1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 151:

    Which of the following are considered to be "something you do"? (Choose two.)

    A. Iris scan
    B. Handwriting
    C. CAC card
    D. Gait
    E. PIN
    F. Fingerprint

  • Question 152:

    A company is performing an analysis of the corporate enterprise network with the intent of identifying any one system, person, function, or service that, when neutralized, will cause or cascade disproportionate damage to the company's revenue, referrals, and reputation.

    Which of the following an element of the BIA that this action is addressing?

    A. Identification of critical systems
    B. Single point of failure
    C. Value assessment
    D. Risk register

  • Question 153:

    A systems administrator needs to configure an SSL remote access VPN according to the following organizational guidelines:

    *

    The VPN must support encryption of header and payload.

    *

    The VPN must route all traffic through the company's gateway. Which of the following should be configured on the VPN concentrator?

    A. Full tunnel
    B. Transport mode
    C. Tunnel mode
    D. IPSec

  • Question 154:

    A root cause analysis reveals that a web application outage was caused by one of the company's developers uploading a newer version of the third-party libraries that were shared among several applications. Which of the following implementations would be BEST to prevent this issue from reoccurring?

    A. CASB
    B. SWG
    C. Containerization
    D. Automated failover

  • Question 155:

    Which of the following is a major difference between XSS attacks and remote code exploits?

    A. XSS attacks use machine language, while remote exploits use interpreted language
    B. XSS attacks target servers, while remote code exploits target clients
    C. Remote code exploits aim to escalate attackers' privileges, while XSS attacks aim to gain access only
    D. Remote code exploits allow writing code at the client side and executing it, while XSS attacks require no code to work

  • Question 156:

    Which of the following attacks can be mitigated by proper data retention policies?

    A. Dumpster diving
    B. Man-in-the-browser
    C. Spear phishing
    D. Watering hole

  • Question 157:

    A computer on a company network was infected with a zero-day exploit after an employee accidently opened an email that contained malicious content. The employee recognized the email as malicious and was attempting to delete it, but accidently opened it. Which of the following should be done to prevent this scenario from occurring again in the future?

    A. Install host-based firewalls on all computers that have an email client installed
    B. Set the email program default to open messages in plain text
    C. Install end-point protection on all computers that access web email
    D. Create new email spam filters to delete all messages from that sender

  • Question 158:

    A security analyst is emailing PII in a spreadsheet file to an audit validator for after-actions related to a security assessment. The analyst must make sure the PII data is protected with the following minimum requirements:

    *

    Ensure confidentiality at rest.

    *

    Ensure the integrity of the original email message.

    Which of the following controls would ensure these data security requirements are carried out?

    A. Encrypt and sign the email using S/MIME.
    B. Encrypt the email and send it using TLS.
    C. Hash the email using SHA-1.
    D. Sign the email using MD5

  • Question 159:

    A malicious system continuously sends an extremely large number of SYN packets to a server. Which of the following BEST describes the resulting effect?

    A. The server will be unable to server clients due to lack of bandwidth
    B. The server's firewall will be unable to effectively filter traffic due to the amount of data transmitted
    C. The server will crash when trying to reassemble all the fragmented packets
    D. The server will exhaust its memory maintaining half-open connections

  • Question 160:

    A penetration tester finds that a company's login credentials for the email client were being sent in clear text. Which of the following should be done to provide encrypted logins to the email server?

    A. Enable IPSec and configure SMTP.
    B. Enable SSH and LDAP credentials.
    C. Enable MIME services and POP3.
    D. Enable an SSL certificate for IMAP services.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.