2023年最新の本日更新された最新のSY0-601のPDFにはSY0-601テスト限定無料! [Q468-Q486]

Share

2023年最新の本日更新された最新のSY0-601のPDFにはSY0-601テスト限定無料!

完全版最新の問題集PDFで最新SY0-601試験問題と解答


CompTIA SY0-601 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • アプリケーションとコーディングの脆弱性を要約し、それらを軽減するように設計された開発と展開の方法を特定します
  • ネットワークベースとホストベースのセキュリティテクノロジーをインストールして構成します
トピック 2
  • 組織のセキュリティの原則と効果的なセキュリティポリシーの要素を理解する
トピック 3
  • 暗号化標準と製品の技術と使用法を知る
  • Webおよび通信技術にセキュリティを適用するために使用される標準と製品を説明する
トピック 4
  • ワイヤレスおよびリモートアクセスのセキュリティがどのように実施されているかを説明する
  • ビジネスの継続性、フォールトトレランス、およびディザスタリカバリを確保するための戦略を特定する
トピック 5
  • ネットワークとホストを攻撃するためにサイバー攻撃者によって開発された戦略と、それらを防御するために展開された対抗策を特定します

 

質問 468
An attack has occurred against a company.
INSTRUCTIONS
You have been tasked to do the following:
Identify the type of attack that is occurring on the network by clicking on the attacker's tablet and reviewing the output. (Answer Area 1).
Identify which compensating controls should be implemented on the assets, in order to reduce the effectiveness of future attacks by dragging them to the correct server.
(Answer area 2) All objects will be used, but not all placeholders may be filled. Objects may only be used once.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

正解:

解説:

 

質問 469
A user must introduce a password and a USB key to authenticate against a secure computer, and authentication is limited to the state in which the company resides. Which of the following authentication concepts are in use?

  • A. Something you know, something you have, and somewhere you are
  • B. Something you know, something you can do, and somewhere you are
  • C. Something you are, something you know, and something you can exhibit
  • D. Something you have, somewhere you are, and someone you know

正解: A

 

質問 470
A SOC operator is receiving continuous alerts from multiple Linux systems indicating that unsuccessful SSH attempts to a functional user ID have been attempted on each one of them in a short period of time. Which of the following BEST explains this behavior?

  • A. Logic bomb
  • B. Malware bot
  • C. Rainbow table attack
  • D. Password spraying

正解: D

解説:
Password Spraying is a variant of what is known as a brute force attack. In a traditional brute force attack, the perpetrator attempts to gain unauthorized access to a single account by guessing the password "repeatedly" in a very short period of time.

 

質問 471
Which of the following statements BEST describes zero-day exploits'?

  • A. Discovering zero-day exploits is always performed via bug bounty programs
  • B. A zero-day exploit is initially undetectable and no patch for it exists
  • C. Zero-day exploits have their own scoring category in CVSS
  • D. When a zero-day exploit is discovered, the system cannot be protected by any means

正解: B

 

質問 472
A security analyst was deploying a new website and found a connection attempting to authenticate on the site's portal. While Investigating The incident, the analyst identified the following Input in the username field:

Which of the following BEST explains this type of attack?

  • A. SQLi on the field to bypass authentication
  • B. Code to execute a race condition on the server
  • C. DLL injection to hijack administrator services
  • D. Execution of a stored XSS on the website

正解: A

 

質問 473
A cybersecurity department purchased o new PAM solution. The team is planning to randomize the service account credentials of the Windows server first. Which of the following would be the BEST method to increase the security on the Linux server?

  • A. Use only guest accounts to connect.
  • B. Use SSH keys and remove generic passwords
  • C. Remove all user accounts.
  • D. Randomize the shared credentials

正解: B

 

質問 474
A security engineer at an offline government facility is concerned about the validity of an SSL certificate. The engineer wants to perform the fastest check with the least delay to determine if the certificate has been revoked. Which of the following would BEST these requirement?

  • A. RA
  • B. CSR
  • C. CRL
  • D. OCSP

正解: C

解説:
A CRL can still be preferred over the use of OCSP if a server has issued many certificates to be validated within a single revocation period. It may be more efficient for the organization to download a CRL at the beginning of the revocation period than to utilize the OCSP standard, necessitating an OCSP response every time a certificate requires validation.

 

質問 475
Which of the following would be indicative of a hidden audio file found inside of a piece of source code?

  • A. Homomotphic encryption
  • B. Cipher surte
  • C. Steganography
  • D. Blockchain

正解: A

 

質問 476
The database administration team is requesting guidance for a secure solution that will ensure confidentiality of cardholder data at rest only in certain fields in the database schem
a. The requirement is to substitute a sensitive data field with a non-sensitive field that is rendered useless if a data breach occurs Which of the following is the BEST solution to meet the requirement?

  • A. Tokenization
  • B. Masking
  • C. Full disk encryption
  • D. Mirroring

正解: B

 

質問 477
An organization has hired a security analyst to perform a penetration test. The analyst captures 1Gb worth of inbound network traffic to the server and transfers the pcap back to the machine for analysis. Which of the following tools should the analyst use to further review the pcap?

  • A. Wireshark
  • B. Netcat
  • C. cURL
  • D. Nmap

正解: A

解説:
Explanation/Reference:

 

質問 478
An organization discovered files with proprietary financial data have been deleted. The files have been recovered from backup but every time the Chief Financial Officer logs in to the file server, the same files are deleted again No other users are experiencing this issue. Which of the following types of malware is MOST likely causing this behavior?

  • A. Remote access Trojan
  • B. Logic bomb
  • C. Crypto malware
  • D. Spyware

正解: B

解説:
Logic bomb: a set of instructions secretly incorporated into a program so that if a particular condition is satisfied they will be carried out, usually with harmful effects.

 

質問 479
To reduce and limit software and infrastructure costs, the Chief Information Officer has requested to move email services to the cloud. The cloud provider and the organization must have security controls to protect sensitive dat a. Which of the following cloud services would BEST accommodate the request?

  • A. Daas
  • B. Paas
  • C. SaaS
  • D. laas

正解: C

 

質問 480
A recent audit uncovered a key finding regarding the use of a specific encryption standard in a web application that is used to communicate with business customers. Due to the technical limitations of its customers the company is unable to upgrade the encryption standard.
Which of the following types of controls should be used to reduce the risk created by this scenario?

  • A. Compensating
  • B. Detective
  • C. Physical
  • D. Preventive

正解: A

 

質問 481
A new security engineer has started hardening systems. One o( the hardening techniques the engineer is using involves disabling remote logins to the NAS. Users are now reporting the inability lo use SCP to transfer files to the NAS, even though the data is still viewable from the users' PCs. Which of the following is the MOST likely cause of this issue?

  • A. TFTP was disabled on the local hosts.
  • B. Remote login was disabled in the networkd.conf instead of using the sshd. conf.
  • C. SSH was turned off instead of modifying the configuration file.
  • D. Network services are no longer running on the NAS

正解: C

解説:
SSH is used to securely transfer files to the remote server and is required for SCP to work. Disabling SSH will prevent users from being able to use SCP to transfer files to the server. To enable SSH, the security engineer should modify the SSH configuration file (sshd.conf) and make sure that SSH is enabled. For more information on hardening systems and the security techniques that can be used, refer to the CompTIA Security+ SY0-601 Official Text Book and Resources.

 

質問 482
A network analyst is setting up a wireless access point for a home office in a remote, rural location. The requirement is that users need to connect to the access point securely but do not want to have to remember passwords.
Which of the following should the network analyst enable to meet the requirement?

  • A. 802.1X
  • B. MAC address filtering
  • C. Captive portal
  • D. WPS

正解: D

 

質問 483
A nationwide company is experiencing unauthorized logins at all hours of the day. The logins appear to originate from countries in which the company has no employees.
Which of the following controls should the company consider using as part of its IAM strategy?
(Select TWO).

  • A. An impossible travel policy
  • B. Time-based logins
  • C. Geolocation
  • D. Self-service password reset
  • E. A complex password policy
  • F. Geofencing

正解: C,E

 

質問 484
Which of the following environments utilizes dummy data and is MOST likely to be installed locally on a system that allows code to be assessed directly and modified easily with each build?

  • A. Production
  • B. Development
  • C. Test
  • D. Staging

正解: C

 

質問 485
A company was compromised, and a security analyst discovered the attacker was able to get access to a service account. The following logs were discovered during the investigation:

Which of the following MOST likely would have prevented the attacker from learning the service account name?

  • A. Proper error handling
  • B. Forward web server logs to a SIEM
  • C. Race condition testing
  • D. Input sanitization

正解: A

 

質問 486
......

無料SY0-601試験問題SY0-601実際の無料試験問題:https://jp.fast2test.com/SY0-601-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어