1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 261:

    A technician needs to document which application versions are listening on open ports. Which of the following is MOST likely to return the information the technician needs?

    A. Banner grabbing
    B. Steganography tools
    C. Protocol analyzer
    D. Wireless scanner

  • Question 262:

    A network administrator has been alerted that web pages are experiencing long load times. After determining it is not a routing or DNS issue, the administrator logs in to the router, runs a command, and receives the following output:

    Which of the following is the router experiencing?

    A. DDoS attack
    B. Memory leak
    C. Buffer overflow
    D. Resource exhaustion

  • Question 263:

    A security engineer at a manufacturing company is implementing a third-party cloud application. Rather than creating users manually in the application, the engineer decides to use the SAML protocol. Which of the following is being used for this implementation?

    A. The manufacturing company is the service provider, and the cloud company is the identity provider.
    B. The manufacturing company is the authorization provider, and the cloud company is the service provider.
    C. The manufacturing company is the identity provider, and the cloud company is the OAuth provider.
    D. The manufacturing company is the identity provider, and the cloud company is the service provider.
    E. The manufacturing company is the service provider, and the cloud company is the authorization provider.

  • Question 264:

    Which of the following locations contain the MOST volatile data?

    A. SSD
    B. Paging file
    C. RAM
    D. Cache memory

  • Question 265:

    An authorized user is conducting a penetration scan of a system for an organization. The tester has a set of network diagrams. Source code, version numbers of applications. and other information about the system. Including hostnames and network addresses. Which of the following BEST describes this type of penetration test?

    A. Gray-box testing
    B. Black-boxtestlng
    C. White-box testing
    D. Blue team exercise
    E. Red team exercise

  • Question 266:

    A department head at a university resigned on the first day of the spring semester. It was subsequently determined that the department head deleted numerous files and directories from the server-based home directory while the campus was closed. Which of the following policies or procedures could have prevented this from occurring?

    A. Time-of-day restrictions
    B. Permission auditing and review
    C. Offboarding
    D. Account expiration

  • Question 267:

    Which of the following would be considered multifactor authentication?

    A. Hardware token and smart card
    B. Voice recognition and retina scan
    C. Strong password and fingerprint
    D. PIN and security Question,s

  • Question 268:

    A security technician would like to obscure sensitive data within a file so that it can be transferred without causing suspicion. Which of the following technologies would BEST be suited to accomplish this?

    A. Transport Encryption
    B. Stream Encryption
    C. Digital Signature
    D. Steganography

  • Question 269:

    A security consultant is analyzing data from a recent compromise. The following data points are documented:

    1.

    Access to data on share drives and certain networked hosts was lost after an employee logged in to an interactive session as a privileged user.

    2.

    The data was unreadable by any known commercial software.

    3.

    The issue spread through the enterprise via SMB only when certain users accessed data.

    4.

    Removal instructions were not available from any major antivirus vendor. Which of the following types of malware is this an example of?

    A. RAT
    B. Ransomware
    C. Backdoor
    D. Keylogger
    E. Worm

  • Question 270:

    While investigating a virus infection, a security analyst discovered the following on an employee laptop: Multiple folders containing a large number of newly released movies and music files Proprietary company data A large amount of PHI data Unapproved FTP software Documents that appear to belong to a competitor Which of the following should the analyst do FIRST?

    A. Contact the legal and compliance department for guidance
    B. Delete the files, remove the FTP software, and notify management
    C. Back up the files and return the device to the user
    D. Wipe and reimage the device

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.