Online SY0-601 Practice TestMore CompTIA Products >

Free CompTIA SY0-601 Exam Dumps Questions

CompTIA SY0-601: CompTIA Security+ Exam

- Get instant access to SY0-601 practice exam questions

- Get ready to pass the CompTIA Security+ Exam exam right now using our CompTIA SY0-601 exam package, which includes CompTIA SY0-601 practice test plus an CompTIA SY0-601 Exam Simulator.

- The best online SY0-601 exam study material and preparation tool is here.

4.5

(45 ratings)

Question 1

A global company is experiencing unauthorized logging due to credential theft and account lockouts caused by brute-force attacks. The company is considering implementing a third-party identity provider to help mitigate these attacks. Which of the following would be the BEST control for the company to require from prospective vendors’?

A. IP restrictions

B. Multifactor authentication

C. A banned password list

D. A complex password policy

Correct Answer:B

Question 2

A company just developed a new web application for a government agency. The application must be assessed and authorized prior to being deployed. Which of the following is required to assess the vulnerabilities resident in the application?

A. Repository transaction logs

B. Common Vulnerabilities and Exposures

C. Static code analysis

D. Non-credentialed scans

Correct Answer:C

Question 3

A security administrator suspects an employee has been emailing proprietary information to a competitor. Company policy requires the administrator to capture an exact copy of the employee’s hard disk. Which of the following should the administrator use?

A. dd

B. chmod

C. dnsenum

D. logger

Correct Answer:A

Question 4

A security analyst is running a vulnerability scan to check for missing patches during a suspected security rodent During which of the following phases of the response process is this activity MOST likely occurring?

A. Containment

B. Identification

C. Recovery

D. Preparation

Correct Answer:D

Question 5

While checking logs, a security engineer notices a number of end users suddenly downloading files with the .t ar.gz extension. Closer examination of the files reveals they are PE32 files. The end users state they did not initiate any of the downloads. Further investigation reveals the end users all clicked on an external email containing an infected MHT file with an href link a week prior. Which of the following is MOST likely occurring?

A. A RAT was installed and is transferring additional exploit tools.

B. The workstations are beaconing to a command-and-control server.

C. A logic bomb was executed and is responsible for the data transfers.

D. A fireless virus is spreading in the local network environment.

Correct Answer:A

Question 6

A new vulnerability in the SMB protocol on the Windows systems was recently discovered, but no patches are currently available to resolve the issue. The security administrator is concerned that servers in the company's DMZ will be vulnerable to external attack; however, the administrator cannot disable the service on the servers, as SMB is used by a number of internal systems and applications on the LAN Which of the following TCP ports should be blocked for all external inbound connections to the DMZ as a workaround to protect the servers? (Select TWO).

A. 135

B. 139

C. 143

D. 161

E. 443

F. 445

Correct Answer:AE

START SY0-601 EXAM