CompTIA SY0-501 Online Practice Questions and Exam Preparation

CompTIA SY0-501 Online Questions & Answers

• Question 301:

  Ann, a customer, is reporting that several important files are missing from her workstation. She recently received communication from an unknown party who is requesting funds to restore the files. Which of the following attacks has occurred?

  A. Ransomware
  B. Keylogger
  C. Buffer overflow
  D. Rootkit
  A. Ransomware

• Question 302:

  A contracting company recently completed its period of performance on a government contract and would like to destroy all information associated with contract performance. Which of the following is the best NEXT step for the company to take?

  A. Consult data disposition policies in the contract.
  B. Use a pulper or pulverizer for data destruction.
  C. Retain the data for a period no more than one year.
  D. Burn hard copies containing PII or PHI
  A. Consult data disposition policies in the contract.

• Question 303:

  A security administrator is performing a risk assessment on a legacy WAP with a WEP-enabled wireless infrastructure. Which of the following should be implemented to harden the infrastructure without upgrading the WAP?

  A. Implement WPA and TKIP
  B. Implement WPS and an eight-digit pin
  C. Implement WEP and RC4
  D. Implement WPA2 Enterprise
  D. Implement WPA2 Enterprise

• Question 304:

  An auditor is reviewing the following output from a password-cracking tool:

  

  Which of the following methods did the auditor MOST likely use?

  A. Hybrid
  B. Dictionary
  C. Brute force
  D. Rainbow table
  A. Hybrid

• Question 305:

  Which of the following are the MOST likely vectors for the unauthorized or unintentional inclusion of vulnerable code in a software company's final software releases? (Select TWO)

  A. Unsecure protocols
  B. Use of penetration-testing utilities
  C. Weak passwords
  D. included third-party libraries
  E. Vendors/supply chain
  F. Outdated anti-malware software
  A. Unsecure protocols
  C. Weak passwords

• Question 306:

  An analyst receives an alert from the SIEM showing an IP address that does not belong to the assigned network can be seen sending packets to the wrong gateway. Which of the following network devices is misconfigured and which of the following should be done to remediate the issue?

  A. Firewall; implement an ACL on the interface
  B. Router; place the correct subnet on the interface
  C. Switch; modify the access port to trunk port
  D. Proxy; add the correct transparent interface
  B. Router; place the correct subnet on the interface

• Question 307:

  A security analyst identified an SQL injection attack. Which of the following is the FIRST step in remediating the vulnerability?

  A. Implement stored procedures.
  B. Implement proper error handling.
  C. Implement input validations.
  D. Implement a WAF.
  C. Implement input validations.

• Question 308:

  User from two organizations, each with its own PKI, need to begin working together on a joint project. Which of the following would allow the users of the separate PKIs to work together without connection errors?

  A. Trust model
  B. Stapling
  C. Intermediate CA
  D. Key escrow
  A. Trust model

• Question 309:

  A public relations team will be taking a group of guests on a tour through the facility of a large e- commerce company. The day before the tour, the company sends out an email to employees to ensure all whiteboards are cleaned and all desks are cleared. The company is MOST likely trying to protect against.

  A. loss of proprietary information
  B. damage to the company's reputation
  C. social engineering
  D. credential exposure
  C. social engineering

• Question 310:

  A vulnerability scan is being conducted against a desktop system. The scan is looking for files, versions, and registry values known to be associated with system vulnerabilities. Which of the following BEST describes the type of scan being performed?

  A. Non-intrusive
  B. Authenticated
  C. Credentialed
  D. Active
  C. Credentialed