Top Tips Of Improved SY0-601 Practice

NEW QUESTION 1
A user enters a password to log in to a workstation and is then prompted to enter an authentication code. Which of the following MFA factors or attributes are being utilized in the authentication process? (Select TWO).

• A. Something you know
• B. Something you have
• C. Somewhere you are
• D. Someone you are
• E. Something you are
• F. Something you can do

Answer: BE

NEW QUESTION 2
Which of the following refers to applications and systems that are used within an organization without consent or approval?

• A. Shadow IT
• B. OSINT
• C. Dark web
• D. Insider threats

Answer: A

NEW QUESTION 3
A company wants to deploy PKI on its Internet-facing website. The applications that are currently deployed are:
www.company.com (main website)
contactus.company.com (for locating a nearby location)
quotes.company.com (for requesting a price quote)
The company wants to purchase one SSL certificate that will work for all the existing applications and any future applications that follow the same naming conventions, such as store.company.com. Which of the following certificate types would BEST meet the requirements?

• A. SAN
• B. Wildcard
• C. Extended validation
• D. Self-signed

Answer: B

NEW QUESTION 4
A company's Chief Information Office (CIO) is meeting with the Chief Information Security Officer (CISO) to plan some activities to enhance the skill levels of the company's developers. Which of the following would be MOST suitable for training the developers'?

• A. A capture-the-flag competition
• B. A phishing simulation
• C. Physical security training
• D. Baste awareness training

Answer: B

NEW QUESTION 5
A host was infected with malware. During the incident response, Joe, a user, reported that he did not receive any emails with links, but he had been browsing the Internet all day. Which of the following would MOST likely show where the malware originated?

• A. The DNS logs
• B. The web server logs
• C. The SIP traffic logs
• D. The SNMP logs

Answer: A

NEW QUESTION 6
A network administrator needs to build out a new datacenter, with a focus on resiliency and uptime. Which of the following would BEST meet this objective? (Choose two.)

• A. Dual power supply
• B. Off-site backups
• C. Automatic OS upgrades
• D. NIC teaming
• E. Scheduled penetration testing
• F. Network-attached storage

Answer: AB

NEW QUESTION 7
A network engineer is troubleshooting wireless network connectivity issues that were reported by users. The issues are occurring only in the section of the building that is closest to the parking lot. Users are intermittently experiencing slow speeds when accessing websites and are unable to connect to network drives. The issues appear to increase when laptop users return desks after using their devices in other areas of the building. There have also been reports of users being required to enter their credentials on web pages in order to gain access to them. Which of the following is the MOST likely cause of this issue?

• A. An external access point is engaging in an evil-twin attack.
• B. The signal on the WAP needs to be increased in that section of the building.
• C. The certificates have expired on the devices and need to be reinstalled.
• D. The users in that section of the building are on a VLAN that is being blocked by the firewall.

Answer: A

NEW QUESTION 8
A company is launching a new internet platform for its clients. The company does not want to implement its own authorization solution but instead wants to rely on the authorization provided by another platform. Which of the following is the BEST approach to implement the desired solution?

• A. OAuth
• B. TACACS+
• C. SAML
• D. RADIUS

Answer: D

NEW QUESTION 9
A security analyst needs to be proactive in understand the types of attacks that could potentially target the company's execute. Which of the following intelligence sources should to security analyst review?

• A. Vulnerability feeds
• B. Trusted automated exchange of indicator information
• C. Structured threat information expression
• D. Industry information-sharing and collaboration groups

Answer: D

NEW QUESTION 10
A network administrator has been asked to install an IDS to improve the security posture of an organization. Which of the following control types is an IDS?

• A. Corrective
• B. Physical
• C. Detective
• D. Administrative

Answer: C

NEW QUESTION 11
A security analyst is performing a packet capture on a series of SOAP HTTP requests for a security assessment. The analyst redirects the output to a file After the capture is complete, the analyst needs to review the first transactions quickly and then search the entire series of requests for a particular string Which of the following would be BEST to use to accomplish the task? (Select TWO).

• A. head
• B. Tcpdump
• C. grep
• D. rail
• E. curl
• F. openssi
• G. dd

Answer: AB

NEW QUESTION 12
Which of the following technical controls is BEST suited for the detection and prevention of buffer overflows on hosts?

• A. DLP
• B. HIDS
• C. EDR
• D. NIPS

Answer: C

NEW QUESTION 13
An organization is concerned that is hosted web servers are not running the most updated version of the software. Which of the following would work BEST to help identify potential vulnerabilities?

• A. Hping3 –s comptia, org –p 80
• B. Nc -1 –v comptia, org –p 80
• C. nmp comptia, org –p 80 –aV
• D. nslookup –port=80 comtia.org

Answer: C

NEW QUESTION 14
The following is an administrative control that would be MOST effective to reduce the occurrence of malware execution?

• A. Security awareness training
• B. Frequency of NIDS updates
• C. Change control procedures
• D. EDR reporting cycle

Answer: A

NEW QUESTION 15
Which of the following provides the BEST protection for sensitive information and data stored in cloud-based services but still allows for full functionality and searchability of data within the cloud-based services?

• A. Data encryption
• B. Data masking
• C. Anonymization
• D. Tokenization

Answer: A

NEW QUESTION 16
A security analyst receives the configuration of a current VPN profile and notices the authentication is only applied to the IP datagram portion of the packet. Which of the following should the analyst implement to authenticate the entire packet?

• A. AH
• B. ESP
• C. SRTP
• D. LDAP

Answer: B

NEW QUESTION 17
A Chief Executive Officer's (CEO) personal information was stolen in a social engineering attack. Which of the following sources would reveal if the CEO's personal information is for sale?

• A. Automated information sharing
• B. Open-source intelligence
• C. The dark web
• D. Vulnerability databases

Answer: C

NEW QUESTION 18
While checking logs, a security engineer notices a number of end users suddenly downloading files with the .t ar.gz extension. Closer examination of the files reveals they are PE32 files. The end users state they did not initiate any of the downloads. Further investigation reveals the end users all clicked on an external email containing an infected MHT file with an href link a week prior. Which of the following is MOST likely occurring?

• A. A RAT was installed and is transferring additional exploit tools.
• B. The workstations are beaconing to a command-and-control server.
• C. A logic bomb was executed and is responsible for the data transfers.
• D. A fireless virus is spreading in the local network environment.

Answer: A

NEW QUESTION 19
Which of the following will MOST likely adversely impact the operations of unpatched traditional programmable-logic controllers, running a back-end LAMP server and OT systems with human-management interfaces that are accessible over the Internet via a web interface? (Choose two.)

• A. Cross-site scripting
• B. Data exfiltration
• C. Poor system logging
• D. Weak encryption
• E. SQL injection
• F. Server-side request forgery

Answer: DF

NEW QUESTION 20
A company recently experienced a data breach and the source was determined to be an executive who was charging a phone in a public area. Which of the following would MOST likely have prevented this breach?

• A. A firewall
• B. A device pin
• C. A USB data blocker
• D. Biometrics

Answer: C

NEW QUESTION 21
......