1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 711:

    A new hire wants to use a personally owned phone to access company resources. The new hire expresses concern about what happens to the data on the phone when they leave the company. Which of the following portions of the company's mobile device management configuration would allow the company data to be removed from the device without touching the new hire's data?

    A. Asset control
    B. Device access control
    C. Storage lock out
    D. Storage segmentation

  • Question 712:

    An analysis of a threat actor, which has been active for several years, reveals the threat actor has high levels of funding, motivation, and sophistication. Which of the following types of threat actors does this BEST describe?

    A. Advanced persistent threat
    B. Hacktivist
    C. Organized crime
    D. Insider

  • Question 713:

    An administrator needs to protect rive websites with SSL certificates Three of the websites have different domain names, and two of the websites share the domain name but have different subdomain prefixes. Which of the following SSL certificates should the administrator purchase to protect all the websites and be able to administer them easily at a later time?

    A. One SAN certificate
    B. One Unified Communications Certificate and one wildcard certificate
    C. One wildcard certificate and two standard certificates
    D. Five standard certificates

  • Question 714:

    A penetration tester has successfully accessed a web server using an exploit in the user-agent string for Apache Struts. The tester then brute forces a credential that provides access to the back-end database server in a different subnet. This is an example of:

    A. persistence
    B. pivoting
    C. escalation of privilege
    D. a remote access Trojan

  • Question 715:

    Which of the following is the appropriate network structure used to protect servers and services that must be provided to external clients without completely eliminating access for internal users?

    A. NAC
    B. VLAN
    C. DMZ
    D. Subnet

  • Question 716:

    Given the output:

    Which of the following account management practices should the security engineer use to mitigate the identified risk?

    A. Implement least privilege.
    B. Eliminate shared accounts.
    C. Eliminate password reuse.
    D. Implement two-factor authentication.

  • Question 717:

    An attacker uses a network sniffer to capture the packets of a transaction that adds $20 to a gift card. The attacker then user a function of the sniffer to push those packets back onto the network again,adding another $20 to the gift card. This can be done many times. Which of the following describes this type of attack?

    A. Integer overflow attack
    B. Smurf attack
    C. Replay attack
    D. Buffer overflow attack
    E. Cross-site scripting attack

  • Question 718:

    A user typically works remotely over the holidays using a web-based VPN to access corporate resources. The user reports getting untrusted host errors and being unable to connect. Which of the following is MOST likely the case?

    A. The certificate has expired
    B. The browser does not support SSL
    C. The user's account is locked out
    D. The VPN software has reached the seat license maximum

  • Question 719:

    A workstation puts out a network request to locate another system. Joe, a hacker on the network, responds before the real system does, and he tricks the workstation into communicating with him. Which of the following BEST describes what occurred?

    A. The hacker used a race condition.
    B. The hacker used a pass-the-hash attack.
    C. The hacker-exploited improper key management.
    D. The hacker exploited weak switch configuration.

  • Question 720:

    An organization allows the use of open-source software as long as users perform a file integrity check on the executables and verify the file against hashes of known malware. A user downloads the following files from an open-source website:

    After submitting the hashes to the malware registry, the user is alerted that 2f40 3221 33ad 8f34 1032 1adc 13ef 51a4 matches a known malware signature. The organization has been running all of the above software with no known issues. Which of the following actions should the user take and why?

    A. Download and run the software but notify the organization's cybersecurity office. The malware registry has a false positive since the software has been running without any issues.
    B. Do not run any of the software and notify the organization's cybersecurity office. The open-source website has been compromised, and none of the software can be trusted.
    C. Download and run only webserver_82.exe and opendatabase_44.exe and notify the organization's cybersecurity office. Legacy versions of the software have been compromised.
    D. Do not run webserver_82.exe and notify the organization's cybersecurity office. The software is malware.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.