[Q202-Q216] SY0-601 PDF Download Jul-2023 CompTIA Test To Gain Brilliante Result!

25 Jul, 2023 By admin SY0-601, CompTIA 0 Comments

[Q202-Q216] SY0-601 PDF Download Jul-2023 CompTIA Test To Gain Brilliante Result!

Rate this post

SY0-601 PDF Download Jul-2023 CompTIA Test To Gain Brilliante Result!

Provide Updated CompTIA SY0-601 Dumps as Practice Test and PDF

QUESTION 202
DRAG DROP
An attack has occurred against a company.
INSTRUCTIONS
You have been tasked to do the following:
Identify the type of attack that is occurring on the network by clicking on the attacker’s tablet and reviewing the output. (Answer Area 1).
Identify which compensating controls should be implemented on the assets, in order to reduce the effectiveness of future attacks by dragging them to the correct server.
(Answer area 2) All objects will be used, but not all placeholders may be filled. Objects may only be used once.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

QUESTION 203
An organization routes all of its traffic through a VPN Most users are remote and connect into a corporate data center that houses confidential information There is a firewall at the internet border, followed by a DLP appliance, the VPN server and the data center itself Which of the following is the weakest design element?

The DLP appliance should be integrated into a NGFW.

Split-tunnel connections can negatively impact the DLP appliance’s performance.

Encrypted VPN traffic will not be inspected when entering or leaving the network.

Adding two hops in the VPN tunnel may slow down remote connections

QUESTION 204
A user reports constant lag and performance issues with the wireless network when working at a local coffee shop. A security analyst walks the user through an installation of Wireshark and get a five-minute pcap to analyze. The analyst observes the following output:

Which of the following attacks does the analyst MOST likely see in this packet capture?

Session replay

Evil twin

Bluejacking

ARP poisoning

QUESTION 205
A company would like to provide flexibility for employees on device preference. However, the company is concerned about supporting too many different types of hardware. Which of the following deployment models will provide the needed flexibility with the GREATEST amount of control and security over company data and infrastructure?

CYOD

VDI

BYOD

COPE

QUESTION 206
Hotspot Question
A newly purchased corporate WAP needs to be configured in the MOST secure manner possible.
INSTRUCTIONS
Please click on the below items on the network diagram and configure them accordingly:
* WAP
* DHCP Server
* AAA Server
* Wireless Controller
* LDAP Server
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

QUESTION 207
A security analyst received the following requirements for the deployment of a security camera solution:
* The cameras must be viewable by the on-site security guards.
+ The cameras must be able to communicate with the video storage server.
* The cameras must have the time synchronized automatically.
* The cameras must not be reachable directly via the internet.
* The servers for the cameras and video storage must be available for remote maintenance via the company VPN.
Which of the following should the security analyst recommend to securely meet the remote connectivity requirements?

Creating firewall rules that prevent outgoing traffic from the subnet the servers and cameras reside on

Deploying a jump server that is accessible via the internal network that can communicate with the servers

Disabling all unused ports on the switch that the cameras are plugged into and enabling MAC filtering

Implementing a WAF to allow traffic from the local NTP server to the camera server

QUESTION 208
A security engineer needs to build @ solution to satisfy regulatory requirements that stale certain critical servers must be accessed using MFA However, the critical servers are older and are unable to support the addition of MFA, Which of te following will the engineer MOST likely use to achieve this objective?

A forward proxy

A stateful firewall

A jump server

A port tap

QUESTION 209
A bank detects fraudulent activity on user’s account. The user confirms transactions completed yesterday on the bank’s website at https:/Awww.company.com. A security analyst then examines the user’s Internet usage logs and observes the following output:

Which of the following has MOST likely occurred?

Replay attack

SQL injection

SSL stripping

Race conditions

QUESTION 210
A company recently transitioned to a strictly BYOD culture due to the cost of replacing lost or damaged corporate-owned mobile devices. Which of the following technologies would be BEST to balance the BYOD culture while also protecting the company’s data?

Containerization

Geofencing

Full-disk encryption

Remote wipe

QUESTION 211
An IT security manager requests a report on company information that is publicly available. The managers concern is that malicious actors will be able to access the data without in active reconnaissance. Which of the following is the most efficient approach to perform the analysis?

Provide a domain parameter to theharvester tool

check public DNS entries using dnsenum

perform a Nessus vulnerability scan targeting a public companys IP

execute nmap using the options: scan all ports and sneaky mode

QUESTION 212
A security analyst receives a SIEM alert that someone logged in to the appadmin test account, which is only used for the early detection of attacks. The security analyst then reviews the following application log:

Which of the following can the security analyst conclude?

A replay attack is being conducted against the application.

An injection attack is being conducted against a user authentication system.

A service account password may have been changed, resulting in continuous failed logins within the application.

A credentialed vulnerability scanner attack is testing several CVEs against the application.

QUESTION 213
A security engineer obtained the following output from a threat intelligence source that recently performed an attack on the company’s server:

Which of the following BEST describes this kind of attack?

Directory traversal

SQL injection

API

Request forgery

QUESTION 214
An organization’s corporate offices were destroyed due to a natural disaster, so the organization is now setting up offices in a temporary work space. Which of the following will the organization most likely consult?

The business continuity plan

The risk management plan

The communication plan

The incident response plan

QUESTION 215
A company Is planning to install a guest wireless network so visitors will be able to access the Internet. The stakeholders want the network to be easy to connect to so time is not wasted during meetings. The WAPs are configured so that power levels and antennas cover only the conference rooms where visitors will attend meetings. Which of the following would BEST protect the company’s Internal wireless network against visitors accessing company resources?

Configure the guest wireless network to be on a separate VLAN from the company’s internal wireless network

Change the password for the guest wireless network every month.

Decrease the power levels of the access points for the guest wireless network.

Enable WPA2 using 802.1X for logging on to the guest wireless network.

QUESTION 216
A security analyst was deploying a new website and found a connection attempting to authenticate on the site’s portal. While Investigating The incident, the analyst identified the following Input in the username field:
Which of the following BEST explains this type of attack?

DLL injection to hijack administrator services

SQLi on the field to bypass authentication

Execution of a stored XSS on the website

Code to execute a race condition on the server