최신 SY0-601 무료덤프 - CompTIA Security+

문제1

An administrator needs to perform server hardening before deployment. Which of the following steps should the administrator take? (Select two).

A. Disable default accounts.

B. Remove unnecessary services.

C. Join the server to the corporate domain.

D. Send server logs to the SIEM.

E. Add the server to the asset inventory.

F. Document default passwords.

정답: A,B

문제2

A security practitioner completes a vulnerability assessment on a company's network and finds several vulnerabilities, which the operations team remediates. Which of the following should be done next?

A. Rescan the network.

B. Submit a report.

C. Conduct an audit.

D. Initiate a penetration test.

정답: A

문제3

A security engineer is reviewing the logs from a SAML application that is configured to use MFA, during this review the engineer notices a high volume of successful logins that did not require MFA from users who were traveling internationally. The application, which can be accessed without a VPB, has a policy that allows time-based tokens to be generated. Users who changed locations should be required to reauthenticate but have been Which of the following statements BEST explains the issue?

A. The access device has a trusted certificate installed that is overwriting the session token

B. The user's IP address is changing between logins, bur the application is not invalidating the token

C. OpenID is mandatory to make the MFA requirements work

D. An incorrect browser has been detected by the SAML application

정답: B

문제4

Which of the following requirements apply to a CYOD policy? (Select two).

A. The user can request to customize the device.

B. Personal applications cannot be loaded on the phone.

C. The company retains ownership of the phone.

D. Employee-owned devices must run antivirus.

E. The end users can supply their own personal devices.

F. The company should support only one model of phone.

정답: A,C

문제5

A company would like to enhance the authentication technologies being used by remote employees. Which of the following should the company most likely choose?

A. Gait analysis

B. Token key

C. Iris scan

D. Voice recognition

정답: B

문제6

A security analyst is investigating what appears to be unauthorized access to a corporate web application. The security analyst reviews the web server logs and finds the following entries:

Which of the following password attacks is taking place?

A. Brute-force

B. Dictionary

C. Rainbow table

D. Spraying

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제7

A security analyst was asked to evaluate a potential attack that occurred on a publicly accessible section of the company's website. The malicious actor posted an entry in an attempt to trick users into clicking the following:

Which of the following was most likely observed?

A. xss

B. SQLi

C. Session replay

D. DLL injection

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제8

Which of the following would be best suited for constantly changing environments?

A. SCADA

B. Embedded systems

C. Containers

D. RTOS

정답: D

문제9

A network security manager wants to implement periodic events that will test the security team's preparedness for incidents in a controlled and scripted manner, Which of the following concepts describes this scenario?

A. Business continuity plan testing

B. Red-team exercise

C. Functional exercise

D. Tabletop exercise

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제10

A prospective customer is interested in seeing the type of data that can be retrieved when a customer uses a company's services. An engineer at the company sends the following documentation before reviewing it:

The prospective customer is concerned. Which of the following will best resolve the concern?

A. CASB

B. Data sanitization

C. Software updates

D. Log aggregation

정답: B

문제11

A security analyst is investigating a report from a penetration test. During the penetration test, consultants were able to download sensitive data from a back-end server. The back-end server was exposing an API that should have only been available from the companVs mobile application. After reviewing the back-end server logs, the security analyst finds the following entries

Which of the following is the most likely cause of the security control bypass?

A. IP address allow list

B. user-agent spoofing

C. WAF bypass

D. Referrer manipulation

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제12

During an assessment, a systems administrator found several hosts running FTP and decided to immediately block FTP communications at the firewall. Which of the following describes the greatest risk associated with using FTP?

A. Users can upload personal files

B. Credentials are sent in cleartext.

C. FTP is prohibited by internal policy.

D. Private data can be leaked

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제13

A report delivered to the Chief Information Security Officer (CISO) shows that some user credentials could be exfiltrated. The report also indicates that users tend to choose the same credentials on different systems and applications. Which of the following policies should the CISO use to prevent someone from using the exfiltrated credentials?

A. Time-based logins

B. Password history

C. MFA

D. Lockout

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제14

Which of the following describes a social engineering technique that may include scam emails addressed directly to the Chief Financial Officer?

A. Vishing

B. Spear phishing

C. Pharming

D. Smishing

정답: B

문제15

As accounting clerk sent money to an attacker's bank account after receiving fraudulent instructions to use a new account. Which of the following would most likely prevent this activity in the future?

A. Standardizing security incident reporting

B. Executing regular phishing campaigns

C. Updating processes for sending wire transfers

D. Implementing insider threat detection measures

정답: C

최신 SY0-601 무료덤프 - CompTIA Security+

우리와 연락하기

유용한 링크

최신 업데이트