• Home
  • Articles
  • Latest SY0-501 Exam Real Tests Free Updated Today [Q337-Q354]

Latest SY0-501 Exam Real Tests Free Updated Today [Q337-Q354]

Share

Latest SY0-501 Exam Real Tests Free Updated Today

SY0-501 Real Exam Question Answers Updated [Jan 07, 2022]

NEW QUESTION 337
A technician has discovered a crypto-virus infection on a workstation that has access to sensitive remote resources.
Which of the following is the immediate NEXT step the technician should take?

  • A. Determine the source of the virus that has infected the workstation.
  • B. Sanitize the workstation's internal drive.
  • C. Disable the network connections on the workstation.
  • D. Reimage the workstation for normal operation.

Answer: C

 

NEW QUESTION 338
Which of the following vulnerabilities can lead to unexpected system behavior, including the bypassing of security controls, due to differences between the time of commitment and the time of execution?

  • A. DLL injection
  • B. Race condition
  • C. Buffer overflow
  • D. Pointer dereference

Answer: C

Explanation:
Explanation
Buffer overflow protection is any of various techniques used during software development to enhance the security of executable programs by detecting on stack-allocated variables, and preventing them from causing program misbehavior or from becoming serious security vulnerabilities.
DLL injection is a technique which to run arbitrary code in the context of the address space of another process. If this process is running with excessive privileges then it could be abused by an attacker in order to execute malicious code in the form of a DLL file in order to elevate privileges.

 

NEW QUESTION 339
The Chief Executive Officer (CEO) of an organization would like staff members to have the flexibility to work from home anytime during business hours. Including during a pandemic or crisis. However, the CEO Is concerned that some staff members may take advantage of the flexibility and work from high-risk countries while on holiday or outsource work to a third-party organization in another country. The Chief Information Officer (CIO) believes the company can Implement some basic controls to mitigate the majority of the risk. Which of the following would be BEST to mitigate the CEO's concerns? (Select TWO).

  • A. Certificates
  • B. Tokens
  • C. Time-of-day restrictions
  • D. Geotagging
  • E. Geotocation
  • F. Role-based access controls

Answer: C,D

 

NEW QUESTION 340
A security administrator is given the security and availability profiles for servers that are being deployed.
* Match each RAID type with the correct configuration and MINIMUM number of drives.
* Review the server profiles and match them with the appropriate RAID type based on integrity, availability, I/O, storage requirements. Instructions:
* All drive definitions can be dragged as many times as necessary
* Not all placeholders may be filled in the RAID configuration boxes
* If parity is required, please select the appropriate number of parity checkboxes
* Server profiles may be dragged only once
If at any time you would like to bring back the initial state of the simulation, please select the Reset button.
When you have completed the simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.

Answer:

Explanation:

Explanation

RAID-0 is known as striping. It is not a fault tolerant solution but does improve disk performance for read/write operations. Striping requires a minimum of two disks and does not use parity.
RAID-0 can be used where performance is required over fault tolerance, such as a media streaming server.
RAID-1 is known as mirroring because the same data is written to two disks so that the two disks have identical data. This is a fault tolerant solution that halves the storage space. A minimum of two disks are used in mirroring and does not use parity. RAID-1 can be used where fault tolerance is required over performance, such as on an authentication server. RAID-5 is a fault tolerant solution that uses parity and striping. A minimum of three disks are required for RAID-5 with one disk's worth of space being used for parity information. However, the parity information is distributed across all the disks. RAID-5 can recover from a sing disk failure.
RAID-6 is a fault tolerant solution that uses dual parity and striping. A minimum of four disks are required for RAID-6. Dual parity allows RAID-6 to recover from the simultaneous failure of up to two disks. Critical data should be stored on a RAID-6 system.
http://www.adaptec.com/en-us/solutions/raid_levels.html

 

NEW QUESTION 341
An attacker has gained control of several systems on the Internet and is using them to attack a website, causing it to stop responding to legitimate traffic. Which of the following BEST describes the attack?

  • A. DDoS
  • B. DNS poisoning
  • C. MITM
  • D. Buffer overflow

Answer: A

 

NEW QUESTION 342
An organization is developing its mobile device management policies and procedures and is concerned about vulnerabilities associated with sensitive data being saved to a mobile device, as well as weak authentication when using a PIN As part or discussions on the topic several solutions are proposed Which of the following controls when required together, will address the protection of data at-rest as well as strong authentication?
(Select TWO).

  • A. FDE
  • B. Containerization
  • C. MFA
  • D. Remote wipe capability
  • E. MDM
  • F. OTA updates

Answer: A,B

 

NEW QUESTION 343
A cyber security manager has scheduled biannual with the IT team and department leaders to discuss how they would respond hypothetical cyber attacks. During Developing an incident response plan these meetings, the manager presents a scenario and injects additional information throughout the session to replicate what might occur in a dynamic cyber security event involving the company, its facilities, its data , and its staff. Which of the following describes what the manager is doing?

  • A. Running a simulation exercise
  • B. Developing an incident response plan
  • C. Building a disaster recovery plan
  • D. Conducting a laptop exercise

Answer: D

 

NEW QUESTION 344
An attack has occurred against a company.
INSTRUCTIONS
You have been tasked to do the following:
Identify the type of attack that is occurring on the network by clicking on the attacker's tablet and reviewing the output. (Answer Area 1) Identify which compensating controls should be implemented on the assets, in order to reduce the effectiveness of future attacks by dragging them to the correct server. (Answer area 2) All objects will be used, but not all placeholders may be filled. Objects may only be used once.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.


Answer:

Explanation:

Explanation

 

NEW QUESTION 345
A security engineer is setting up passwordless authentication for the first time.
INSTRUCTIONS
Use the minimum set of commands to set this up and verify that it works. Commands cannot be reused.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Answer:

Explanation:

Explanation

 

NEW QUESTION 346
A security analyst is reviewing the password policy for a service account that is used for a critical network service. The password policy for this account is as follows:

Which of the following adjustments would be the MOST appropriate for the service account?

  • A. Increase password length to 18 characters
  • B. Set the minimum password age to seven days
  • C. Disable account lockouts
  • D. Set the maximum password age to 15 days

Answer: D

 

NEW QUESTION 347

  • A. CRL
  • B. PKI
  • C. ACL
  • D. The security administrator knows there are at least four different browsers in use on more than a thousand computers in the domain worldwide. Which of the following solution would be BEST for the security administrator to implement to most efficiently assist with this issue?
  • E. SSL

Answer: D,E

 

NEW QUESTION 348
Legal authorities notify a company that its network has been compromised for the second time in two
years. The investigation shows the attackers were able to use the same vulnerability on different systems
in both attacks.
Which of the following would have allowed the security team to use historical information to protect against
the second attack?

  • A. Lessons learned
  • B. Key risk indicators
  • C. Tabletop exercise
  • D. Recovery point objectives

Answer: A

 

NEW QUESTION 349
A security administrator is given the security and availability profiles for servers that are being deployed.
* Match each RAID type with the correct configuration and MINIMUM number of drives.
* Review the server profiles and match them with the appropriate RAID type based on integrity, availability, I/O, storage requirements. Instructions:
* All drive definitions can be dragged as many times as necessary
* Not all placeholders may be filled in the RAID configuration boxes
* If parity is required, please select the appropriate number of parity checkboxes
* Server profiles may be dragged only once

.

Answer:

Explanation:

Explanation:
RAID-0 is known as striping. It is not a fault tolerant solution but does improve disk performance for read/write operations. Striping requires a minimum of two disks and does not use parity.
RAID-0 can be used where performance is required over fault tolerance, such as a media streaming server.
RAID-1 is known as mirroring because the same data is written to two disks so that the two disks have identical data. This is a fault tolerant solution that halves the storage space. A minimum of two disks are used in mirroring and does not use parity. RAID-1 can be used where fault tolerance is required over performance, such as on an authentication server. RAID-5 is a fault tolerant solution that uses parity and striping. A minimum of three disks are required for RAID-5 with one disk's worth of space being used for parity information. However, the parity information is distributed across all the disks. RAID-5 can recover from a sing disk failure.
RAID-6 is a fault tolerant solution that uses dual parity and striping. A minimum of four disks are required for RAID-6. Dual parity allows RAID-6 to recover from the simultaneous failure of up to two disks. Critical data should be stored on a RAID-6 system.
http://www.adaptec.com/en-us/solutions/raid_levels.html

 

NEW QUESTION 350
A security administrator is diagnosing a server where the CPU utilization is at 100% for 24 hours. The main culprit of CPU utilization is the antivirus program.
Which of the following issue could occur if left unresolved? (Select TWO)

  • A. DoS attack
  • B. DLL injection
  • C. Resource exhaustion
  • D. Buffer overflow
  • E. MITM attack

Answer: A,C

 

NEW QUESTION 351
An organization is concerned about video emissions from users' desktops. Which of the following is the BEST solution to implement?

  • A. Screen filters
  • B. Infrared detection
  • C. Shielded cables
  • D. Spectrum analyzers

Answer: A

 

NEW QUESTION 352
A security engineer needs to build a solution to satisfy regulatory requirements that state certain critical server must be accessed using MFA. However, the critical servers are older and are unable to support the addition of MFA. Which of the following will the engineer MOST likely use to achieve this objective?

  • A. A port tap
  • B. A jump server
  • C. A stateful firewall
  • D. A forward proxy

Answer: C

 

NEW QUESTION 353
After a merger between two companies a security analyst has been asked to ensure that the organization's systems are secured against infiltration by any former employees that were terminated during the transition.
Which of the following actions are MOST appropriate to harden applications against infiltration by former employees? (Select TWO)

  • A. Increase password complexity requirements
  • B. Monitor VPN client access
  • C. Review and address invalid login attempts
  • D. Assess and eliminate inactive accounts
  • E. Reduce failed login out settings
  • F. Develop and implement updated access control policies

Answer: D,F

 

NEW QUESTION 354
......


Risk Management

Risk management involves a wide range of issues related to plans, procedures, and policies of organizational security. It also addresses the concepts of business analysis, risk management, incident response procedures, control types, disaster recovery, and data privacy and security issues. Within this domain, you will get to know more about agreement types, SLA, ISA, NDA, mission-essential functions, and threat assessment.


CompTIA SY0-501 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Install and Configure Systems to Devices
Topic 2
  • Install and Configure Systems to Networks
Topic 3
  • Install and Configure Systems to Secure Applications
Topic 4
  • Perform Threat Analysis and Respond with Appropriate Mitigation Techniques


Our SY0-501 practice test will include those topics:

  • Architecture and Design 15%
  • Threats, Attacks and Vulnerabilities 21%
  • Identity and Access Management 16%
  • Cryptography and PKI 12%

For more info visit: CompTIA Security

 

Latest SY0-501 Study Guides 2022 - With Test Engine PDF: https://itcert-online.newpassleader.com/CompTIA/SY0-501-exam-preparation-materials.html

Related Articles

more
CompTIA SY0-501 Certification Practice Exam