SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1401:

    A Chief Executive Officer (CEO) is staying at a hotel during a business trip. The hotel's wireless network does not show a lock symbol. Which of the following precautions should the CEO take? (Select TWO).

    A. Change the connection type to WPA2.
    B. Change TKIP to CCMR
    C. Use a VPN.
    D. Tether to a mobile phone.
    E. Create a tunnel connection with EAP-TTLS.

  • Question 1402:

    After a merger between two companies a security analyst has been asked to ensure that the organization's systems are secured against infiltration by any former employees that were terminated during the transition. Which of the following actions are MOST appropriate to harden applications against infiltration by former employees? (Select TWO)

    A. Monitor VPN client access
    B. Reduce failed login out settings
    C. Develop and implement updated access control policies
    D. Review and address invalid login attempts
    E. Increase password complexity requirements
    F. Assess and eliminate inactive accounts

  • Question 1403:

    A newly hired Chief Security Officer (CSO) is reviewing the company's IRP and notices the procedures for zero-day malware attacks are being poorly executed, resulting in the CSIRT failing to address and coordinate malware removal from the system. Which of the following phases would BEST address these shortcomings?

    A. Identification
    B. Lessons learned
    C. Recovery
    D. Preparation
    E. Eradication

  • Question 1404:

    A consumer purchases an exploit from the dark web. The exploit targets the online shopping cart of a popular website, allowing the shopper to modify the price of an item as checkout. Which of the following BEST describes this type of user?

    A. Insider
    B. Script kiddie
    C. Competitor
    D. Hacktivist
    E. APT

  • Question 1405:

    Joe, a salesman, was assigned to a new project that requires him to travel to a client site. While waiting for a flight, Joe, decides to connect to the airport wireless network without connecting to a VPN, and the sends confidential emails to fellow colleagues. A few days later, the company experiences a data breach. Upon investigation, the company learns Joe's emails were intercepted. Which of the following MOST likely caused the data breach?

    A. Policy violation
    B. Social engineering
    C. Insider threat
    D. Zero-day attack

  • Question 1406:

    A senior incident response manager receives a call about some external IPs communicating with internal computers during off hours. Which of the following types of malware is MOST likely causing this issue?

    A. Botnet
    B. Ransomware
    C. Polymorphic malware
    D. Armored virus

  • Question 1407:

    DRAG DROP

    A security administrator is given the security and availability profiles for servers that are being deployed.

    Match each RAID type with the correct configuration and MINIMUM number of drives.

    Review the server profiles and match them with the appropriate RAID type based on integrity, availability, I/O, storage requirements. Instructions:

    1. All drive definitions can be dragged as many times as necessary

    2. Not all placeholders may be filled in the RAID configuration boxes

    3. If parity is required, please select the appropriate number of parity checkboxes

    4. Server profiles may be dragged only once

    Instructions: If at any time you would like to bring back the initial state of the simulation, please select the Reset button. When you have completed the simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.

    Select and Place:

  • Question 1408:

    Which of the following is used to validate the integrity of data?

    A. CBC
    B. Blowfish
    C. MD5
    D. RSA

  • Question 1409:

    An internal intranet site is required to authenticate users and restrict access to content to only those who are authorized to view it. The site administrator previously encountered issues with credential spoofing when using the default NTLM setting and wants to move to a system that will be more resilient to replay attacks. Which of the following should the administrator implement?

    A. NTLMv2
    B. TACACS+
    C. Kerberos
    D. Shibboleth

  • Question 1410:

    An attacker has gained control of several systems on the Internet and is using them to attach a website, causing it to stop responding to legitimate traffic. Which of the following BEST describes the attack?

    A. MITM
    B. DNS poisoning
    C. Buffer overflow
    D. DDoS

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.