1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 1341:

    A company is terminating an employee for misbehavior. Which of the following steps is MOST important in the process of disengagement from this employee?

    A. Obtain a list of passwords used by the employee.

    B. Generate a report on outstanding projects the employee handled.

    C. Have the employee surrender company identification.

    D. Have the employee sign an NDA before departing.

  • Question 1342:

    Ann. An employee in the payroll department, has contacted the help desk citing multiple issues with her device, including: Slow performance Word documents, PDFs, and images no longer opening A pop-up Ann states the issues began after she opened an invoice that a vendor emailed to her. Upon opening the invoice, she had to click several security warnings to view it in her word processor.

    With which of the following is the device MOST likely infected?

    A. Spyware

    B. Crypto-malware

    C. Rootkit

    D. Backdoor

  • Question 1343:

    When configuring settings in a mandatory access control environment, which of the following specifies the subjects that can access specific data objects?

    A. Owner

    B. System

    C. Administrator

    D. User

  • Question 1344:

    A high-security defense installation recently begun utilizing large guard dogs that bark very loudly and excitedly at the slightest provocation. Which of the following types of controls does this BEST describe?

    A. Deterrent

    B. Preventive

    C. Detective

    D. Compensating

  • Question 1345:

    A company's user lockout policy is enabled after five unsuccessful login attempts. The help desk notices a user is repeatedly locked out over the course of a workweek. Upon contacting the user, the help desk discovers the user is on vacation and does not have network access.

    Which of the following types of attacks are MOST likely occurring? (Select two.)

    A. Replay

    B. Rainbow tables

    C. Brute force

    D. Pass the hash

    E. Dictionary

  • Question 1346:

    A company has a data classification system with definitions for "Private" and "Public". The company's security policy outlines how data should be protected based on type. The company recently added the data type "Proprietary". Which of the following is the MOST likely reason the company added this data type?

    A. Reduced cost

    B. More searchable data

    C. Better data classification

    D. Expanded authority of the privacy officer

  • Question 1347:

    When connected to a secure WAP, which of the following encryption technologies is MOST likely to be configured when connecting to WPA2-PSK?

    A. DES

    B. AES

    C. MD5

    D. WEP

  • Question 1348:

    A network administrator at a small office wants to simplify the configuration of mobile clients connecting to an encrypted wireless network.

    Which of the following should be implemented in the administrator does not want to provide the wireless password or he certificate to the employees?

    A. WPS

    B. 802.1x

    C. WPA2-PSK

    D. TKIP

  • Question 1349:

    A security administrator has found a hash in the environment known to belong to malware. The administrator then finds this file to be in in the preupdate area of the OS, which indicates it was pushed from the central patch system.

    File: winx86_adobe_flash_upgrade.exe Hash: 99ac28bede43ab869b853ba62c4ea243 The administrator pulls a report from the patch management system with the following output:

    Given the above outputs, which of the following MOST likely happened?

    A. The file was corrupted after it left the patch system.

    B. The file was infected when the patch manager downloaded it.

    C. The file was not approved in the application whitelist system.

    D. The file was embedded with a logic bomb to evade detection.

  • Question 1350:

    An attacker compromises a public CA and issues unauthorized X.509 certificates for Company.com. In the future, Company.com wants to mitigate the impact of similar incidents. Which of the following would assist Company.com with its goal?

    A. Certificate pinning

    B. Certificate stapling

    C. Certificate chaining

    D. Certificate with extended validation

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.