1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 131:

    An organization would like to set up a more robust network access system. The network administrator suggests the organization move to a certificate-based authentication setup in which a client-side certificate is used while connecting. Which of the following EAP types should be used to meet these criteria?

    A. EAP-TLS
    B. EAP-FAST
    C. EAP-MD5
    D. EAP-TTLS

  • Question 132:

    To further secure a company's email system, an administrator is adding public keys to DNS records in the company's domain. Which of the following is being used?

    A. PFS
    B. SPF
    C. DMARC
    D. DNSSEC

  • Question 133:

    Which of the following attackers generally possesses minimal technical knowledge to perform advanced attacks and uses widely available tools as well as publicly available information?

    A. Hacktivist
    B. White hat hacker
    C. Script kiddle
    D. Penetration tester

  • Question 134:

    A network administrator is implementing multifactor authentication for employees who travel and use company devices remotely by using the company VPN. Which of the following would provide the required level of authentication?

    A. 802.1X and OTP
    B. Fingerprint scanner and voice recognition
    C. RBAC and PIN
    D. Username/Password and TOTP

  • Question 135:

    Multiple employees receive an email with a malicious attachment that begins to encrypt their hard drives and mapped shares on their devices when it is opened. The network and security teams perform the following actions:

    Shut down all network shares.

    Run an email search identifying all employees who received the malicious message.

    Reimage all devices belonging to users who opened the attachment. Next, the teams want to re-enable the network shares.

    Which of the following BEST describes this phase of the incident response process?

    A. Eradication
    B. Containment
    C. Recovery
    D. Lessons learned

  • Question 136:

    The president of a company that specializes in military contracts receives a request for an interview. During the interview, the reporter seems more interested in discussing the president's family life and personal history than the details of a recent company success. Which of the following security concerns is this MOST likely an example of?

    A. Insider threat
    B. Social engineering
    C. Passive reconnaissance
    D. Phishing

  • Question 137:

    A technician needs to implement a system which will properly authenticate users by their username and password only when the users are logging in from a computer in the office building. Any attempt to authenticate from a location other than the office building should be rejected. Which of the following MUST the technician implement?

    A. Dual factor authentication
    B. Transitive authentication
    C. Single factor authentication
    D. Biometric authentication

  • Question 138:

    Which of the following is the LEAST secure hashing algorithm?

    A. SHA1
    B. RIPEMD
    C. MD5
    D. DES

  • Question 139:

    A security analyst receives the following output:

    Which of the following MOST likely occurred to produce this output?

    A. The host-based firewall prevented an attack from a Trojan horse
    B. USB-OTG prevented a file from being uploaded to a mobile device
    C. The host DLP prevented a file from being moved off a computer
    D. The firewall prevented an incoming malware-infected file

  • Question 140:

    A systems administrator has installed a new UTM that is capable of inspecting SSL/TLS traffic for malicious payloads. All inbound network traffic coming from the Internet and terminating on the company's secure web servers must be inspected. Which of the following configurations would BEST support this requirement?

    A. The web servers' CA full certificate chain must be installed on the UTM.
    B. The UTM certificate pair must be installed on the web servers.
    C. The web servers' private certificate must be installed on the UTM.
    D. The UTM and web servers must use the same certificate authority.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.