SY0-701試験無料問題集（504題）「CompTIA Security+ Certification 認定」

出題：1

A systems administrator wants to prevent users from being able to access data based on their responsibilities.
The administrator also wants to apply the required access structure via a simplified format. Which of the following should the administrator apply to the site recovery resource group?

A. ACL

B. GPO

C. RBAC

D. SAML

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

A business needs a recovery site but does not require immediate failover. The business also wants to reduce the workload required to recover from an outage. Which of the following recovery sites is the best option?

A. Geographically dispersed

B. Warm

C. Cold

D. Hot

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

The security operations center is researching an event concerning a suspicious IP address A security analyst looks at the following event logs and discovers that a significant portion of the user accounts have experienced faded log-In attempts when authenticating from the same IP address:

Which of the following most likely describes attack that took place?

A. Brute-force

B. Dictionary

C. Spraying

D. Rainbow table

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

During a SQL update of a database, a temporary field that was created was replaced by an attacker in order to allow access to the system. Which of the following best describes this type of vulnerability?

A. Race condition

B. Memory injection

C. Malicious update

D. Side loading

正解：A 解答を投票する

出題：5

A systems administrator is auditing all company servers to ensure. They meet the minimum security baseline While auditing a Linux server, the systems administrator observes the /etc/shadow file has permissions beyond the baseline recommendation. Which of the following commands should the systems administrator use to resolve this issue?

A. passwd

B. chmod

C. grep

D. dd

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

Which of the following vulnerabilities is associated with installing software outside of a manufacturer's approved software repository?

A. Memory injection

B. Jailbreaking

C. Resource reuse

D. Side loading

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Which of the following should be used to ensure an attacker is unable to read the contents of a mobile device's drive if the device is lost?

A. HSM

B. FDE

C. TPM

D. ECC

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

A small business uses kiosks on the sales floor to display product information for customers. A security team discovers the kiosks use end-of-life operating systems. Which of the following is the security team most likely to document as a security implication of the current architecture?

A. Product software compatibility

B. Ease of recovery

C. Cost of replacement

D. Patch availability

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

A company recently decided to allow employees to work remotely. The company wants to protect us data without using a VPN. Which of the following technologies should the company Implement?

A. Next-gene ration firewall

B. Virtual private cloud end point

C. Deep packet Inspection

D. Secure web gateway

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

A systems administrator receives an alert that a company's internal file server is very slow and is only working intermittently. The systems administrator reviews the server management software and finds the following information about the server:

Which of the following indicators most likely triggered this alert?

A. Account lockout

B. Concurrent session usage

C. Network saturation

D. Resource consumption

正解：D 解答を投票する

出題：11

Which of the following Is a common, passive reconnaissance technique employed by penetration testers in the early phases of an engagement?

A. Port scanning

B. Exploit validation

C. Pivoting

D. Open-source intelligence

正解：D 解答を投票する

出題：12

A security analyst discovers that a large number of employee credentials had been stolen and were being sold on the dark web. The analyst investigates and discovers that some hourly employee credentials were compromised, but salaried employee credentials were not affected.
Most employees clocked in and out while they were Inside the building using one of the kiosks connected to the network. However, some clocked out and recorded their time after leaving to go home. Only those who clocked in and out while Inside the building had credentials stolen. Each of the kiosks are on different floors, and there are multiple routers, since the business segments environments for certain business functions.
Hourly employees are required to use a website called acmetimekeeping.com to clock in and out. This website is accessible from the internet. Which of the following Is the most likely reason for this compromise?

A. ARP poisoning affected the machines in the building and caused the kiosks lo send a copy of all the submitted credentials to a machine.machine.

B. The internal DNS servers were poisoned and were redirecting acmetimkeeping.com to malicious domain that intercepted the credentials and then passed them through to the real site

C. A malicious actor compromised the time-keeping website with malicious code using an unpatched vulnerability on the site, stealing the credentials.

D. A brute-force attack was used against the time-keeping website to scan for common passwords.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：13

A company's Chief Information Security Officer (CISO) wants to enhance the capabilities of the incident response team. The CISO directs the incident response team to deploy a tool that rapidly analyzes host and network data from potentially compromised systems and forwards the data for further review. Which of the following tools should the incident response team deploy?

A. NAC

B. SIEM

C. IPS

D. EDR

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：14

An analyst is evaluating the implementation of Zero Trust principles within the data plane. Which of the following would be most relevant for the analyst to evaluate?

A. Threat scope reduction

B. Subject role

C. Secured zones

D. Adaptive identity

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

SY0-701試験無料問題集「CompTIA Security+ Certification 認定」