1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 631:

    A company exchanges information with a business partner. An annual audit of the business partner is conducted against the SLA in order to verify:

    A. Performance and service delivery metrics

    B. Backups are being performed and tested

    C. Data ownership is being maintained and audited

    D. Risk awareness is being adhered to and enforced

  • Question 632:

    Which of the following is the proper way to quantify the total monetary damage resulting from an exploited vulnerability?

    A. Calculate the ALE

    B. Calculate the ARO

    C. Calculate the MTBF

    D. Calculate the TCO

  • Question 633:

    After a merger, it was determined that several individuals could perform the tasks of a network administrator in the merged organization. Which of the following should have been performed to ensure that employees have proper access?

    A. Time-of-day restrictions

    B. Change management

    C. Periodic auditing of user credentials

    D. User rights and permission review

  • Question 634:

    Which of the following should be used to implement voice encryption?

    A. SSLv3

    B. VDSL

    C. SRTP

    D. VoIP

  • Question 635:

    During an application design, the development team specifics a LDAP module for single sign-on communication with the company's access control database. This is an example of which of the following?

    A. Application control

    B. Data in-transit

    C. Identification

    D. Authentication

  • Question 636:

    The SSID broadcast for a wireless router has been disabled but a network administrator notices that unauthorized users are accessing the wireless network. The administer has determined that attackers are still able to detect the presence of the wireless network despite the fact the SSID has been disabled. Which of the following would further obscure the presence of the wireless network?

    A. Upgrade the encryption to WPA or WPA2

    B. Create a non-zero length SSID for the wireless router

    C. Reroute wireless users to a honeypot

    D. Disable responses to a broadcast probe request

  • Question 637:

    Ann a security analyst is monitoring the IDS console and noticed multiple connections from an internal host to a suspicious call back domain. Which of the following tools would aid her to decipher the network traffic?

    A. Vulnerability Scanner

    B. NMAP

    C. NETSTAT

    D. Packet Analyzer

  • Question 638:

    An administrator is testing the collision resistance of different hashing algorithms. Which of the following is the strongest collision resistance test?

    A. Find two identical messages with different hashes

    B. Find two identical messages with the same hash

    C. Find a common has between two specific messages

    D. Find a common hash between a specific message and a random message

  • Question 639:

    Which of the following best describes the initial processing phase used in mobile device forensics?

    A. The phone should be powered down and the battery removed to preserve the state of data on any internal or removable storage utilized by the mobile device

    B. The removable data storage cards should be processed first to prevent data alteration when examining the mobile device

    C. The mobile device should be examined first, then removable storage and lastly the phone without removable storage should be examined again

    D. The phone and storage cards should be examined as a complete unit after examining the removable storage cards separately.

  • Question 640:

    A penetration testing is preparing for a client engagement in which the tester must provide data that proves and validates the scanning tools' results. Which of the following is the best method for collecting this information?

    A. Set up the scanning system's firewall to permit and log all outbound connections

    B. Use a protocol analyzer to log all pertinent network traffic

    C. Configure network flow data logging on all scanning system

    D. Enable debug level logging on the scanning system and all scanning tools used.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.