1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1281:

    An analyst is concerned about data leaks and wants to restrict access to Internet services to authorized users only. The analyst also wants to control the actions each user can perform on each service Which of the following would be the BEST technology for me analyst to consider implementing?

    A. DLP
    B. VPC
    C. CASB
    D. ACL

  • Question 1282:

    A security administrator receives an alert from a third-party vendor that indicates a certificate that was installed in the browser has been hijacked at the root of a small public C The security administrator knows there are at least four different browsers in use on more than a thousand computers in the domain worldwide. Which of the following solutions would be BEST for the security administrator to implement to most efficiently assist with this issue?

    A. SSL
    B. CRL
    C. PKI
    D. ACL

  • Question 1283:

    A penetration tester is crawling a target website that is available to the public. Which of the following represents the actions the penetration tester is performing?

    A. URL hijacking
    B. Reconnaissance
    C. White box testing
    D. Escalation of privilege

  • Question 1284:

    A new intern in the purchasing department requires read access to shared documents. Permissions are normally controlled through a group called "Purchasing", however, the purchasing group permissions allow write access. Which of the following would be the BEST course of action?

    A. Modify all the shared files with read only permissions for the intern.
    B. Create a new group that has only read permissions for the files.
    C. Remove all permissions for the shared files.
    D. Add the intern to the "Purchasing" group.

  • Question 1285:

    A company uses wireless for ail laptops and keeps a very detailed record of its assets, along with a comprehensive list of devices that are authorized to be on the wireless network. The Chief Information Officer (CIO) is concerned about a script kiddie potentially using an unauthorized device to brute force the wireless PSK and obtain access to the internal network. Which of the following should the company implement to BEST prevent this from occurring?

    A. A BPDU guard
    B. WPA-EAP
    C. IP filtering
    D. A WIDS

  • Question 1286:

    An email systems administrator is configuring the mail server to prevent spear phishing attacks through email messages. Which of the following refers to what the administrator is doing?

    A. Risk avoidance
    B. Risk mitigation
    C. Risk transference
    D. Risk acceptance

  • Question 1287:

    Which of the following are used to substantially increase the computation time required to crack a password? (Choose two.)

    A. BCRYPT
    B. Substitution cipher
    C. ECDHE
    D. PBKDF2
    E. Diffie-Hellman

  • Question 1288:

    A salesperson often uses a USB drive to save and move files from a corporate laptop. The corporate laptop was recently updated, and now the files on the USB are read-only. Which of the following was recently added to the laptop?

    A. Antivirus software
    B. File integrity check
    C. HIPS
    D. DLP

  • Question 1289:

    A company has three divisions, each with its own networks and services. The company decides to make its secure web portal accessible to all employees utilizing their existing usernames and passwords. The security administrator has elected to use SAML to support authentication. In this scenario, which of the following will occur when users try to authenticate to the portal? (Select two.)

    A. The portal will function as a service provider and request an authentication assertion.
    B. The portal will function as an identity provider and issue an authentication assertion.
    C. The portal will request an authentication ticket from each network that is transitively trusted.
    D. The back-end networks will function as an identity provider and issue an authentication assertion.
    E. The back-end networks will request authentication tickets from the portal, which will act as the third-party service provider authentication store.
    F. The back-end networks will verify the assertion token issued by the portal functioning as the identity provider.

  • Question 1290:

    A remote user (User1) is unable to reach a newly provisioned corporate windows workstation. The system administrator has been given the following log files from the VPN, corporate firewall and workstation host.

    Which of the following is preventing the remote user from being able to access the workstation?

    A. Network latency is causing remote desktop service request to time out
    B. User1 has been locked out due to too many failed passwords
    C. Lack of network time synchronization is causing authentication mismatches
    D. The workstation has been compromised and is accessing known malware sites
    E. The workstation host firewall is not allowing remote desktop connections

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.