1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 391:

    An IT manager is estimating the mobile device budget for the upcoming year. Over the last five years, the number of devices that were replaced due to loss, damage, or theft steadily increased by 10%. Which of the following would BEST describe the estimated number of devices to be replaced next year?

    A. ALE
    B. ARO
    C. RPO
    D. SLE

  • Question 392:

    A network administrator is brute forcing accounts through a web interface. Which of the following would provide the BEST defense from an account password being discovered?

    A. Password history
    B. Account lockout
    C. Account expiration
    D. Password complexity

  • Question 393:

    A system administrator needs to implement 802.1x whereby when a user logs into the network, the authentication server communicates to the network switch and assigns the user to the proper VLAN. Which of the following protocols should be used?

    A. RADIUS
    B. Kerberos
    C. LDAP
    D. MSCHAP

  • Question 394:

    A Chief Information Security Officer (CISO) asks the security architect to design a method for contractors to access the company's internal wiki, corporate directory, and email services securely without allowing access to systems beyond the scope of their project. Which of the following methods would BEST fit the needs of the CISO?

    A. VPN
    B. PaaS
    C. laaS
    D. VDI

  • Question 395:

    An analyst is reviewing the following web-server log after receiving an alert from the DLP system about multiple PII records being transmitted in cleartext:

    Which of the following IP addresses in MOST likely involved in the data leakage attempt?

    A. 10.43.40.112
    B. 10.45.10.200
    C. 172.44.33.10
    D. 192.4.43.122

  • Question 396:

    Employees receive a benefits enrollment email from the company's human resources department at the beginning of each year. Several users have reported receiving the email but are unable to log in to the website with their usernames and passwords. Users who enter the URL for the human resources website can log in without issue. Which of the following security issues is occurring?

    A. Several users' computers were not configured to use HTTPS to access the website
    B. The human resources servers received a large number of requests, resulting in a DoS
    C. The internal DNS server was compromised, directing users to a hacker's server
    D. Users received a social engineering email and were directed to an external website

  • Question 397:

    An organization has air gapped a critical system.

    Which of the following BEST describes the type of attacks that are prevented by this security measure?

    A. Attacks from another local network segment
    B. Attacks exploiting USB drives and removable media
    C. Attacks that spy on leaked emanations or signals
    D. Attacks that involve physical intrusion or theft

  • Question 398:

    Ann, a security administrator, has been instructed to perform fuzz-based testing on the company's applications. Which of the following best describes what she will do?

    A. Enter random or invalid data into the application in an attempt to cause it to fault
    B. Work with the developers to eliminate horizontal privilege escalation opportunities
    C. Test the applications for the existence of built-in- back doors left by the developers
    D. Hash the application to verify it won't cause a false positive on the HIPS

  • Question 399:

    A security analyst wishes to scan the network to view potentially vulnerable systems the way an attacker would. Which of the following would BEST enable the analyst to complete the objective?

    A. Perform a non-credentialed scan.
    B. Conduct an intrusive scan.
    C. Attempt escalation of privilege
    D. Execute a credentialed scan.

  • Question 400:

    A datacenter manager has been asked to prioritize critical system recovery priorities. Which of the following is the MOST critical for immediate recovery?

    A. Communications software
    B. Operating system software
    C. Weekly summary reports to management
    D. Financial and production software

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.