1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1251:

    To get the most accurate results on the security posture of a system, which of the following actions should the security analyst do prior to scanning?

    A. Log all users out of the system
    B. Patch the scanner
    C. Reboot the target host
    D. Update the web plugins

  • Question 1252:

    An accountant is attempting to log in to the internal accounting system and receives a message that the website's certificate is fraudulent. The accountant finds instructions for manually installing the new trusted root onto the local machine. Which of the following would be the company's BEST option for this situation in the future?

    A. Utilize a central CRL
    B. Implement certificate management
    C. Ensure access to KMS
    D. Use a stronger cipher suite

  • Question 1253:

    Joe, the security administrator, sees this in a vulnerability scan report:

    "The server 10.1.2.232 is running Apache 2.2.20 which may be vulnerable to a mod_cgi exploit."

    Joe verifies that the mod_cgi module is not enabled on 10.1.2.232. This message is an example of:

    A. a threat.
    B. a risk.
    C. a false negative.
    D. a false positive.

  • Question 1254:

    Which of the following can be used to increase the time needed to brute force a hashed password?

    A. BCRYPT
    B. ECDHE
    C. Elliptic curve
    D. Diffie-Hellman

  • Question 1255:

    Two users need to send each other emails over unsecured channels. The system should support the principle of non-repudiation. Which of the following should be used to sign the user's certificates?

    A. RA
    B. CA
    C. CRL
    D. CSR

  • Question 1256:

    An Organization requires secure configuration baselines for all platforms and technologies that are used. If any system cannot conform to the secure baseline, the organization must process a risk acceptance and receive approval before the system is placed into production. It may have non- conforming systems in its lower environments (development and staging) without risk acceptance, but must receive risk approval before the system is placed in production. Weekly scan reports identify systems that do not conform to any secure baseline. The application team receive a report with the following results:

    There are currently no risk acceptances for baseline deviations. This is a mission-critical application, and the organization cannot operate If the application is not running. The application fully functions in the development and staging environments. Which of the following actions should the application team take?

    A. Remediate 2633 and 3124 immediately.
    B. Process a risk acceptance for 2633 and 3124.
    C. Process a risk acceptance for 2633 and remediate 3124.
    D. Shut down NYAccountingProd and Investigate the reason for the different scan results.

  • Question 1257:

    Joe, a contractor, is hired by a firm to perform a penetration test against the firm's infrastructure. When conducting the scan, he receives only the network diagram and the network list to scan against the network. Which of the following scan types is Joe performing?

    A. Authenticated
    B. White box
    C. Automated
    D. Gray box

  • Question 1258:

    A large Industrial system's smart generator monitors the system status and sends alerts to third-party maintenance personnel when critical failures occur. While reviewing the network logs, the company's security manager notices the generator's IP is sending packets to an internal file server's IP. Which of the following mitigations would be BEST for the security manager to implement while maintaining alerting capabilities?

    A. Segmentation
    B. Firewall whitelisting
    C. Containment
    D. Isolation

  • Question 1259:

    Which of the following serves to warn users against downloading and installing pirated software on company devices?

    A. AUP
    B. NDA
    C. ISA
    D. BPA

  • Question 1260:

    During a forensics investigation, which of the following must be addressed FIRST according to the order of volatility?

    A. Hard drive
    B. RAM
    C. Network-attached storage
    D. USB flash drive

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.