最新的CompTIA SYO-501免費考試真題

問題1

A newly hired Chief Security Officer (CSO) is reviewing the company's IRP and notices the procedures for zero-day malware attacks are being poorly executed, resulting m the CSIRT failing to address and coordinate malware removal from the system. Which of the following phases would BEST address these shortcomings?

A. Eradication

B. Preparation

C. Recovery

D. Lessons learned

E. Identification

正確答案: D

問題2

A company has a team of penetration testers. This team has located a file on the company file server that they believe contains cleartext usernames followed by a hash. Which of the following tools should the penetration testers use to learn more about the content of this file?

A. Netcat

B. Password cracker

C. Exploitation framework

D. Vulnerability scanner

正確答案: B

問題3

Which of the following physical security controls is MOST effective when trying to prevent tailgating?

A. CCTV

B. Mantrap

C. Biometrics

D. Motion detection

E. RfiD badge

正確答案: B

問題4

A security administrator wants to implement strong security on the company smart phones and terminal servers located in the data center.
Drag and drop the applicable controls to each asset types?
Instructions: Controls can be used multiple times and not all placeholders need to be filled. When you have completed the simulation, please select the Done button to submit.

正確答案:

問題5

An organization recently acquired an ISO 27001 certification. Which of the following would MOST likely be considered a benefit of this certification?

A. It certifies the organization can work with foreign entities that require a security clearance.

B. It allows for the sharing of digital forensics data across organizations.

C. It provides insurance in case of a data breach.

D. It assures customers that the organization meets security standards.

E. It provides complimentary training and certification resources to IT security staff.

正確答案: D

問題6

Which of the following would have the GREATEST impact on the supporting, database server if input handling is not properly implemented on a web application?

A. Insecure direct object reference

B. Command injection

C. Server-side request forgery

D. Cross-site request forgery

E. Cross-site scripting

正確答案: C

問題7

During a penetration test, Joe, an analyst, contacts the target's service desk Impersonating a user, he attempts to obtain assistance with resetting an email password. Joe claims this needs to be done as soon as possible, as he is the vice president of sales and does not want to contact the Chief Operations Officer (COO) for approval, since the COO is on vacation. When challenged. Joe reaffirms that he needs this done immediately, and threatens to contact the service desk supervisor over the issue. Which of the following social engineering principles is Joe employing in this scenario? (Select TWO).

A. Authority

B. Consensus

C. Scarcity

D. Intimidation

E. Familiarity

正確答案: A,E

問題8

Which of the following BEST describes a defense-in-depth strategy?

A. The security architect scans servers daily with a vulnerability scanner and conducts weekly penetration-testing exercises

B. A security administrator places a web server behind two firewalls from two different vendors with only ports 80 and 443 open

C. The security team configures an application-whitelisting program on endpoints and installs NIDS.

D. Outbound traffic travels through a proxy and a stateful firewall with ports 80 and 443 open

正確答案: C

問題9

A technician suspects that a desktop was compromised with a rootkit. After removing lhe hard drive from the desktop and running an offline file integrity check, the technician reviews the following output:

Based on the above output, which of the following is the malicious file?

A. notepad.exe

B. kernel.dll

C. httpd.axe

D. lsass.exe

正確答案: B

最新的CompTIA Security+ Certification - SYO-501免費考試真題

聯系我們

站內鏈接

最新更新