1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1221:

    A company recently experienced data exfiltration via the corporate network. In response to the breach, a security analyst recommends deploying an out-of-band IDS solution. The analyst says the solution can be implemented without purchasing any additional network hardware. Which of the following solutions will be used to deploy the IDS?

    A. Network tap
    B. Network proxy
    C. Honeypot
    D. Port mirroring

  • Question 1222:

    Which of the following explains why vendors publish MD5 values when they provide software patches for their customers to download over the Internet?

    A. The recipient can verify integrity of the software patch.
    B. The recipient can verify the authenticity of the site used to download the patch.
    C. The recipient can request future updates to the software using the published MD5 value.
    D. The recipient can successfully activate the new software patch.

  • Question 1223:

    A company notices that at 10 a.m. every Thursday, three users' computers become inoperable. The security analyst team discovers a file called where.pdf.exe that runs on system startup. The contents of where.pdf.exe are shown below:

    @echo off

    if [c:\file.txt] deltree C:\

    Based on the above information, which of the following types of malware was discovered?

    A. Rootkit
    B. Backdoor
    C. Logic bomb
    D. RAT

  • Question 1224:

    Which of the following is an example of the second A in the AAA model?

    A. The encryption protocol successfully completes the handshake and establishes a connection
    B. The one-time password is keyed in, and the login system grants access.
    C. The event log records a successful login with a type code that indicates an interactive login.
    D. A domain controller confirms membership in the appropriate group

  • Question 1225:

    Joe, an employee, knows he is going to be fired in three days. Which of the following is Joe?

    A. An insider threat
    B. A competitor
    C. A hacktivist
    D. A state actor

  • Question 1226:

    A technician is recommending preventive physical security controls for a server room. Which of the following would the technician MOST likely recommend? (Choose two.)

    A. Geofencing
    B. Video surveillance
    C. Protected cabinets
    D. Mantrap
    E. Key exchange
    F. Authorized personnel signage

  • Question 1227:

    After deploying an antivirus solution on some network-isolated industrial computers, the service desk team received a trouble ticket about the following message being displayed on then computer's screen:

    Which of the following would be the SAFEST next step to address the issue?

    A. Immediately delete the detected file from the quarantine to secure the environment and clear the alert from the antivirus console
    B. Perform a manual antivirus signature update directly from the antivirus vendor's cloud
    C. Centrally activate a full scan for the entire set of industrial computers, looking for new threats
    D. Check the antivirus vendor's documentation about the security modules, incompatibilities, and software whitelisting.

  • Question 1228:

    When building a hosted datacenter. Which of the following is the MOST important consideration for physical security within the datacenter?

    A. Security guards
    B. Cameras
    C. Secure enclosures
    D. Biometrics

  • Question 1229:

    A network administrator was concerned during an audit that users were able to use the same passwords the day after a password change policy took effect. The following settings are in place:

    *

    Users must change their passwords every 30 days.

    *

    Users cannot reuse the last 10 passwords.

    Which of the following settings would prevent users from being able to immediately reuse the same passwords?

    A. Minimum password age of five days
    B. Password history of ten passwords
    C. Password length greater than ten characters
    D. Complex passwords must be used

  • Question 1230:

    A security analyst performs a vulnerability scan on the local network. Several items are flagged on the report as being critical issues. The security analyst researches each of the vulnerabilities and discovers that one of the critical issues on the report was mitigated in a previous scan. Which of the following MOST likely happened?

    A. A patch was removed
    B. A false positive occurred
    C. The tool has a high crossover error rate
    D. A necessary service was not running

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.