1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 981:

    Which of the following can occur when a scanning tool cannot authenticate to a server and has to rely on limited information obtained from service banners?

    A. False positive
    B. Passive reconnaissance
    C. Access violation
    D. Privilege escalation

  • Question 982:

    An information security specialist is reviewing the following output from a Linux server.

    Based on the above information, which of the following types of malware was installed on the server?

    A. Logic bomb
    B. Trojan
    C. Backdoor
    D. Ransomware
    E. Rootkit

  • Question 983:

    Which of the following is the BEST way for home users to mitigate vulnerabilities associated with IoT devices on their home networks?

    A. Power off the devices when they are not in use,
    B. Prevent IoT devices from contacting the Internet directly.
    C. Apply firmware and software updates upon availability.
    D. Deploy a bastion host on the home network.

  • Question 984:

    Which of the following BEST explains the reason why a server administrator would place a document named password.txt on the desktop of an administrator account on a server?

    A. The document is a honeyfile and is meant to attract the attention of a cyberintruder.
    B. The document is a backup file if the system needs to be recovered
    C. The document is a standard file that the OS needs to verify the login credentials.
    D. The document is a keylogger that stores all keystrokes should the account be compromised.

  • Question 985:

    Which of the following is MOST likely the security impact of continuing to operate end-of-life systems?

    A. Higher total cost of ownership due to support costs
    B. Denial of service due to patch availability
    C. Lack of vendor support for decommissioning
    D. Support for legacy protocols

  • Question 986:

    Joe, an employee, wants to show his colleagues how much he knows about smartphones. Joe demonstrates a free movie application that he installed from a third party on his corporate smartphone. Joe's colleagues were unable to find the application in the app stores.

    Which of the following allowed Joe to install the application? (Select two.)

    A. Near-field communication.
    B. Rooting/jailbreaking
    C. Ad-hoc connections
    D. Tethering
    E. Sideloading

  • Question 987:

    An application team is performing a load-balancing test for a critical application during off-hours and has requested access to the load balancer to review which servers are up without having the administrator on call. The security analyst is hesitant to give the application team full access due to other critical applications running on the load balancer.

    Which of the following is the BEST solution for security analyst to process the request?

    A. Give the application team administrator access during off-hours.
    B. Disable other critical applications before granting the team access.
    C. Give the application team read-only access.
    D. Share the account with the application team.

  • Question 988:

    While checking logs, a security engineer notices a number of end users suddenly downloading files with the .tar.gz extension. Closer examination of the files reveals they are PE32 files. The end users state they did not initiate any of the downloads. Further investigation reveals the end users all clicked on an external email containing an infected MHT file with an href link a week prior. Which of the following is MOST likely occurring?

    A. A RAT was installed and is transferring additional exploit tools.
    B. The workstations are beaconing to a command-and-control server.
    C. A logic bomb was executed and is responsible for the data transfers.
    D. A fireless virus is spreading in the local network environment.

  • Question 989:

    A financial analyst is expecting an email containing sensitive information from a client. When the email arrives, the analyst receives an error and is unable to open the encrypted message. Which of the following is the MOST likely cause of the issue?

    A. The S/MIME plug-in is not enabled
    B. The SSL certificate has expired
    C. Secure IMAP was not implemented
    D. POP3S is not supported

  • Question 990:

    A security analyst receives an alert from a WAF with the following payload: var data= "" ++ <../../../../../../etc/passwd>"

    Which of the following types of attacks is this?

    A. Cross-site request forgery
    B. Buffer overflow
    C. SQL injection
    D. JavaScript data insertion
    E. Firewall evasion script

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.