CompTIA SY0-501 Study Guides 2021

NEW QUESTION 1
A user typically works remotely over the holidays using a web-based VPN to access corporate resources. The user reports getting untrusted host errors and being unable to connect. Which of the following is MOST likely the case?

• A. The certificate has expired
• B. The browser does not support SSL
• C. The user's account is locked out
• D. The VPN software has reached the seat license maximum

Answer: A

NEW QUESTION 2
Which of the following types of keys is found in a key escrow?

• A. Public
• B. Private
• C. Shared
• D. Session

Answer: B

Explanation: https://www.professormesser.com/security-plus/sy0-401/key-escrow-3/

NEW QUESTION 3
A recent internal audit is forcing a company to review each internal business unit's VMs because the cluster they are installed on is in danger of running out of computer resources. Which of the following vulnerabilities exist?

• A. Buffer overflow
• B. End-of-life systems
• C. System sprawl
• D. Weak configuration

Answer: C

NEW QUESTION 4
Which of the following types of penetration test will allow the tester to have access only to password hashes prior to the penetration test?

• A. Black box
• B. Gray box
• C. Credentialed
• D. White box

Answer: B

NEW QUESTION 5
Due to regulatory requirements, server in a global organization must use time synchronization. Which of the following represents the MOST secure method of time synchronization?

• A. The server should connect to external Stratum 0 NTP servers for synchronization
• B. The server should connect to internal Stratum 0 NTP servers for synchronization
• C. The server should connect to external Stratum 1 NTP servers for synchronization
• D. The server should connect to external Stratum 1 NTP servers for synchronization

Answer: B

NEW QUESTION 6
A network administrator is attempting to troubleshoot an issue regarding certificates on a secure website. During the troubleshooting process, the network administrator notices that the web gateway proxy on the local network has signed all of the certificates on the local machine. Which of the following describes the type of attack the proxy has been legitimately programmed to perform?

• A. Transitive access
• B. Spoofing
• C. Man-in-the-middle
• D. Replay

Answer: C

NEW QUESTION 7
Which of the following would a security specialist be able to determine upon examination of a server’s certificate?

• A. CA public key
• B. Server private key
• C. CSR
• D. OID

Answer: D

NEW QUESTION 8
A security analyst is reviewing the following packet capture of an attack directed at a company's server located in the DMZ:

Which of the following ACLs provides the BEST protection against the above attack and any further attacks from the same IP, while minimizing service interruption?

• A. DENY TCO From ANY to 172.31.64.4
• B. Deny UDP from 192.168.1.0/24 to 172.31.67.0/24
• C. Deny IP from 192.168.1.10/32 to 0.0.0.0/0
• D. Deny TCP from 192.168.1.10 to 172.31.67.4

Answer: D

NEW QUESTION 9
Ann, a college professor, was recently reprimanded for posting disparaging remarks re-grading her coworkers on a web site. Ann stated that she was not aware that the public was able to view her remakes. Which of the following security-related trainings could have made Ann aware of the repercussions of her actions?

• A. Data Labeling and disposal
• B. Use of social networking
• C. Use of P2P networking
• D. Role-based training

Answer: B

NEW QUESTION 10
A hacker has a packet capture that contains:

Which of the following tools will the hacker use against this type of capture?

• A. Password cracker
• B. Vulnerability scanner
• C. DLP scanner
• D. Fuzzer

Answer: A

NEW QUESTION 11
The help desk received a call after hours from an employee who was attempting to log into the payroll server remotely. When the help desk returned the call the next morning, the employee was able to log into the server remotely without incident. However, the incident occurred again the next evening. Which of the following BEST describes the cause of the issue?

• A. The password expired on the account and needed to be reset
• B. The employee does not have the rights needed to access the database remotely
• C. Time-of-day restrictions prevented the account from logging in
• D. The employee's account was locked out and needed to be unlocked

Answer: C

NEW QUESTION 12
A security analyst is attempting to identify vulnerabilities in a customer's web application without impacting the system or its data. Which of the following BEST describes the vulnerability scanning concept performed?

• A. Aggressive scan
• B. Passive scan
• C. Non-credentialed scan
• D. Compliance scan

Answer: B

Explanation: Passive scanning is a method of vulnerability detection that relies on information gleaned from network data that is captured from a target computer without direct interaction.
Packet sniffing applications can be used for passive scanning to reveal information such as operating system, known protocols running on non-standard ports and active network applications with known bugs. Passive scanning may be conducted by a network administrator scanning for security vulnerabilities or by an intruder as a preliminary to an active attack.
For an intruder, passive scanning's main advantage is that it does not leave a trail that could alert users or administrators to their activities. For an administrator, the main advantage is that it doesn't risk causing undesired behavior on the target computer, such as freezes. Because of these advantages, passive scanning need not be limited to a narrow time frame to minimize risk or disruption, which means that it is likely to return more information.
Passive scanning does have limitations. It is not as complete in detail as active vulnerability scanning and cannot detect any applications that are not currently sending out traffic; nor can it distinguish false information put out for obfuscation.

NEW QUESTION 13
A security team wants to establish an Incident Response plan. The team has never experienced an incident. Which of the following would BEST help them establish plans and procedures?

• A. Table top exercises
• B. Lessons learned
• C. Escalation procedures
• D. Recovery procedures

Answer: A

NEW QUESTION 14
Which of the following is the GREATEST risk to a company by allowing employees to physically bring their personal smartphones to work?

• A. Taking pictures of proprietary information and equipment in restricted areas.
• B. Installing soft token software to connect to the company's wireless network.
• C. Company cannot automate patch management on personally-owned devices.
• D. Increases the attack surface by having more target devices on the company's campus

Answer: A

NEW QUESTION 15
Which of the following must be intact for evidence to be admissible in court?

• A. Chain of custody
• B. Order of volatility
• C. Legal hold
• D. Preservation

Answer: A

NEW QUESTION 16
Which of the following attack types is being carried out where a target is being sent unsolicited messages via Bluetooth?

• A. War chalking
• B. Bluejacking
• C. Bluesnarfing
• D. Rogue tethering

Answer: B

Explanation: Bluejacking is the sending of unsolicited messages over Bluetooth to Bluetooth-enabled devices such as mobile phones, PDAs or laptop computers, sending a vCard which typically contains a message in the name field (i.e., for bluedating or bluechat) to another Bluetooth-enabled device via the OBEX protocol.

NEW QUESTION 17
A security analyst is attempting to break into a client's secure network. The analyst was not given prior information about the client, except for a block of public IP addresses that are currently in use. After network enumeration, the analyst's NEXT step is to perform:

• A. a risk analysis.
• B. a vulnerability assessment.
• C. a gray-box penetration test.
• D. an external security audit.
• E. a red team exercise.

Answer: C

NEW QUESTION 18
An organization is moving its human resources system to a cloud services provider.
The company plans to continue using internal usernames and passwords with the service provider, but the security manager does not want the service provider to have a company of the passwords. Which of the following options meets all of these requirements?

• A. Two-factor authentication
• B. Account and password synchronization
• C. Smartcards with PINS
• D. Federated authentication

Answer: D