100%更新されたのはCompTIA SY0-601限定版PDF問題集
有効な試験問題を試そうSY0-601には無料サイトで限定お試しチャンス
CompTIA Security+の認定を受けるには、最大90問の多肢選択およびパフォーマンスベースの問題から構成されるSY0-601試験に合格する必要があります。この試験は、サイバーセキュリティの原則と実践に深い理解を示すことを要求する厳しいものであり、包括的なものです。
質問 # 545
A security engineer at an offline government facility is concerned about the validity of an SSL certificate. The engineer wants to perform the fastest check with the least delay to determine if the certificate has been revoked. Which of the following would BEST meet these requirements?
- A. OcsP
- B. RA
- C. CRL
- D. CSR
正解:C
質問 # 546
A security engineer is setting up passwordless authentication for the first time.
INSTRUCTIONS
Use the minimum set of commands to set this up and verify that it works. Commands cannot be reused.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
正解:
解説:

質問 # 547
Which of the following would MOST likely be identified by a credentialed scan but would be missed by an uncredentialed scan?
- A. CVEs related to non-Microsoft systems such as printers and switches.
- B. Vulnerabilities with a CVSS score greater than 6.9.
- C. Missing patches for third-party software on Windows workstations and servers.
- D. Critical infrastructure vulnerabilities on non-IP protocols.
正解:C
解説:
An uncredentialed scan would miss missing patches for third-party software on Windows workstations and servers. A credentialed scan, however, can scan the registry and file system to determine the patch level of third-party applications. References: CompTIA Security+ Study Guide by Emmett Dulaney, Chapter 4:
Identity and Access Management, The Importance of Credentialing Scans
質問 # 548
A company's security team received notice of a critical vulnerability affecting a high-profile device within the web infrastructure. The vendor patch was just made available online but has not yet been regression tested in development environments. In the interim, firewall rules were implemented to reduce the access to the interface affected by the vulnerability. Which of the following controls does this scenario describe?
- A. Preventive
- B. Compensating
- C. Deterrent
- D. Detective
正解:B
質問 # 549
An organization has developed an application that needs a patch to fix a critical vulnerability In which of the following environments should the patch be deployed LAST?
- A. Development
- B. Test
- C. Staging
- D. Production
正解:C
質問 # 550
An organization is developing an authentication service for use at the entry and exit ports of country borders.
The service will use data feeds obtained from passport systems, passenger manifests, and high-definition video feeds from CCTV systems that are located at the ports. The service will incorporate machine-learning techniques to eliminate biometric enrollment processes while still allowing authorities to identify passengers with increasing accuracy over time. The more frequently passengers travel, the more accurately the service will identify them. Which of the following biometrics will MOST likely be used, without the need for enrollment? (Choose two.)
- A. Facial
- B. Vein
- C. Retina
- D. Fingerprint
- E. Voice
- F. Gait
正解:A、F
質問 # 551
Which of the following processes would most likely help an organization that has conducted an incident response exercise to improve performance and identify challenges?
- A. Lessons learned
- B. Simulation
- C. Identification
- D. Containment
正解:A
解説:
The process that would most likely help an organization that has conducted an incident response exercise to improve performance and identify challenges is lessons learned.
Lessons learned is a process that involves analyzing an incident, reviewing what went well, identifying challenges, and making recommendations for improvement. By conducting a lessons learned process after an incident response exercise, an organization can identify areas where it needs to improve and take steps to address these areas. The lessons learned process can also help organizations identify best practices and strategies that were successful during the exercise.
質問 # 552
A vulnerability has been discovered and a known patch to address the vulnerability does not exist. Which of the following controls works best until a proper fix is released?
- A. Compensating
- B. Corrective
- C. Deterrent
- D. Detective
正解:A
解説:
Compensating controls are alternative or additional controls that are implemented when the primary or preferred controls are not feasible or effective. Compensating controls can provide a similar level of protection or reduce the risk to an acceptable level until a proper fix is released. For example, if a vulnerability exists in a web server that allows remote code execution, a compensating control could be to restrict access to the web server by using a firewall or an IPS.
質問 # 553
Which of the following is the correct order of volatility from MOST to LEAST volatile? >
- A. Cache, disk, temporary filesystems, network storage, archival media
- B. Memory, temporary filesystems, routing tables, disk, network storage
- C. Cache, memory, temporary filesystems, disk, archival media
- D. Memory, disk, temporary filesystems, cache, archival media
正解:C
質問 # 554
A company is expanding its threat surface program and allowing individuals to security test the company's internet-facing application. The company will compensate researchers based on the vulnerabilities discovered.
Which of the following best describes the program the company is setting up?
- A. Open-source intelligence
- B. Bug bounty
- C. Penetration testing
- D. Red team
正解:B
解説:
A program that allows individuals to security test the company's internet-facing application and compensates researchers based on the vulnerabilities discovered is best described as a bug bounty program. A bug bounty program is an incentive-based program that rewards ethical hackers for finding and reporting security flaws in software or systems6.
質問 # 555
After a recent security breach a security analyst reports that several admimstratrve usemames and passwords are being sent via cieartext across the network to access network devices over prot 23 Which of the following should be implemented so all credentials sent over the network are encrypted when remotely accessing and configunng network devices?
- A. SSH
- B. SNMPv3
- C. FTP
- D. SFTP
- E. Telnet
正解:A
質問 # 556
An organization experiences a cybersecurity incident involving a command-and-control server. Which of the following logs should be analyzed to identify the impacted host? (Select two).
- A. Application
- B. Network
- C. System
- D. Firewall
- E. Authentication
- F. Error
正解:B、D
解説:
Network and firewall logs should be analyzed to identify the impacted host in a cybersecurity incident involving a command-and-control server. A command-and-control server is a central server that communicates with and controls malware-infected devices or bots. A command-and-control server can send commands to the bots, such as downloading additional malware, stealing data, or launching attacks. Network logs can help to identify any suspicious or anomalous network traffic, such as connections to unknown or malicious domains, high-volume data transfers, or unusual protocols or ports. Firewall logs can help to identify any blocked or allowed traffic based on the firewall rules, such as connections to or from the command-and-control server, or any attempts to bypass the firewall. Reference:
https://cybersecurity.att.com/blogs/security-essentials/command-and-control-server-detection-methods-best-practices
https://www.howtogeek.com/726136/what-is-a-command-and-control-server-for-malware/
質問 # 557
A company has been experiencing very brief power outages from its utility company over the last few months. These outages only last for one second each time. The utility company is aware of the issue and is working to replace a faulty transformer. Which of the following BEST describes what the company should purchase to ensure its critical servers and network devices stay online?
- A. A UPS
- B. A generator
- C. APDU
- D. Dual power supplies
正解:A
質問 # 558
A recent phishing campaign resulted in several compromised user accounts. The security incident response team has been tasked with reducing the manual labor of filtering through all the phishing emails as they arrive and blocking the sender's email address, along with other time consuming mitigation actions. Which of the following can be configured to streamline those tasks?
- A. SOAR playbook
- B. URL filter
- C. Firewall rules
- D. MOM policy
- E. SIEM data collection
正解:A
解説:
SOAR playbooks are used to automate key functions of a SOC based on processes documented in the incident response playbooks.
質問 # 559
A remote user recently took a two-week vacation abroad and brought along a corporate-owned laptop. Upon returning to work, the user has been unable to connect the laptop to the VPN.
Which of the following is the MOST likely reason for the user's inability to connect the laptop to the VPN? (Choose two.)
- A. The user in unable to authenticate because they are outside of the organization's mobile geofencing configuration.
- B. The VPN client was blacklisted.
- C. The laptop is still configured to connect to an international mobile network operator.
- D. The user's laptop was quarantined because it missed the latest patch update.
- E. Due to foreign travel, the user's laptop was isolated from the network.
- F. The user's account was put on a legal hold.
正解:D、E
質問 # 560
Which of the following job roles would sponsor data quality and data entry initiatives that ensure business and regulatory requirements are met?
- A. The data owner
- B. The data processor
- C. The data steward
- D. Thedata privacy officer.
正解:C
質問 # 561
A Chief Information Officer is concerned about employees using company-issued laptops lo steal data when accessing network shares. Which of the following should the company Implement?
- A. EDR
- B. CASB
- C. DLP
- D. HIDS
- E. UEFI
正解:C
解説:
Chmod removes the setuido permission, that is, it removes the S bit. Setuido is the specific permission, but it is removed with Chmod.
https://www.cbtnuggets.com/blog/technology/system-admin/linux-file-permissions-understanding- setuid-setgid-and-the-sticky-bit
質問 # 562
......
CompTIA SY0-601公式認定ガイドPDF:https://www.goshiken.com/CompTIA/SY0-601-mondaishu.html
無料CompTIA Security+ SY0-601公式認定ガイドPDFダウンロード:https://drive.google.com/open?id=1IlmsSlVrWKF6LIHKQHrNQy9St51KCWWI