The latest CompTIA Security+ (SY0-501) certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the CompTIA Security+ (SY0-501) exam and earn CompTIA Security+ (SY0-501) certification.
Exam Question 561
A security analyst is testing both Windows and Linux systems for unauthorized DNS zone transfers within a LAN on comptia.org from example.org. Which of the following commands should the security analyst use? (Select two.)
A.
nslookup
comptia.org
set type=ANY
ls-d example.org
B.
nslookup
comptia.org
set type=MX
example.org
C. dig –axfr comptia.org @example.org
D. ipconfig /flushDNS
E.
ifconfig eth0 down
ifconfig eth0 up
dhclient renew
F. dig @example.org comptia.org
Correct Answer:
A.
nslookup
comptia.org
set type=ANY
ls-d example.org
C. dig –axfr comptia.org @example.org
Exam Question 562
A systems administrator is reviewing the following information from a compromised server:
A systems administrator is reviewing the following information from a compromised server
Given the above information, which of the following processes was MOST likely exploited via a remote buffer overflow attack?
A. Apache
B. LSASS
C. MySQL
D. TFTP
Correct Answer:
A. Apache
Exam Question 563
As part of the SDLC, a third party is hired to perform a penetration test. The third party will have access to the source code, integration tests, and network diagrams. Which of the following BEST describes the assessment being performed?
A. Black box
B. Regression
C. White box
D. Fuzzing
Correct Answer:
C. White box
Exam Question 564
An application developer is designing an application involving secure transports from one service to another that will pass over port 80 for a request.
Which of the following secure protocols is the developer MOST likely to use?
A. FTPS
B. SFTP
C. SSL
D. LDAPS
E. SSH
Correct Answer:
C. SSL
Exam Question 565
A systems administrator wants to protect data stored on mobile devices that are used to scan and record assets in a warehouse. The control must automatically destroy the secure container of mobile devices if they leave the warehouse. Which of the following should the administrator implement? (Select two.)
A. Geofencing
B. Remote wipe
C. Near-field communication
D. Push notification services
E. Containerization
Correct Answer:
A. Geofencing
E. Containerization
Exam Question 566
A security analyst is performing a quantitative risk analysis. The risk analysis should show the potential monetary loss each time a threat or event occurs. Given this requirement, which of the following concepts would assist the analyst in determining this value? (Select two.)
A. ALE
B. AV
C. ARO
D. EF
E. ROI
Correct Answer:
B. AV
D. EF
Exam Question 567
Which of the following AES modes of operation provide authentication? (Select two.)
A. CCM
B. CBC
C. GCM
D. DSA
E. CFB
Correct Answer:
A. CCM
C. GCM
Exam Question 568
system’s administrator has finished configuring firewall ACL to allow access to a new web server.
PERMIT TCP from: ANY to: 192.168.1.10:80
PERMIT TCP from: ANY to: 192.168.1.10:443
DENY TCP from: ANY to: ANY
The security administrator confirms form the following packet capture that there is network traffic from the internet to the web server:
TCP 10.23.243.2:2000->192.168.1.10:80 POST/default's
TCP 172.16.4.100:1934->192.168.1.10:80 GET/session.aspx?user1_sessionid=a12ad8741d8f7e7ac723847cBaa8231a
The company’s internal auditor issues a security finding and requests that immediate action be taken. With which of the following is the auditor MOST concerned?
A. Misconfigured firewall
B. Clear text credentials
C. Implicit deny
D. Default configuration
Correct Answer:
B. Clear text credentials
Exam Question 569
An in-house penetration tester is using a packet capture device to listen in on network communications.
This is an example of:
A. Passive reconnaissance
B. Persistence
C. Escalation of privileges
D. Exploiting the switch
Correct Answer:
A. Passive reconnaissance
Exam Question 570
A development team has adopted a new approach to projects in which feedback is iterative and multiple iterations of deployments are provided within an application’s full life cycle. Which of the following software development methodologies is the development team using?
A. Waterfall
B. Agile
C. Rapid
D. Extreme
Correct Answer:
B. Agile