2021 SY0-501 Dumps PDF - SY0-501 Real Exam Questions Answers
Valid SY0-501 Test Answers & CompTIA SY0-501 Exam PDF
Your Job Prospects?
The CompTIA Security+ is an essential must-have if you want to start a career in cybersecurity. This certificate will place you among the top performers at the entry-level by validating foundational IT skills spanning across a wide range of IT concepts such as operational security and computer network. According to PayScale.com, a typical IT specialist with the Security+ certificate earns a mean annual salary of $75, Some of the best intermediate-level jobs that require the CompTIA Security+ certification include the following:
- Systems Administrator;
- IT Project Manager.
- Security Administrator;
- Security Engineer/Analyst;
- Network/Cloud Engineer;
- IT Auditors;
- DevOps/Software Developer;
- Helpdesk Manager/Analyst;
NEW QUESTION 420
A security analyst wishes to increase the security of an FTP server. Currently, all traffic to the FTP server is unencrypted. Users connecting to the FTP server use a variety of modern FTP client software.
The security analyst wants to keep the same port and protocol, while also still allowing unencrypted connections. Which of the following would BEST accomplish these goals?
- A. Require the SFTP protocol to connect to the file server.
- B. Use SSH tunneling to encrypt the FTP traffic.
- C. Use implicit TLS on the FTP server.
- D. Use explicit FTPS for connections.
Answer: D
NEW QUESTION 421
A malicious attacker has intercepted HTTP traffic and inserted an ASCII line that sets the referrer URL. Which of the following is the attacker most likely utilizing?
- A. Xml injection
- B. Cross-site scripting
- C. Cookie hijacking
- D. Header manipulation
Answer: D
NEW QUESTION 422
Which of the following is the MOST likely motivation for a script kiddie threat actor?
- A. Political expression
- B. Corporate espionage
- C. Financial gain
- D. Notoriety
Answer: D
NEW QUESTION 423
A small business just recovered from a ransomware attack against its file servers by purchasing the decryption keys from the attackers. The issue was triggered by a phishing email and the IT administrator wants lo ensure il does not happen again. Which of the following should the IT administrator do FIRST after recovery?
- A. Scan the NAS for residual or dormant malware and take new dally backups that are tested on a frequent basis.
- B. Implement application whitelisting and perform user application hardening.
- C. Rebuild all workstations and Install new antivirus software.
- D. Restrict administrative privileges and patch all systems and applications.
Answer: A
NEW QUESTION 424
A penetration testing is preparing for a client engagement in which the tester must provide data that proves
and validates the scanning tools' results.
Which of the following is the best method for collecting this information?
- A. Use a protocol analyzer to log all pertinent network traffic
- B. Set up the scanning system's firewall to permit and log all outbound connections
- C. Enable debug level logging on the scanning system and all scanning tools used.
- D. Configure network flow data logging on all scanning system
Answer: A
NEW QUESTION 425
Phishing emails frequently take advantage of high-profile catastrophes reported in the news. Which of the following principles BEST describes the weakness being exploited?
- A. Scarcity
- B. Authority
- C. Intimidation
- D. Social proof
Answer: D
NEW QUESTION 426
Which of the following are considered to be "something you do"? (Select TWO).
- A. PIN
- B. Common Access Card
- C. Iris scan
- D. Handwriting
- E. Fingerprint
- F. Gait
Answer: D,F
NEW QUESTION 427
Which of the following attacks specifically impact data availability?
- A. Rootkit
- B. Trojan
- C. DDoS
- D. MITM
Answer: C
Explanation:
Reference: https://www.netscout.com/what-is-ddos
NEW QUESTION 428
Drag and Drop Question
Drag and drop the correct protocol to its default port.
Answer:
Explanation:
Explanation:
FTP uses TCP port 21.
Telnet uses port 23.
SSH uses TCP port 22.
All protocols encrypted by SSH, including SFTP, SHTTP, SCP, SExec, and slogin, also use TCP port 22. Secure Copy Protocol (SCP) is a secure file-transfer facility based on SSH and Remote Copy Protocol (RCP).
Secure FTP (SFTP) is a secured alternative to standard File Transfer Protocol (FTP).
SMTP uses TCP port 25.
Port 69 is used by TFTP.
SNMP makes use of UDP ports 161 and 162.
http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
NEW QUESTION 429
A security analyst has received several reports of an issue on an internal web application. Users state they are having to provide their credentials twice to log in. The analyst checks with the application team and notes this is not an expected behavior. After looking at several logs, the analyst decides to run some commands on the gateway and obtains the following output:
Which of the following BEST describes the attack the company is experiencing?
- A. URL redirection
- B. ARP poisoning
- C. DNS hijacking
- D. MAC flooding
Answer: B
Explanation:
Explanation
ARP Poisoning (also known as ARP Spoofing) is a type of cyber attack carried out over a Local Area Network (LAN) that involves sending malicious packets to a default gateway on a LAN in order to change the pairings in its IP to MAC address table. Protocol translates IP addresses into MAC addresses.
NEW QUESTION 430
The use of a unique attribute inherent to a user as part of an UFA system is BEST described as:
- A. something you do
- B. something you are.
- C. something you have
- D. something you know.
Answer: B
NEW QUESTION 431
When configuring settings in a mandatory access control environment, which of the following specifies the subjects that can access specific data objects?
- A. Administrator
- B. System
- C. User
- D. Owner
Answer: A
Explanation:
Explanation/Reference:
NEW QUESTION 432
In an effort to reduce data storage requirements, a company devices to hash every file and eliminate duplicates. The data processing routines are time sensitive so the hashing algorithm is fast and supported on a wide range of systems. Which of the following algorithms is BEST suited for this purpose?
- A. AES
- B. RIPEMD
- C. SHA
- D. MD5
Answer: C
NEW QUESTION 433
A security analyst is hardening a server with the directory services role installed. The analyst must ensure LDAP traffic cannot be monitored or sniffed and maintains compatibility with LDAP clients.
Which of the following should the analyst implement to meet these requirements? (Select two.)
- A. Generate an X.509-compliant certificate that is signed by a trusted CA.
- B. Remote the LDAP directory service role from the server.
- C. Ensure port 389 is open between the clients and the servers using the communication.
- D. Install and configure an SSH tunnel on the LDAP server.
- E. Ensure port 636 is open between the clients and the servers using the communication.
Answer: D,E
NEW QUESTION 434
A security analyst is investigating a call from a user regarding one of the websites receiving a 503: Service Unavailable error. The analyst runs a netstat-an command to discover if the web server is up and listening. The analyst receives the following output:
TCP 10.1.5.2:80 192.168.2.112:60973 TIME_WAIT
TCP 10.1.5.2:80 192.168.2.112:60974 TIME_WAIT
TCP 10.1.5.2:80 192.168.2.112:60975 TIME_WAIT
TCP 10.1.5.2:80 192.168.2.112:60976 TIME_WAIT
TCP 10.1.5.2:80 192.168.2.112:60977 TIME_WAIT
TCP 10.1.5.2:80 192.168.2.112:60978 TIME_WAIT
Which of the following types of attack is the analyst seeing?
- A. Buffer overflow
- B. Denial of service
- C. Domain hijacking
- D. ARP poisoning
Answer: B
NEW QUESTION 435
A system's administrator has finished configuring firewall ACL to allow access to a new web answer.
The security administrator confirms form the following packet capture that there is network traffic from the internet to the web server:
The company's internal auditor issues a security finding and requests that immediate action be taken. With which of the following is the auditor MOST concerned?
- A. Misconfigured firewall
- B. Implicit deny
- C. Clear text credentials
- D. Default configuration
Answer: C
NEW QUESTION 436
A system administrator wants to provide balance between the security of a wireless network and usability. The administrator is concerned with wireless encryption compatibility of older devices used by some employees.
Which of the following would provide strong security and backward compatibility when accessing the wireless network?
- A. WPA using a preshared key
- B. WPA2 using a RADIUS back-end for 802.1x authentication
- C. WEP with a 40-bit key
- D. Open wireless network and SSL VPN
Answer: B
NEW QUESTION 437
In a corporation where compute utilization spikes several times a year, the Chief Information Officer (CIO)
has requested a cost-effective architecture to handle the variable capacity demand. Which of the following
characteristics BEST describes what the CIO has requested?
- A. Redundancy
- B. Elasticity
- C. Scalability
- D. High availability
Answer: B
Explanation:
Explanation/Reference:
Explanation:
Elasticity is defined as "the degree to which a system is able to adapt to workload changes by provisioning
and de-provisioning resources in an autonomic manner, such that at each point in time the available
resources match the current demand as closely as possible".
NEW QUESTION 438
......
SY0-501 Exam Dumps - PDF Questions and Testing Engine: https://www.practicetorrent.com/SY0-501-practice-exam-torrent.html
Realistic SY0-501 Exam Dumps with Accurate & Updated Questions: https://drive.google.com/open?id=1_38YCeLHftfO1xXRUL9sSX7RUzKOOB84