SY0-601試験無料問題集（1061題）「CompTIA Security+ 認定」

出題：1

Which of the following describes an executive team that is meeting in a board room and testing the company's incident response plan?

A. Continuity of operations

B. Parallel processing

C. Tabletop exercise

D. Capacity planning

正解：C 解答を投票する

出題：2

Which of the following is the most effective way to protect an application server running software that is no longer supported from network threats?

A. Screened subnet

B. Barricade

C. Port security

D. Air gap

正解：D 解答を投票する

出題：3

A company is planning to set up a SIEM system and assign an analyst to review the logs on a weekly basis. Which of the following types of controls is the company setting up?

A. Detective

B. Deterrent

C. Preventive

D. Corrective

正解：A 解答を投票する

出題：4

Which of the following is the most likely way a rogue device was allowed to connect'?

A. An administrator bypassed the security controls for testing.

B. A DHCP failure caused an incorrect IP address to be distributed.

C. A user performed a MAC cloning attack with a personal device.

D. DNS hijacking let an attacker intercept the captive portal traffic.

正解：C 解答を投票する

出題：5

A security administrator is setting up a SIEM to help monitor for notable events across the enterprise. Which of the following control types does this BEST represent?

A. Detective

B. Preventive

C. Compensating

D. Corrective

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

A security engineer obtained the following output from a threat intelligence source that recently performed an attack on the company's server:

Which of the following best describes this kind of attack?

A. SQL injection

B. Request forgery

C. API

D. Directory traversal

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

A company has implemented a policy that requires two people to agree in order to push any changes from the test codebase repository into production. Which of the following best describes this control type?

A. Detective

B. Physical

C. Technical

D. Operational

正解：D 解答を投票する

出題：8

A security engineer needs to create a network segment that can be used for servers thal require connections from untrusted networks. Which of the following should the engineer implement?

A. An air gap

B. A hot site

C. A screened subnet

D. A VUAN

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

Which of the following supplies non-repudiation during a forensics investigation?

A. Duplicating a drive with dd

B. Logging everyone in contact with evidence

C. Dumping volatile memory contents first

D. Encrypting sensitive data

E. Using a SHA-2 signature of a drive image

正解：E 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

After multiple on-premises security solutions were migrated to the cloud, the incident response time increased The analysts are spending a long time trying to trace information on different cloud consoles and correlating data in different formats. Which of the following can be used to optimize the incident response time?

A. VPC

B. CMS

C. CASB

D. SWG

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：11

A network analyst is setting up a wireless access point for a home office in a remote, rural location. The requirement is that users need to connect to the access point securely but do not want to have to remember passwords Which of the following should the network analyst enable to meet the requirement?

A. Captive portal

B. MAC address filtering

C. 802.1X

D. WPS

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：12

During an investigation, an incident response team attempts to understand the source of an incident. Which of the following incident response activities describes this process?

A. Containment

B. Analysis

C. Detection

D. Lessons learned

正解：B 解答を投票する

出題：13

A security practitioner is performing due diligence on a vendor that is being considered for cloud services. Which of the following should the practitioner consult for the best insight into the current security posture of the vendor?

A. PCI DSS standards

B. SOC 2 report

C. SLA contract

D. CSF framework

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：14

A prospective customer is interested in seeing the type of data that can be retrieved when a customer uses a company's services. An engineer at the company sends the following documentation before reviewing it:

The prospective customer is concerned. Which of the following will best resolve the concern?

A. Software updates

B. CASB

C. Data sanitization

D. Log aggregation

正解：C 解答を投票する

出題：15

Which of the following is a cryptographic concept that operates on a fixed length of bits?

A. Hashing

B. Key stretching

C. Salting

D. Block cipher

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：16

A security analyst is reviewing the output of a web server log and notices a particular account is attempting to transfer large amounts of money:
GET http://yourbank.com/transfer.do?acctnum=08764 6959 &amount=500000 HTTP/1.1 GET http://yourbank.com/transfer.do?acctnum=087646958 &amount=5000000 HTTP/1.1 GET http://yourbank.com/transfer.do?acctnum=-087646958 &amount=1000000 HTTP/1.1 GET http://yourbank.com/transfer.do?acctnum=087646953&amount=500 HTTP/1.1 Which of the following types of attacks is most likely being conducted?

A. SQLi

B. Spear phishing

C. CSRF

D. API

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

SY0-601試験無料問題集「CompTIA Security+ 認定」