Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home CompTIA SY0-501

CompTIA SY0-501 Exam Practice Questions (P. 2)

  • Full Access (1132 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #11
A security analyst is hardening a server with the directory services role installed. The analyst must ensure LDAP traffic cannot be monitored or sniffed and maintains compatibility with LDAP clients. Which of the following should the analyst implement to meet these requirements? (Choose two.)
  1. A
    Generate an X.509-compliant certificate that is signed by a trusted CA.
  2. B
    Install and configure an SSH tunnel on the LDAP server.
  3. C
    Ensure port 389 is open between the clients and the servers using the communication.
  4. D
    Ensure port 636 is open between the clients and the servers using the communication.
  5. E
    Remote the LDAP directory service role from the server.

Correct Answer:
AD

Question #12
Which of the following threat actors is MOST likely to steal a company's proprietary information to gain a market edge and reduce time to market?
  1. A
    Competitor
  2. B
    Hacktivist
  3. C
    Insider
  4. D
    Organized crime.

Correct Answer:
A

Question #13
A penetration tester is crawling a target website that is available to the public. Which of the following represents the actions the penetration tester is performing?
  1. A
    URL hijacking
  2. B
    Reconnaissance
  3. C
    White box testing
  4. D
    Escalation of privilege

Correct Answer:
B

Question #14
Which of the following characteristics differentiate a rainbow table attack from a brute force attack? (Choose two.)
  1. A
    Rainbow table attacks greatly reduce compute cycles at attack time.
  2. B
    Rainbow tables must include precomputed hashes.
  3. C
    Rainbow table attacks do not require access to hashed passwords.
  4. D
    Rainbow table attacks must be performed on the network.
  5. E
    Rainbow table attacks bypass maximum failed login restrictions.

Correct Answer:
BE

Question #15
Which of the following best describes routine in which semicolons, dashes, quotes, and commas are removed from a string?
  1. A
    Error handling to protect against program exploitation
  2. B
    Exception handling to protect against XSRF attacks.
  3. C
    Input validation to protect against SQL injection.
  4. D
    Padding to protect against string buffer overflows.

Correct Answer:
C

Question #16
A security analyst wishes to increase the security of an FTP server. Currently, all traffic to the FTP server is unencrypted. Users connecting to the FTP server use a variety of modern FTP client software.
The security analyst wants to keep the same port and protocol, while also still allowing unencrypted connections. Which of the following would BEST accomplish these goals?
  1. A
    Require the SFTP protocol to connect to the file server.
  2. B
    Use implicit TLS on the FTP server.
  3. C
    Use explicit FTPS for connections.
  4. D
    Use SSH tunneling to encrypt the FTP traffic.

Correct Answer:
C

Question #17
Which of the following explains why vendors publish MD5 values when they provide software patches for their customers to download over the Internet?
  1. A
    The recipient can verify integrity of the software patch.
  2. B
    The recipient can verify the authenticity of the site used to download the patch.
  3. C
    The recipient can request future updates to the software using the published MD5 value.
  4. D
    The recipient can successfully activate the new software patch.

Correct Answer:
A

Question #18
Refer to the following code:

Which of the following vulnerabilities would occur if this is executed?
  1. A
    Page exception
  2. B
    Pointer deference
  3. C
    NullPointerException
  4. D
    Missing null check

Correct Answer:
D

Question #19
Multiple employees receive an email with a malicious attachment that begins to encrypt their hard drives and mapped shares on their devices when it is opened.
The network and security teams perform the following actions:
✑ Shut down all network shares.
✑ Run an email search identifying all employees who received the malicious message.
✑ Reimage all devices belonging to users who opened the attachment.
Next, the teams want to re-enable the network shares. Which of the following BEST describes this phase of the incident response process?
  1. A
    Eradication
  2. B
    Containment
  3. C
    Recovery
  4. D
    Lessons learned

Correct Answer:
C

Question #20
An organization has determined it can tolerate a maximum of three hours of downtime. Which of the following has been specified?
  1. A
    RTO
  2. B
    RPO
  3. C
    MTBF
  4. D
    MTTR

Correct Answer:
A

Previous Questions Next Questions

All Pages