SY0-501 Exam Dumps V23.02 Is Available For CompTIA Security+ Certification

1. Which of the following would provide a safe environment for an application to access only the resources needed to function while not having access to run at the system level?

2. Which of the following attacks is used to capture the WPA2 handshake?

3. A user loses a COPE device.

Which of the following should the user do NEXT to protect the data on the device?

4. A government agency with sensitive information wants to virtualize its infrastructure.

Which of the

following cloud deployment models BEST fits the agency's needs?

5. An organization is developing its mobile device management policies and procedures and is concerned about vulnerabilities that are associated with sensitive data being saved to a mobile device, as well as weak authentication when using a PIN. As part of some discussions on the topic, several solutions are proposed.

Which of the following controls, when required together, will address the protection of data-at- rest as well as strong authentication? (Choose two.)

6. Which of the following is the BEST use of a WAF?

7. The CSIRT is reviewing the lessons learned from a recent incident. A worm was able to spread unhindered throughout the network and infect a large number of computers and server.

Which of the following recommendations would be BEST to mitigate the impacts of a similar incident in the future?

8. A small business just recovered from a ransomware attack against its file servers by purchasing the decryption keys from the attackers. The issue was triggered by a phishing email and IT administrator wants to ensure it does not happen again.

Which of the following should the IT administrator do FIRST after recovery?

9. A forensics investigator is examining a number of unauthorized payments that were reported on the company's website. Some unusual log entries show users received an email for an unwanted mailing attempt to unsubscribe.

One of the users reported the email to the phishing team, and the forwarded email revealed the link to be:

<a href="https://www.company.com/payto.do?

routing=00001111&acct=22223334&amount=250">Click here to unsubscribe</a>

Which of the following will the forensics investigator MOST likely determine has occurred?

10. A security administrator suspects there may be unnecessary services running on a server.

Which of the following tools will the administrator MOST likely use to confirm the suspicions?

11. A network administrator at a large organization is reviewing methods to improve the security of the wired LAN. Any security improvement must be centrally managed and allow corporate-owned devices to have access to the intranet but limit others to Internet access only.

Which of the following should the administrator recommend?

12. Which of the following BEST explains the reason why a server administrator would place a document named password.txt on the desktop of an administrator account on a server?

13. In which of the following risk management strategies would cybersecurity insurance be used?

14. A security engineer at an offline government facility is concerned about the validity of an SSL certificate. The engineer wants to perform the fastest check with the least delay to determine if the certificate has been revoked.

Which of the following would BEST meet these requirements?

15. A company needs to fix some audit findings related to its physical security. A key finding was that multiple people could physically enter a location at the same time.

Which of the following is the BEST control to address this audit finding?

16. A network administrator was concerned during an audit that users were able to use the same passwords the day after a password change policy took effect.

The following settings are in place:

- Users must change their passwords every 30 days.

- Users cannot reuse the last 10 passwords.

Which of the following settings would prevent users from being able to immediately reuse the same passwords?

17. After successfully breaking into several networks and infecting multiple machines with malware, hackers contact the network owners, demanding payment to remove the infection and decrypt files. The hackers threaten to publicly release information about the breach if they are not paid.

Which of the following BEST describes these attackers?

18. When implementing automation with IoT devices, which of the following should be considered FIRST to keep the network secure?

19. A local coffee shop runs a small WiFi hotspot for its customers that utilizes WPA2-PSK. The coffee shop would like to stay current with security trends and wants to implement WPA3 to make its WiFi even more secure.

Which of the following technologies should the coffee shop use in place of PSK?

20. Hotspot Question

The security administration has installed a new firewall which implements an implicit DENY policy by default.

INSTRUCTIONS

Click on the firewall and configure it to allow ONLY the following communication:

- The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks.

- The HR workstation should be restricted to communicate with the Financial server ONLY, over the default SCP port.

- The Admin workstation should ONLY be able to access the server on the secure network over the default TFTP port.

The firewall will process the rules in a top-down manner in order as a first match. The port number must be typed in and only one port number can be entered per rule. Type ANY for all ports.

If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.