CompTIA SY0-601 Online Practice
Questions and Exam Preparation
SY0-601 Exam Details
Exam Code
:SY0-601
Exam Name
:CompTIA Security+
Certification
:CompTIA Certifications
Vendor
:CompTIA
Total Questions
:1334 Q&As
Last Updated
:Jul 15, 2026
CompTIA SY0-601 Online Questions &
Answers
Question 1321:
A systems administrator is redesigning how devices will perform network authentication. The following requirements need to be met:
? An existing internal certificate must be used.
? Wired and wireless networks must be supported.
? Any unapproved device should be isolated in a quarantine subnet.
? Approved devices should be updated before accessing resources.
Which of the following would best meet the requirements?
A. 802.1X B. EAP C. RADIUS D. WPA2
A. 802.1X
Question 1322:
Several employees have noticed other bystanders can clearly observe a terminal where passcodes are being entered, Which of the following can be eliminated with the use of a privacy screen?
A. Shoulder surfing B. Spear phishing C. Impersonation attack D. Card cloning
A. Shoulder surfing Shoulder surfing is when people see what you are doing, Eg inserting a pin into a terminal, by setting up a privacy screen, this is eliminated.
Question 1323:
A company is utilizing an offshore team to help support the finance department. The company wants to keep the data secure by keeping it on a company device but does not want to provide equipment to the offshore team. Which of the following should the company implement to meet this requirement?
A. VDI B. MDM C. VPN D. VPC
A. VDI
Question 1324:
A security analyst is reviewing a penetration-testing report from a third-party contractor. The penetration testers used the organization's new API to bypass a driver to perform privilege escalation on the organization's web servers. Upon looking at the API, the security analyst realizes the particular API call was to a legacy system running an outdated OS.
Which of the following is the MOST likely attack type?
A. Request forgery B. Session replay C. DLL injection D. Shimming
D. Shimming Explanation Explanation/Reference:D - Shimming. For the simple reason that a "driver" was mentioned. https://youtu.be/yQb2A-KoA6Y
Question 1325:
A network administrator needs to build out a new datacenter, with a focus on resiliency and uptime. Which of the following would BEST meet this objective? (Choose two.)
A. Dual power supply B. Off-site backups C. Automatic OS upgrades D. NIC teaming E. Scheduled penetration testing F. Network-attached storage
A. Dual power supply B. Off-site backups Explanation Explanation/Reference:Dual PS keeps the servers up / a DRS will conform to the question of resiliency: Site Resiliency Resiliency of a site should include consideration of sites used to continue operations. Site resiliency considerations can be connected to the idea of restoration sites and their availability. Related to the location of backup storage is where the restoration services will be located. If the organization has suffered physical damage to its facility, having offsite data storage is only part of the solution. This data will need to be processed somewhere, which means that computing facilities similar to those used in normal operations are required. These sites are referred to as recovery sites. The recovery problem can be approached in a number of ways, including hot sites, warm sites, and cold sites. https://searchdatacenter.techtarget.com/definition/resiliency
Question 1326:
A network administrator at a large organization is reviewing methods to improve the security of the wired LAN. Any security improvement must be centrally managed and allow corporate-owned devices to have access to the intranet but limit others to Internet access only. Which of the following should the administrator recommend?
A. 802.1X utilizing the current PKI infrastructure B. SSO to authenticate corporate users C. MAC address filtering with ACLs on the router D. PAM for users account management
A. 802.1X utilizing the current PKI infrastructure It's possible to combine an 802.1x server with other network elements such as a virtual local area network (VLAN). For example, imagine you want to provide visitors with Internet access, but prevent them from accessing internal network resources. You can configure the 802.1x server to grant full access to authorized clients, but redirect unauthorized clients to a guest area of the network via a VLAN.
Question 1327:
Which of the following can reduce vulnerabilities by avoiding code reuse?
A. Memory management B. Stored procedures C. Normalization D. Code obfuscation
D. Code obfuscation
Question 1328:
A police department is using the cloud to share information city officials.
Which of the cloud models describes this scenario?
A. Hybrid B. private C. pubic D. Community
D. Community A community cloud model describes a scenario where a cloud service is shared among multiple organizations that have common goals, interests, or requirements. A community cloud can be hosted by one of the organizations, a third-party provider, or a combination of both. A community cloud can offer benefits such as cost savings, security, compliance, and collaboration. A police department using the cloud to share information with city officials is an example of a community cloud model. References: https://www.comptia.org/certifications/security#examdetails https://www.comptia.org/content/guides/comptia-security-sy0-601-exam-objectives https://www.ibm.com/cloud/learn/community-cloud
Question 1329:
Which of the following describes business units that purchase and implement scripting software without approval from an organization's technology Support staff?
A. Shadow IT B. Hacktivist C. Insider threat D. script kiddie
A. Shadow IT shadow IT is the use of IT-related hardware or software by a department or individual without the knowledge or approval of the IT or security group within the organization12. Shadow IT can encompass cloud services, software, and hardware. The main area of concern today is the rapid adoption of cloud-based services1. According to one source3, shadow IT helps you know and identify which apps are being used and what your risk level is. 80% of employees use non-sanctioned apps that no one has reviewed, and may not be compliant with your security and compliance policies.
Question 1330:
A security analyst is scanning a company's public network and discovers a host is running a remote desktop that can be used to access the production network. Which of the following changes should the security analyst recommend?
A. Changing the remote desktop port to a non-standard number B. Setting up a VPN and placing the jump server inside the firewall C. Using a proxy for web connections from the remote desktop server D. Connecting the remote server to the domain and increasing the password length
B. Setting up a VPN and placing the jump server inside the firewall Placing the jump server inside the firewall and configuring a Virtual Private Network (VPN) for secure remote access would be the best recommendation to enhance security in this scenario. By using a jump server, which is a secure intermediary system, the security analyst can create a controlled access point to the production network. The jump server will act as a gateway for remote users to connect to the production network securely, while also reducing the attack surface by limiting direct access to the production network from external sources. Using a VPN ensures that data transmitted between the remote desktop and the production network is encrypted, protecting it from potential eavesdropping and unauthorized access. This approach helps to secure the remote access process and minimizes the risk of unauthorized access to critical resources within the production network. Additionally, by placing the jump server inside the firewall, the organization can apply additional security measures, such as access controls and monitoring, to further protect the production network from potential threats.
Nowadays, the certification exams become more and more important and required by more and more
enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare
for the exam in a short time with less efforts? How to get a ideal result and how to find the
most reliable resources? Here on Vcedump.com, you will find all the answers.
Vcedump.com provide not only CompTIA exam questions,
answers and explanations but also complete assistance on your exam preparation and certification
application. If you are confused on your SY0-601 exam preparations
and CompTIA certification application, do not hesitate to visit our
Vcedump.com to find your solutions here.