[Jan-2022] SY0-501 Exam Dumps Pass with Updated 2022 CompTIA Security+ Certification Exam
Free SY0-501 Exam Dumps to Pass Exam Easily
NEW QUESTION 344
A malicious actor recently penetrated a company's network and moved laterally to the datacenter. Upon investigation. a forensics firm wants to know what was In the memory on the compromised server. Which of the following files should be given to the forensics firm?
- A. Application
- B. Syslog
- C. Security
- D. Dump
Answer: D
NEW QUESTION 345
Which of the following is an asymmetric function that generates a new and separate key every time it runs?
- A. DHE
- B. PBKDF2
- C. DSA
- D. HMAC
- E. RSA
Answer: A
NEW QUESTION 346
A technician is evaluating a security appliance solution. The company needs a system that continues to pass traffic if the system crashes. Which of the following appliance feature would BEST meet the company's needs?
- A. Fall open
- B. Fall Secure
- C. Fall Safe
- D. Fall closed.
Answer: A
NEW QUESTION 347
The chief security officer (CS0) has issued a new policy that requires that all internal websites be configured for HTTPS traffic only. The network administrator has been tasked to update all internal sites without incurring additional costs.
Which of the following is the best solution for the network administrator to secure each internal website?
- A. Use certificates signed by a public ca
- B. Use certificates signed by the company CA
- C. Use a signing certificate as a wild card certificate
- D. Use a self-signed certificate on each internal server
Answer: D
Explanation:
Explanation
This is a way to update all internal sites without incurring additional costs?
To be a CA (Certificate Authority), you need an infrastructure that consists of considerable operational elements, hardware, software, policy frameworks and practice statements, auditing, security infrastructure and personnel.
NEW QUESTION 348
A Chief Information Security Officer (CISO) has instructed the information assurance staff to act upon a fast-spreading virus. Which of the following steps in the incident response process should be taken NEXT?
- A. Containment
- B. Escalation
- C. Identification
- D. Eradication
Answer: B
NEW QUESTION 349
Which of the following would have the GREATEST impact on the supporting, database server if input handling is not properly implemented on a web application?
- A. Server-side request forgery
- B. Cross-site scripting
- C. Insecure direct object reference
- D. Command injection
- E. Cross-site request forgery
Answer: D
NEW QUESTION 350
A company moved into a new building next to a sugar mill. Cracks have been discovered in the walls of the server room, which is located on the same side as the sugar mill loading docks. The cracks are believed to have been caused by heavy trucks. Moisture has begun to seep into the server room, causing extreme humidification problems and equipment failure. Which of the following BEST describes the type of threat the organization faces?
- A. Foundational
- B. Natural
- C. Environmental
- D. Man-made
Answer: A
NEW QUESTION 351
An analyst is currently looking at the following output:
Which of the following security issues has been discovered based on the output?
- A. License compliance violation
- B. Misconfigured admin permissions
- C. Unauthorized software
- D. Insider threat
Answer: A
NEW QUESTION 352
A coffee company has hired an IT consultant to set up a WiFi network that will provide Internet access to customers who visit the company's chain of cafes. The coffee company has provided no requirements other than that customers should be granted access after registering via a web form and accepting the terms of service. Which of the following is the MINIMUM acceptable configuration to meet this single requirement?
- A. Captive portal
- B. Open WiFi
- C. WPA with PSK
- D. WPS
Answer: A
NEW QUESTION 353
An attacker exploited a vulnerability on a mail server using the code below.
Which of the following BEST explains what the attacker is doing?
- A. The attacker is replacing a cookie.
- B. The attacker is deleting a cookie.
- C. The attacker is replacing a document.
- D. The attacker is stealing a document.
Answer: C
NEW QUESTION 354
During a risk assessment, results show that a fire in one of the company's datacenters could cost up to $20 million in equipment damages and lost revenue. As a result, the company insures the datacenter for up to $20 million damages for the cost of $30,000 a year. Which of the following risk response techniques has the company chosen?
- A. Transference
- B. Avoidance
- C. Acceptance
- D. Mitigation
Answer: A
NEW QUESTION 355
Leveraging the information supplied below, complete the CSR for the server to set up TLS (HTTPS)
* Hostname: ws01
* Domain: comptia.org
* IPv4: 10.1.9.50
* IPV4: 10.2.10.50
* Root: home.aspx
* DNS CNAME:homesite.
Instructions:
Drag the various data points to the correct locations within the CSR. Extension criteria belong in the let hand column and values belong in the corresponding row in the right hand column.
Answer:
Explanation:
Explanation
NEW QUESTION 356
A systems administrator is reviewing the following information from a compromised server:
Given the above information, which of the following processes was MOST likely exploited via a remote buffer overflow attack?
- A. Apache
- B. LSASS
- C. TFTP
- D. MySQL
Answer: A
NEW QUESTION 357
Ann. a user, reports she is receiving emails that appear to be from organizations to which she belong. Put me emails contain links to websites that do not belong to those organizations. Which of the following security scenarios does this describe?
- A. The DNS servers for the organizations have been hacked and are pointing to malicious sites.
- B. Ann's computer is infected with adware that has changed me email links
- C. The company's maw system has changed the organization's links to point to a proxy server for security.
- D. A hacker is using Ann's social media information to create a spear phishing attack.
Answer: D
NEW QUESTION 358
A security analyst has received several reports of an issue on an internal web application. Users state they are having to provide their credentials twice to log in. The analyst checks with the application team and notes this is not an expected behavior. After looking at several logs, the analyst decides to run some commands on the gateway and obtains the following output:
Which of the following BEST describes the attack the company is experiencing?
- A. URL redirection
- B. DNS hijacking
- C. MAC flooding
- D. ARP poisoning
Answer: D
Explanation:
Explanation
ARP Poisoning (also known as ARP Spoofing) is a type of cyber attack carried out over a Local Area Network (LAN) that involves sending malicious packets to a default gateway on a LAN in order to change the pairings in its IP to MAC address table. Protocol translates IP addresses into MAC addresses.
NEW QUESTION 359
......
SY0-501 Exam Dumps, SY0-501 Practice Test Questions: https://www.actualcollection.com/SY0-501-exam-questions.html