• Home
  • Blogs
  • [Nov-2021] SY0-501 Braindumps - SY0-501 Questions to Get Better Grades [Q77-Q101]

[Nov-2021] SY0-501 Braindumps - SY0-501 Questions to Get Better Grades [Q77-Q101]

Share

[Nov-2021] SY0-501 Braindumps – SY0-501 Questions to Get Better Grades

SY0-501 Exam Dumps - Try Best SY0-501 Exam Questions - Exams-boost


Which Skills Will You Obtain from CompTIA Security+ Certification?

You will earn 5 core skills from the Security+ certification including the following:

  • Governance, risk, and compliance.
  • Operations and incident response;
  • Attacks, threats, and vulnerabilities;
  • Implementation;
  • Architecture and design;

 

NEW QUESTION 77
A security analyst is hardening a web server, which should allow a secure certificate-based session using the organization's PKI infrastructure. The web server should also utilize the latest security techniques and standards. Given this set of requirements, which of the following techniques should the analyst implement to BEST meet these requirements? (Choose two.)

  • A. Install an X- 509-compliant certificate.
  • B. Enable and configure TLS on the server.
  • C. Implement a CRL using an authorized CA.
  • D. Configure the web server to use a host header.
  • E. Install a certificate signed by a public CA.

Answer: A,B

 

NEW QUESTION 78
An analyst generates the following color-coded table shown in the exhibit to help explain the risk of potential incidents in the company. The vertical axis indicates the likelihood or an incident, while the horizontal axis indicates the impact.

Which of the following is this table an example of?

  • A. Internal threat assessment
  • B. Supply chain assessment
  • C. Privacy impact assessment
  • D. Qualitative risk assessment

Answer: D

 

NEW QUESTION 79
Multiple organizations operating in the same vertical want to provide seamless wireless access for their employees as they visit the other organizations.
Which of the following should be implemented if all the organizations use the native 802.1x client on their mobile devices?

  • A. RADIUS federation
  • B. OpenlD connect
  • C. Shibboleth
  • D. OAuth
  • E. SAML

Answer: A

Explanation:
http://archive.oreilly.com/pub/a/wireless/2005/01/01/authentication.html

 

NEW QUESTION 80
Joe, a user, has been trying to send Ann, a different user, an encrypted document via email. Ann has not received the attachment but is able to receive the header information. Which of the following is MOST likely preventing Ann from receiving the encrypted file?

  • A. Authentication issues
  • B. Permission issues
  • C. Weak cipher suite
  • D. Unencrypted credentials

Answer: A

 

NEW QUESTION 81
Select the appropriate attack and remediation from each drop-down list to label the corresponding attack with its remediation.
INSTRUCTIONS
Not all attacks and remediation actions will be used. If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Answer:

Explanation:
Use the following settings for answer this simulation question.

 

NEW QUESTION 82
DRAG DROP
A security administrator wants to implement strong security on the company smart phones and terminal servers located in the data center. Drag and drop the applicable controls to each asset types?
Instructions: Controls can be used multiple times and not all placeholders need to be filled. When you have completed the simulation, please select the Done button to submit.

Answer:

Explanation:
Company Manages Smart Phone
Screen Lock
Strong Password
Device Encryption
Remote Wipe
GPS Tracking
Pop-up blocker
Data Center Terminal Server
Cable Locks
Antivirus
Host Based Firewall
Proximity Reader
Sniffer
Mantrap

 

NEW QUESTION 83
A forensic analyst is asked to respond to an ongoing network attack on a server. Place the items in the list below in the correct order in which the forensic analyst should preserve them.

.

Answer:

Explanation:

Explanation:
When dealing with multiple issues, address them in order of volatility (OOV); always deal with the most volatile first. Volatility can be thought of as the amount of time that you have to collect certain data before a window of opportunity is gone. Naturally, in an investigation you want to collect everything, but some data will exist longer than others, and you cannot possibly collect all of it once. As an example, the OOV in an investigation may be RAM, hard drive data, CDs/DVDs, and printouts.
Order of volatility: Capture system images as a snapshot of what exists, look at network traffic and logs, capture any relevant video/screenshots/hashes, record time offset on the systems, talk to witnesses, and track total man-hours and expenses associated with the investigation.

 

NEW QUESTION 84
A NIPS administrator needs to install a new signature to observe the behavior of a worm that may be spreading over SMB. Which of the following signatures should be installed on the NIPS?

  • A. PERMIT from ANY:ANY to ANY:445 regex '.*SMB.*'
  • B. RESET from ANY:ANY to ANY:445 regex '.*SMB.*'
  • C. DENY from ANY:ANY to ANY:445 regex '.*SMB.*'
  • D. DROP from ANY:445 to ANY:445 regex '.*SMB.*'

Answer: C

 

NEW QUESTION 85
A company wants to configure its wireless network to require username and password authentication. Which of the following should the systems administrator Implement?

  • A. PKl
  • B. WPS
  • C. TKIP
  • D. PEAP

Answer: B

 

NEW QUESTION 86
During a recent audit, the auditors cited the company's current virtual machine infrastructure as a concern. The auditors cited the fact that servers containing sensitive customer information reside on the same physical host as numerous virtual machines that follow less stringent security guild lines. Which of the following would be the best choice to implement to address this audit concern while maintain the current infrastructure?

  • A. Move the virtual machines that contain the sensitive information to a separate host
  • B. Migrate the individual virtual machines that do not contain sensitive data to separate physical machines
  • C. Implement full disk encryption on all servers that do not contain sensitive customer data
  • D. Create new VLANs and segment the network according to the level of data sensitivity

Answer: D

 

NEW QUESTION 87
Attackers have been using revoked certificates for MITM attacks to steal credentials from employees of Company.com.
Which of the following options should Company.com implement to mitigate these attacks?

  • A. Key escrow
  • B. Extended validation certificate
  • C. Object identifiers
  • D. OCSP stapling
  • E. Captive portal

Answer: D

 

NEW QUESTION 88
While performing surveillance activities an attacker determines that an organization is using
802.1X to secure LAN access. Which of the following attack mechanisms can the attacker utilize to bypass the identified network security controls?

  • A. ARP poisoning
  • B. Xmas attack
  • C. MAC spoofing
  • D. Pharming

Answer: A

 

NEW QUESTION 89
While testing a new vulnerability scanner, a technician becomes concerned about reports that list security concerns that are not present on the systems being tested. Which of the following BEST describes this flaw?

  • A. Crossover error rate
  • B. Uncredentialed scan
  • C. False positives
  • D. Passive security controls

Answer: C

 

NEW QUESTION 90
A security analyst receives a notification from the IDS after working hours, indicating a spike in network traffic. Which of the following BEST describes this type of IDS?

  • A. Anomly-based
  • B. Host-based
  • C. Stateful
  • D. Signature-based

Answer: D

 

NEW QUESTION 91
Multiple organizations operating in the same vertical wants to provide seamless wireless access for their employees as they visit the other organizations. Which of the following should be implemented if all the organizations use the native 802.1x client on their mobile devices?

  • A. RADIUS federation
  • B. OpenID connect
  • C. Shibboleth
  • D. OAuth
  • E. SAML

Answer: A

 

NEW QUESTION 92
The security administrator has installed a new firewall which implements an implicit DENY policy by default.
INSTRUCTIONS:
Click on the firewall and configure it to allow ONLY the following communication.
1. The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks.
2. The HR workstation should be restricted to communicate with the Financial server ONLY, over the default SCP port
3. The Admin workstation should ONLY be able to access the servers on the secure network over the default TFTP port.
Instructions: The firewall will process the rules in a top-down manner in order as a first match The port number must be typed in and only one port number can be entered per rule Type ANY for all ports. The original firewall configuration can be reset at any time by pressing the reset button. Once you have met the simulation requirements, click save and then Done to submit.

Hot Area:

Answer:

Explanation:

Explanation


Section: Network Security
Implicit deny is the default security stance that says if you aren't specifically granted access or privileges for a resource, you're denied access by default.Rule #1 allows the Accounting workstation to ONLY access the web server on the public network over the default HTTPS port, which is TCP port 443.Rule #2 allows the HR workstation to ONLY communicate with the Financial server over the default SCP port, which is TCP Port
22Rule #3 & Rule #4 allow the Admin workstation to ONLY access the Financial and Purchasing servers located on the secure network over the default TFTP port, which is Port 69.
References:Stewart,
James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 26, 44
http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers

 

NEW QUESTION 93
A company researched the root cause of a recent vulnerability in its software. It was determined that the vulnerability was the result of two updates made in the last release. Each update alone would not have resulted in the vulnerability.
In order to prevent similar situations in the future, the company should improve which of the following?

  • A. Job rotation policies
  • B. Incident response management
  • C. Change management procedures
  • D. Least privilege access controls

Answer: C

Explanation:
Explanation

 

NEW QUESTION 94
Select the appropriate attack and remediation from each drop-down list to label the corresponding attack with its remediation.
INSTRUCTIONS
Not all attacks and remediation actions will be used. If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Answer:

Explanation:
check the answer below.
Explanation
Use the following settings for answer this simulation question.

 

NEW QUESTION 95
An analyst is using a vulnerability scanner to look for common security misconfigurations on devices. Which of the following might be identified by the scanner? (Select TWO).

  • A. Default administrator credentials exist on networking hardware.
  • B. SSH is enabled on servers.
  • C. The firewall is disabled on workstations.
  • D. The OS is only set to check for updates once a day.
  • E. Browser homepages have not been customized.

Answer: B,C

 

NEW QUESTION 96
A manager suspects that an IT employee with elevated database access may be knowingly modifying
financial transactions for the benefit of a competitor. Which of the following practices should the manager
implement to validate the concern?

  • A. Separation of duties
  • B. Background checks
  • C. Mandatory vacations
  • D. Security awareness training

Answer: A

 

NEW QUESTION 97
A company occupies the third floor of a leased building that has other tenants. The path from the demarcation point to the company's controlled space runs through unsecured areas managed by other companies. Which of the following could be used to protect the company's cabling as it passes through uncontrolled spaces?

  • A. Plenum-rated cables
  • B. Conduits
  • C. Cable locks
  • D. Bayonet Neill-Concelman

Answer: B

 

NEW QUESTION 98
When considering loT systems, which of the following represents the GREATEST ongoing risk after a vulnerability has been discovered?

  • A. IP address exhaustion
  • B. Not using industry standards
  • C. Difficult-to-update firmware
  • D. Tight integration to existing systems

Answer: D

 

NEW QUESTION 99
A security consultant was asked to revise the security baselines that are utilized by a large organization.
Although the company provides different platforms for its staff, including desktops, laptops, and mobile devices, the applications do not vary by platform. Which of the following should the consultant recommend?
(Select Two).

  • A. Apply application whitelisting.
  • B. Apply patch management on a daily basis.
  • C. Apply default configurations of all operating systems
  • D. Disable default accounts and/or passwords.
  • E. Allow full functionality for all applications that are accessed remotely

Answer: B,D

 

NEW QUESTION 100
A security analyst captures forensic evidence from a potentially compromised system for further investigation. The evidence is documented and securely stored to FIRST:

  • A. maintain the chain of custody.
  • B. preserve the data.
  • C. obtain a legal hold.
  • D. recover data at a later time.

Answer: B

 

NEW QUESTION 101
......

Verified SY0-501 exam dumps Q&As with Correct 715 Questions and Answers: https://www.exams-boost.com/SY0-501-valid-materials.html

Related Blogs

more
CompTIA SY0-501 Certification Practice Exam

Copyright © 2026 EXAMS-BOOST.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.