1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 681:

    A user receives an email from ISP indicating malicious traffic coming from the user's home network is detected. The traffic appears to be Linux-based, and it is targeting a website that was recently featured on the news as being taken offline

    by an Internet attack. The only Linux device on the network is a home surveillance camera system.

    Which of the following BEST describes what is happening?

    A. The camera system is infected with a bot.
    B. The camera system is infected with a RAT.
    C. The camera system is infected with a Trojan.
    D. The camera system is infected with a backdoor.

  • Question 682:

    A company recently experienced a security breach. The security staff determined that the intrusion was due to an out-of-date proprietary software program running on a non-compliant server. The server was imaged and copied onto a hardened VM, with the previous connections re-established. Which of the following is the NEXT step in the incident response process?

    A. Recovery
    B. Eradication
    C. Lessons learned
    D. Containment
    E. Identification

  • Question 683:

    A Chief Information Security Officer (CISO) is concerned about the organization's ability to continue business operations in the event of a prolonged DDoS attack on its local datacenter that consumes server resources. Which of the following will the CISO MOST likely recommend to mitigate this risk?

    A. Upgrade the bandwidth available into the datacenter.
    B. Migrate to a geographically dispersed cloud datacenter.
    C. Implement a hot-site failover location.
    D. Switch to a complete SaaS offering to customers.
    E. Implement a challenge response test on all end-user queries.

  • Question 684:

    A web developer improves client access to the company's REST API. Authentication needs to be tokenized but not expose the client's password. Which of the following methods would BEST meet the developer's requirements?

    A. SAML
    B. LDAP
    C. OAuth
    D. Shibboleth

  • Question 685:

    After reports of slow internet connectivity, a technician reviews the following logs from a server's host-based firewall:

    Which of the following can the technician conclude after reviewing the above logs?

    A. The server is under a DDoS attack from multiple geographic locations.
    B. The server is compromised, and is attacking multiple hosts on the Internet.
    C. The server is under an IP spoofing resource exhaustion attack.
    D. The server is unable to complete the TCP three-way handshake and send the last ACK.

  • Question 686:

    During a routine vulnerability assessment, the following command was successful: echo "vrfy 'perl -e 'print "hi" x 500 ' ' " | nc www.company.com 25

    Which of the following vulnerabilities is being exploited?

    A. Buffer overflow directed at a specific host MTA
    B. SQL injection directed at a web server
    C. Cross-site scripting directed at www.company.com
    D. Race condition in a UNIX shell script

  • Question 687:

    A member of the human resources department received the following email message after sending an email containing benefit and tax information to a candidate:

    "Your message has been quarantined for the following policy violation: external_potential_Pll. Please contact the IT security administrator for further details." Which of the following BEST describes why this message was received?

    A. The DLP system flagged the message
    B. The mail gateway prevented the message from being sent to personal email addresses.
    C. The company firewall blocked the recipient's IP address.
    D. The file integrity check failed for the attached files.

  • Question 688:

    Which of the following is a security consideration for IoT devices?

    A. IoT devices have built-in accounts that users rarely access.
    B. IoT devices have less processing capabilities.
    C. IoT devices are physically segmented from each other.
    D. IoT devices have purpose-built applications.

  • Question 689:

    An auditor has identified an access control system that can incorrectly accept an access attempt from an unauthorized user. Which of the following authentication systems has the auditor reviewed?

    A. Password-based
    B. Biometric-based
    C. Location-based
    D. Certificate-based

  • Question 690:

    A security analyst is reviewing the following packet capture of an attack directed at a company's server located in the DMZ:

    Which of the following ACLs provides the BEST protection against the above attack and any further attacks from the same IP, while minimizing service interruption?

    A. DENY TCO From ANY to 172.31.64.4
    B. Deny UDP from 192.168.1.0/24 to 172.31.67.0/24
    C. Deny IP from 192.168.1.10/32 to 0.0.0.0/0
    D. Deny TCP from 192.168.1.10 to 172.31.67.4

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.