1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+ Certification Exam

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+ Certification Exam
  • Certification
    :CompTIA Security+
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Security+ SY0-501 Questions & Answers

  • Question 21:

    A security administrator wants to determine if a company's web servers have the latest operating system and application patches installed. Which of the following types of vulnerability scans should be conducted?

    A. Non-credentialed

    B. Passive

    C. Port

    D. Credentialed

    E. Red team

    F. Active

  • Question 22:

    Ann, a security analyst, wants to implement a secure exchange of email. Which of the following is the BEST option for Ann to implement?

    A. PGP

    B. HTTPS

    C. WPA

    D. TLS

  • Question 23:

    After a security assessment was performed on the enterprise network, it was discovered that:

    Configuration changes have been made by users without the consent of IT. Network congestion has increased due to the use of social media. Users are accessing file folders and network shares that are beyond the scope of their need to

    know. Which of the following BEST describe the vulnerabilities that exist in this environment? (Choose two.)

    A. Poorly trained users

    B. Misconfigured WAP settings

    C. Undocumented assets

    D. Improperly configured accounts

    E. Vulnerable business processes

  • Question 24:

    A penetration testing team deploys a specifically crafted payload to a web server, which results in opening a new session as the web server daemon. This session has full read/write access to the file system and the admin console. Which of the following BEST describes the attack?

    A. Domain hijacking

    B. Injection

    C. Buffer overflow

    D. Privilege escalation

  • Question 25:

    A corporation is concerned that, if a mobile device is lost, any sensitive information on the device could be accessed by third parties. Which of the following would BEST prevent this from happening?

    A. Initiate remote wiping on lost mobile devices

    B. Use FDE and require PINs on all mobile devices

    C. Use geolocation to track lost devices

    D. Require biometric logins on all mobile devices

  • Question 26:

    A security administrator has replaced the firewall and notices a number of dropped connections. After looking at the data the security administrator sees the following information that was flagged as a possible issue:

    "SELECT * FROM" and `1'='1'

    Which of the following can the security administrator determine from this?

    A. An SQL injection attack is being attempted

    B. Legitimate connections are being dropped

    C. A network scan is being done on the system

    D. An XSS attack is being attempted

  • Question 27:

    An employee in the finance department receives an email, which appears to come from the Chief Financial Officer (CFO), instructing the employee to immediately wire a large sum of money to a vendor. Which of the following BEST describes the principles of social engineering used? (Choose two.)

    A. Familiarity

    B. Scarcity

    C. Urgency

    D. Authority

    E. Consensus

  • Question 28:

    A security analyst is reviewing the password policy for a service account that is used for a critical network service. The password policy for this account is as follows: Which of the following adjustments would be the MOST appropriate for the service account?

    A. Disable account lockouts

    B. Set the maximum password age to 15 days

    C. Set the minimum password age to seven days

    D. Increase password length to 18 characters

  • Question 29:

    A member of the human resources department is searching for candidate resumes and encounters the following error message when attempting to access popular job search websites:

    Which of the following would resolve this issue without compromising the company's security policies?

    A. Renew the DNS settings and IP address on the employee's computer

    B. Add the employee to a less restrictive group on the content filter

    C. Remove the proxy settings from the employee's web browser

    D. Create an exception for the job search sites in the host-based firewall on the employee's computer

  • Question 30:

    An organization is providing employees on the shop floor with computers that will log their time based on when they sign on and off the network. Which of the following account types should the employees receive?

    A. Shared account

    B. Privileged account

    C. User account

    D. Service account

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.