Download CompTIA Security+.selftesttraining.SY0-501.2019-12-27.1e.410q.vcex

Download Exam

File Info

Exam CompTIA Security+
Number SY0-501
File Name CompTIA Security+.selftesttraining.SY0-501.2019-12-27.1e.410q.vcex
Size 2.6 Mb
Posted December 27, 2019
Downloads 231

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.

Purchase
Coupon: EXAM_HUB

Discount: 20%

 
 



Demo Questions

Question 1
Which of the following would a security specialist be able to determine upon examination of a server’s certificate?

  • A: CA public key
  • B: Server private key
  • C: CSR
  • D: OID



Question 2
A security analyst is diagnosing an incident in which a system was compromised from an external IP address. The socket identified on the firewall was traced to 207.46.130.0:6666. Which of the following should the security analyst do to determine if the compromised system still has an active connection?


  • A: tracert
  • B: netstat
  • C: ping
  • D: nslookup



Question 3
Multiple organizations operating in the same vertical want to provide seamless wireless access for their employees as they visit the other organizations. Which of the following should be implemented if all the organizations use the native 802.1x client on their mobile devices?

  • A: Shibboleth
  • B: RADIUS federation
  • C: SAML
  • D: OAuth
  • E: OpenID connect



Question 4
Which of the following BEST describes an important security advantage yielded by implementing vendor diversity?

  • A: Sustainability
  • B: Homogeneity
  • C: Resiliency
  • D: Configurability



Question 5
In a corporation where compute utilization spikes several times a year, the Chief Information Officer (CIO) has requested a cost-effective architecture to handle the variable capacity demand. Which of the following characteristics BEST describes what the CIO has requested?

  • A: Elasticity
  • B: Scalability
  • C: High availability
  • D: Redundancy



Question 6
A penetration tester is crawling a target website that is available to the public. Which of the following represents the actions the penetration tester is performing?

  • A: URL hijacking
  • B: Reconnaissance
  • C: White box testing
  • D: Escalation of privilege



Question 7
Which of the following best describes routine in which semicolons, dashes, quotes, and commas are removed from a string?

  • A: Error handling to protect against program exploitation
  • B: Exception handling to protect against XSRF attacks.
  • C: Input validation to protect against SQL injection.
  • D: Padding to protect against string buffer overflows.



Question 8
Refer to the following code:

  

Which of the following vulnerabilities would occur if this is executed?

  • A: Page exception
  • B: Pointer deference
  • C: NullPointerException
  • D: Missing null check



Question 9
Multiple employees receive an email with a malicious attachment that begins to encrypt their hard drives and mapped shares on their devices when it is opened. The network and security teams perform the following actions:
Shut down all network shares. 
Run an email search identifying all employees who received the malicious message. 
Reimage all devices belonging to users who opened the attachment. 
Next, the teams want to re-enable the network shares. Which of the following BEST describes this phase of the incident response process?

  • A: Eradication
  • B: Containment
  • C: Recovery
  • D: Lessons learned



Question 10
An organization has determined it can tolerate a maximum of three hours of downtime. Which of the following has been specified?

  • A: RTO
  • B: RPO
  • C: MTBF
  • D: MTTR






CONNECT US


ProfExam
PROFEXAM WITH A 20% DISCOUNT

You can buy ProfExam with a 20% discount..

Get Now!


HOW TO OPEN VCEX AND EXAM FILES

Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen



HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset