Enjoy 15% Discount With Coupon 15off

CompTIA SY0-601 CompTIA Security+ Exam Online Training

CompTIA SY0-601 CompTIA Security+ Exam Online Training

CompTIA SY0-601 Online Training

The questions for SY0-601 were last updated at Jan 28,2025.
  • Exam Code: SY0-601
  • Exam Name: CompTIA Security+ Exam
  • Certification Provider: CompTIA
  • Latest update: Jan 28,2025
Question #31

A network analyst is setting up a wireless access point for a home office in a remote, rural location. The requirement is that users need to connect to the access point securely but do not want to have to remember passwords.

Which of the following should the network analyst enable to meet the requirement?

  • A . MAC address filtering
  • B . 802.1X
  • C . Captive portal
  • D . WPS

Reveal Solution Hide Solution

Question #32

Which of the following environments utilizes dummy data and is MOST likely to be installed locally on a system that allows code to be assessed directly and modified easily with each build?

  • A . Production
  • B . Test
  • C . Staging
  • D . Development

Reveal Solution Hide Solution

Question #33

While reviewing pcap data, a network security analyst is able to locate plaintext usernames and passwords being sent from workstations to network witches.

Which of the following is the security analyst MOST likely observing?

  • A . SNMP traps
  • B . A Telnet session
  • C . An SSH connection
  • D . SFTP traffic

Reveal Solution Hide Solution

Question #34

A client sent several inquiries to a project manager about the delinquent delivery status of some critical reports. The project manager claimed the reports were previously sent via email, but then quickly generated and backdated the reports before submitting them as plain text within the body of a new email message thread.

Which of the following actions MOST likely supports an investigation for fraudulent submission?

  • A . Establish chain of custody.
  • B . Inspect the file metadata.
  • C . Reference the data retention policy.
  • D . Review the email event logs

Reveal Solution Hide Solution

Question #35

A new vulnerability in the SMB protocol on the Windows systems was recently discovered, but no patches are currently available to resolve the issue. The security administrator is concerned tf servers in the company’s DMZ will be vulnerable to external attack; however, the administrator cannot disable the service on the servers, as SMB is used by a number of internal systems and applications on the LAN.

Which of the following TCP ports should be blocked for all external inbound connections to the DMZ as a workaround to protect the servers? (Select TWO).

  • A . 135
  • B . 139
  • C . 143
  • D . 161
  • E . 443
  • F . 445

Reveal Solution Hide Solution

Question #36

When planning to build a virtual environment, an administrator need to achieve the following,

• Establish polices in Limit who can create new VMs

• Allocate resources according to actual utilization‘

• Require justification for requests outside of the standard requirements.

• Create standardized categories based on size and resource requirements.

Which of the following is the administrator MOST likely trying to do?

  • A . Implement IaaS replication
  • B . Product against VM escape
  • C . Deploy a PaaS
  • D . Avoid VM sprawl

Reveal Solution Hide Solution

Question #37

A security analyst wants to verify that a client-server (non-web) application is sending encrypted traffic.

Which of the following should the analyst use?

  • A . openssl
  • B . hping
  • C . netcat
  • D . tcpdump

Reveal Solution Hide Solution

Question #38

Ann, a customer, received a notification from her mortgage company stating her PII may be shared with partners, affiliates, and associates to maintain day-to-day business operations.

Which of the following documents did Ann receive?

  • A . An annual privacy notice
  • B . A non-disclosure agreement
  • C . A privileged-user agreement
  • D . A memorandum of understanding

Reveal Solution Hide Solution

Question #39

A large enterprise has moved all its data to the cloud behind strong authentication and encryption. A sales director recently had a laptop stolen, and later, enterprise data was found to have been compromised from a local database.

Which of the following was the MOST likely cause?

  • A . Shadow IT
  • B . Credential stuffing
  • C . SQL injection
  • D . Man in the browser
  • E . Bluejacking

Reveal Solution Hide Solution

Question #40

The following are the logs of a successful attack.

Which of the following controls would be BEST to use to prevent such a breach in the future?

  • A . Password history
  • B . Account expiration
  • C . Password complexity
  • D . Account lockout

Reveal Solution Hide Solution

Previous Questions Next Questions
Latest SY0-601 Dumps Valid Version with 396 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SY0-601 PDF
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments

Related Posts

04Oct

CompTIA 220-1002 CompTIA A+ Certification Exam: Core 2 Online Training

Question #1 Which of the following is a reason to use WEP over WPA? A . Device compatibilityB . Increased securityC .... read more

19Oct

CompTIA SY0-501 CompTIA Security+ Online Training

Question #1 DRAG DROP A security administrator wants to implement strong security on the company smart phones and terminal servers located... read more

30Oct

CompTIA SK0-004 CompTIA Server+ Online Training

Question #1 A technician is installing an operating system on a server using source files on a USB storage device. The... read more

14Aug

CompTIA PK0-005 CompTIA Project+Certification Online Training

Question #1 A PM has identified all the resources involved in a project. The next step is to identify which resources... read more

04Sep

CompTIA N10-008 CompTIA Network+Exam Online Training

Question #1 A systems administrator needs to improve WiFi performance in a densely populated office tower and use the latest standard.... read more

19Nov

CompTIA CV0-003 CompTIA Cloud+ Certification Exam Online Training

Question #1 A company has decided to scale its e-commerce application from its corporate datacenter to a commercial cloud provider to... read more

25Feb

CompTIA CS0-003 CompTIA Cybersecurity Analyst (CySA+) Exam Online Training

Question #1 A recent zero-day vulnerability is being actively exploited, requires no user interaction or privilege escalation, and has a significant... read more

20Oct

CompTIA 220-1001 CompTIA A+ Certification Exam: Core 1 Online Training

Question #1 Which of the following is the MOST likely cause for a network PC to have an APIPA address? A .... read more

13Aug

CompTIA 220-1101 CompTIA A+ Certification Exam: Core 1 Online Training

Question #1 A user sends a print job lo a network printer, and the print job uses double the amount of... read more

11Oct

CompTIA CV0-001 CompTIA Cloud+ Certification Exam Online Training

Question #1 Which of the following is a subcomponent of a virtual machine? A . Virtual switchB . Virtual HBAC . Virtual... read more