Download CompTIA Security+.SY0-501.PracticeTest.2018-03-31.80q.vcex
| Vendor: | CompTIA |
| Exam Code: | SY0-501 |
| Exam Name: | CompTIA Security+ |
| Date: | Mar 31, 2018 |
| File Size: | 632 KB |
How to open VCEX files?
Files with VCEX extension can be opened by ProfExam Simulator.
Purchase
Coupon: TAURUSSIM_20OFF
Discount: 20%
Demo Questions
Question 1
Which of the following explains why vendors publish MD5 values when they provide software patches for their customers to download over the Internet?
- The recipient can verify integrity of the software patch.
- The recipient can verify the authenticity of the site used to download the patch.
- The recipient can request future updates to the software using the published MD5 value.
- The recipient can successfully activate the new software patch.
Correct answer: A
Question 2
Refer to the following code:
Which of the following vulnerabilities would occur if this is executed?
- Page exception
- Pointer deference
- NullPointerException
- Missing null check
Correct answer: C
Question 3
Multiple employees receive an email with a malicious attachment that begins to encrypt their hard drives and mapped shares on their devices when it is opened. The network and security teams perform the following actions:
- Shut down all network shares.
- Run an email search identifying all employees who received the malicious message.
- Reimage all devices belonging to users who opened the attachment.
Next, the teams want to re-enable the network shares. Which of the following BEST describes this phase of the incident response process?
- Eradication
- Containment
- Recovery
- Lessons learned
Correct answer: C
Question 4
An organization has determined it can tolerate a maximum of three hours of downtime. Which of the following has been specified?
- RTO
- RPO
- MTBF
- MTTR
Correct answer: A
Question 5
Which of the following types of keys is found in a key escrow?
- Public
- Private
- Shared
- Session
Correct answer: B
Question 6
A security analyst is reviewing the following output from an IPS:
Given this output, which of the following can be concluded? (Select two.)
- The source IP of the attack is coming from 250.19.18.22.
- The source IP of the attack is coming from 250.19.18.71.
- The attacker sent a malformed IGAP packet, triggering the alert.
- The attacker sent a malformed TCP packet, triggering the alert.
- The TTL value is outside of the expected range, triggering the alert.
Correct answer: BC
Question 7
Despite having implemented password policies, users continue to set the same weak passwords and reuse old passwords.
Which of the following technical controls would help prevent these policy violations? (Select two.)
- Password expiration
- Password length
- Password complexity
- Password history
- Password lockout
Correct answer: AD
Question 8
Which of the following types of cloud infrastructures would allow several organizations with similar structures and interests to realize the benefits of shared storage and resources?
- Private
- Hybrid
- Public
- Community
Correct answer: D
Question 9
A company is currently using the following configuration:
- IAS server with certificate-based EAP-PEAP and MSCHAP
- Unencrypted authentication via PAP
A security administrator needs to configure a new wireless setup with the following configurations:
- PAP authentication method
- PEAP and EAP provide two-factor authentication
Which of the following forms of authentication are being used? (Select two.)
- PAP
- PEAP
- MSCHAP
- PEAP- MSCHAP
- EAP
- EAP-PEAP
Correct answer: AC
Question 10
An auditor wants to test the security posture of an organization by running a tool that will display the following:
Which of the following commands should be used?
- nbtstat
- nc
- arp
- ipconfig
Correct answer: A
HOW TO OPEN VCE FILES
Use VCE Exam Simulator to open VCE files
HOW TO OPEN VCEX FILES
Use ProfExam Simulator to open VCEX files
ProfExam at a 20% markdown
You have the opportunity to purchase ProfExam at a 20% reduced price
Get Now!