1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 801:

    A security administrator suspects that data on a server has been exhilarated as a result of un- authorized remote access. Which of the following would assist the administrator in con-firming the suspicions? (Select TWO)

    A. Networking access control
    B. DLP alerts
    C. Log analysis
    D. File integrity monitoring
    E. Host firewall rules

  • Question 802:

    An organization is trying to decide which type of access control is most appropriate for the network. The current access control approach is too complex and requires significant overhead. Management would like to simplify the access control and provide user with the ability to determine what permissions should be applied to files, document, and directories. The access control method that BEST satisfies these objectives is:

    A. Rule-based access control
    B. Role-based access control
    C. Mandatory access control
    D. Discretionary access control

  • Question 803:

    When connected to a secure WAP, which of the following encryption technologies is MOST likely to be configured when connecting to WPA2-PSK?

    A. DES
    B. AES
    C. MD5
    D. WEP

  • Question 804:

    Two users need to securely share encrypted files via email. Company policy prohibits users from sharing credentials or exchanging encryption keys. Which of the following can be implemented to enable users to share encrypted data while abiding by company policies?

    A. Key escrow
    B. Digital signatures
    C. PKI
    D. Hashing

  • Question 805:

    Which of the following attacks is used to capture the WPA2 handshake?

    A. Replay
    B. IV
    C. Evil twin
    D. Disassociation

  • Question 806:

    A security engineer is faced with competing requirements from the networking group and database administrators. The database administrators would like ten application servers on the same subnet for ease of administration, whereas the networking group would like to segment all applications from one another. Which of the following should the security administrator do to rectify this issue?

    A. Recommend performing a security assessment on each application, and only segment the applications with the most vulnerability
    B. Recommend classifying each application into like security groups and segmenting the groups from one another
    C. Recommend segmenting each application, as it is the most secure approach
    D. Recommend that only applications with minimal security features should be segmented to protect them

  • Question 807:

    An organization has implemented an IPSec VPN access for remote users. Which of the following IPSec modes would be the MOST secure for this organization to implement?

    A. Tunnel mode
    B. Transport mode
    C. AH-only mode
    D. ESP-only mode

  • Question 808:

    A security analyst runs a monthly file integrity check on the main web server. When analyzing the logs, the analyst observed the following entry:

    No OS patches were applied to this server during this period. Considering the log output, which of the following is the BEST conclusion?

    A. The cmd.exe was executed on the scanned server between the two dates. An incident ticket should be created
    B. The iexplore.exe was executed on the scanned server between the two dates. An incident ticket should be created.
    C. The cmd.exe was updated on the scanned server. An incident ticket should be created
    D. The iexplore.exe was updated on the scanned server. An incident ticket should be created.

  • Question 809:

    An application developer has neglected to include input validation checks in the design of the company's new web application. An employee discovers that repeatedly submitting large amounts of data, including custom code, to an application will allow the execution of the custom code at the administrator level. Which of the following BEST identifies this application attack?

    A. Cross-site scripting
    B. Clickjacking
    C. Buffer overflow
    D. Replay

  • Question 810:

    Which of the following best describes routine in which semicolons, dashes, quotes, and commas are removed from a string?

    A. Error handling to protect against program exploitation
    B. Exception handling to protect against XSRF attacks.
    C. Input validation to protect against SQL injection.
    D. Padding to protect against string buffer overflows.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.