1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 941:

    A security analyst wants to verify that a client-server (non-web) application is sending encrypted traffic. Which of the following should the analyst use?

    A. openssl
    B. hping
    C. netcat
    D. tcpdump

  • Question 942:

    Which of the following methods is used by internal security teams to assess the security of internally developed applications?

    A. Active reconnaissance
    B. Pivoting
    C. White-box testing
    D. Persistence

  • Question 943:

    As part of the SDLC, a third party is hired to perform a penetration test. The third party will have access to the source code, integration tests, and network diagrams. Which of the following BEST describes the assessment being performed?

    A. Black box
    B. Regression
    C. White box
    D. Fuzzing

  • Question 944:

    Which of the following can be provided to an AAA system for the identification phase?

    A. Username
    B. Permissions
    C. One-time token
    D. Private certificate

  • Question 945:

    A technician needs lo document which application versions are listening on open ports. Which of the following is MOST likely to return the information the technician needs?

    A. Banner grabbing
    B. Steganography tools
    C. Protocol analyzer
    D. Wireless scanner

  • Question 946:

    A law firm wants to protect its customers' individual information, which is stored at a remote facility, from inadvertently being compromised through a violation of the security objectives. Which of the following BEST describes the customer information that is being stored at this facility?

    A. Trade secrets
    B. Personal health information
    C. Proprietary
    D. Confidential

  • Question 947:

    Which of the following refers to the term used to restore a system to its operational state?

    A. MTBF
    B. MTTR
    C. RTO
    D. RPO

  • Question 948:

    Which of the following use the SSH protocol?

    A. Stelnet
    B. SCP
    C. SNMP
    D. FTPS
    E. SSL
    F. SFTP

  • Question 949:

    While reviewing the monthly internet usage it is noted that there is a large spike in traffic classified as "unknown" and does not appear to be within the bounds of the organizations Acceptable Use Policy. Which of the following tool or technology would work BEST for obtaining more information on this traffic?

    A. Firewall logs
    B. IDS logs
    C. Increased spam filtering
    D. Protocol analyzer

  • Question 950:

    A security analyst is hardening an authentication server. One of the primary requirements is to ensure there is mutual authentication and delegation. Given these requirements, which of the following technologies should the analyst recommend and configure?

    A. LDAP services
    B. Kerberos services
    C. NTLM services
    D. CHAP services

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.