1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 121:

    Which of the following locations contain the MOST volatile data?

    A. SSD

    B. Paging file

    C. RAM

    D. Cache memory

  • Question 122:

    A business sector is highly competitive, and safeguarding trade secrets and critical information is paramount. On a seasonal basis, an organization employs temporary hires and contractor personnel to accomplish its mission objectives. The temporary and contract personnel require access to network resources only when on the clock. Which of the following account management practices are the BEST ways to manage these accounts?

    A. Employ time-of-day restrictions.

    B. Employ password complexity.

    C. Employ a random key generator strategy.

    D. Employ an account expiration strategy.

    E. Employ a password lockout policy

  • Question 123:

    While troubleshooting a client application connecting to the network, the security administrator notices the following error: Certificate is not valid. Which of the following is the BEST way to check if the digital certificate is valid?

    A. PKI

    B. CRL

    C. CSR

    D. IPSec

  • Question 124:

    Which of the following threats has sufficient knowledge to cause the MOST danger to an organization?

    A. Competitors

    B. Insiders

    C. Hacktivists

    D. Script kiddies

  • Question 125:

    Which of the following types of penetration test will allow the tester to have access only to password hashes prior to the penetration test?

    A. Black box

    B. Gray box

    C. Credentialed

    D. White box

  • Question 126:

    A procedure differs from a policy in that it:

    A. is a high-level statement regarding the company's position on a topic.

    B. sets a minimum expected baseline of behavior.

    C. provides step-by-step instructions for performing a task.

    D. describes adverse actions when violations occur.

  • Question 127:

    Ann, a user, reports she is unable to access an application from her desktop. A security analyst verifies Ann's access and checks the SIEM for any errors. The security analyst reviews the log file from Ann's system and notices the following output:

    Which of the following is MOST likely preventing Ann from accessing the application from the desktop?

    A. Web application firewall

    B. DLP

    C. Host-based firewall

    D. UTM

    E. Network-based firewall

  • Question 128:

    Which of the following is a deployment concept that can be used to ensure only the required OS access is exposed to software applications?

    A. Staging environment

    B. Sandboxing

    C. Secure baseline

    D. Trusted OS

  • Question 129:

    A security administrator is trying to eradicate a worm, which is spreading throughout the organization, using an old remote vulnerability in the SMB protocol. The worm uses Nmap to identify target hosts within the company. The administrator wants to implement a solution that will eradicate the current worm and any future attacks that may be using zero-day vulnerabilities. Which of the following would BEST meet the requirements when implemented?

    A. Host-based firewall

    B. Enterprise patch management system

    C. Network-based intrusion prevention system

    D. Application blacklisting

    E. File integrity checking

  • Question 130:

    A security analyst is hardening a WiFi infrastructure.

    The primary requirements are the following:

    The infrastructure must allow staff to authenticate using the most secure method.

    The infrastructure must allow guests to use an "open" WiFi network that logs valid email addresses before granting access to the Internet.

    Given these requirements, which of the following statements BEST represents what the analyst should recommend and configure?

    A. Configure a captive portal for guests and WPS for staff.

    B. Configure a captive portal for staff and WPA for guests.

    C. Configure a captive portal for staff and WEP for guests.

    D. Configure a captive portal for guest and WPA2 Enterprise for staff

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.