fire in one of the company's datacenters could cost up to $20 million in equipment damages and lost revenue. As a result, the company insures the datacenter for up to $20 million damages for the cost of $30,000 a year. Which of the following risk response techniques has the company chosen?

    A. Transference
    B. Avoidance
    C. Mitigation
    D. Acceptance

  • Question 114:

    Which of the following is the MAIN disadvantage of using SSO?

    A. The architecture can introduce a single point of failure.
    B. Users need to authenticate for each resource they access.
    C. It requires an organization to configure federation.
    D. The authentication is transparent to the user.

  • Question 115:

    A new network administrator is establishing network circuit monitoring guidelines to catch potentially malicious traffic. The administrator begins monitoring the NetFlow statistics tor the critical Internet circuit and notes the following data after two weeks.

    However, after checking the statistics from the weekend following the compiled statistics the administrator notices a spike in traffic to 250Mbps sustained for one hour The administrator is able to track the source of the spike to a server in the

    DMZ.

    Which of the following is the next BEST course of action the administrator should take?

    A. Enable a packet capture on the firewall to catch the raw packets on the next occurrence
    B. Consult the NetFlow logs on the NetFlow server to determine what data was being transferred
    C. Immediately open a Seventy 1 case with the security analysts to address potential data exfiltration
    D. Rerun the baseline data gathering for an additional four weeks and compare the results

  • Question 116:

    Which of the following attacks can be used to exploit a vulnerability that was created by untrained users?

    A. A spear-phishing email with a file attachment
    B. A DoS using loT devices
    C. An evil twin wireless access point
    D. A domain hijacking of a bank website

  • Question 117:

    Given the log output:

    Max 15 00:15:23.431 CRT: #SEC_LOGIN-5-LOGIN_SUCCESS:

    Login Success [user: msmith] [Source: 10.0.12.45]

    [localport: 23] at 00:15:23:431 CET Sun Mar 15 2015

    Which of the following should the network administrator do to protect data security?

    A. Configure port security for logons
    B. Disable telnet and enable SSH
    C. Configure an AAA server
    D. Disable password and enable RSA authentication

  • Question 118:

    A company's user lockout policy is enabled after five unsuccessful login attempts. The help desk notices a user is repeatedly locked out over the course of a workweek. Upon contacting the user, the help desk discovers the user is on vacation and does not have network access.

    Which of the following types of attacks are MOST likely occurring? (Select two.)

    A. Replay
    B. Rainbow tables
    C. Brute force
    D. Pass the hash
    E. Dictionary

  • Question 119:

    Which of the following allows an application to securely authenticate a user by receiving credentials from a web domain?

    A. TACACS+
    B. RADIUS
    C. Kerberos
    D. SAML

  • Question 120:

    A security engineer is installing a WAF to protect the company's website from malicious web requests over SSL. Which of the following is needed to meet the objective?

    A. A reverse proxy
    B. A decryption certificate
    C. A split-tunnel VPN
    D. Load-balanced servers

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.