100%更新されたのはCompTIA SY0-601限定版PDF問題集 [Q589-Q604]

Share

100%更新されたのはCompTIA SY0-601限定版PDF問題集

有効な試験問題を試そうSY0-601には無料サイトで限定お試しチャンス


CompTIA SY0-601:CompTIA Security+は、サイバーセキュリティにおける知識とスキルを認定する高く評価され、世界的に認知された資格です。この認定はベンダー中立であり、幅広い技術や製品に適用されます。認定試験は、システム、ネットワーク、およびデバイスをサイバー攻撃から保護する能力を評価します。この試験に合格することは、多くのサイバーセキュリティの仕事に必要な前提条件であり、この認定は雇用主に高く評価されます。

 

質問 # 589
A security administrator would like to ensure all cloud servers will have software preinstalled for facilitating vulnerability scanning and continuous monitoring. Which of the following concepts should the administrator utilize?

  • A. Staging
  • B. Staging
  • C. Provisioning
  • D. Quality assurance

正解:C


質問 # 590
If a current private key is compromised, which of the following would ensure it cannot be used to decrypt all historical data?

  • A. Elliptic-curve cryptography
  • B. Key stretching
  • C. Perfect forward secrecy
  • D. Homomorphic encryption

正解:C


質問 # 591
A security manager is implementing MFA and patch management. Which of the following would best describe the control type and category? (Select two).

  • A. Administrative
  • B. Detective
  • C. Physical
  • D. Technical
  • E. Preventative
  • F. Managerial

正解:A


質問 # 592
An engineer needs to deploy a security measure to identify and prevent data tampering within the enterprise.
Which of the following will accomplish this goal?

  • A. IPS
  • B. FIM
  • C. Antivirus
  • D. FTP

正解:B

解説:
Data tampering prevention can include simple security measures such as the encryption of data, and can include lengths such as using file integrity monitoring (FIM) systems for better security.
https://www.cypressdatadefense.com/blog/data-tampering-prevention/


質問 # 593
An attacker was eavesdropping on a user who was shopping online. The attacker was able to spoof the IP address associated with the shopping site. Later, the user received an email regarding credit card statement with unusual purchases. Which of the following attacks took place?

  • A. Protocol poisoning
  • B. Bluejacking
  • C. Domain hijacking
  • D. On-path attack

正解:D

解説:
An on-path attack is an attack that took place when an attacker was eavesdropping on a user who was shopping online and was able to spoof the IP address associated with the shopping site. An on-path attack is a type of network attack that involves intercepting or modifying traffic between two parties by placing oneself in the communication path. An on-path attack can also be called a man-in-the-middle attack or a session hijacking attack. An on-path attacker can steal sensitive information, such as credit card details, or redirect the user to a malicious website. Reference: https://www.comptia.org/blog/what-is-a-man-in-the-middle-attack https://www.certblaster.com/wp-content/uploads/2020/11/CompTIA-Security-SY0-601-Exam-Objectives-1.0.pdf


質問 # 594
Which of the following is performed to gain a better understanding of how specific devices are set up by identifying the arrangement of settings?

  • A. Network scan
  • B. Web application scan
  • C. Credentialed scan
  • D. Log analysis
  • E. Configuration review

正解:A


質問 # 595
An organization that is located in a flood zone is MOST likely to document the concerns associated with the restoration of IT operation in a:

  • A. disaster recovery plan.
  • B. business continuity plan
  • C. continuity of operations plan
  • D. communications plan.

正解:A


質問 # 596
A company has three technicians who share the same credentials for troubleshooting system.
Every time credentials are changed, the new ones are sent by email to all three technicians. The security administrator has become aware of this situation and wants to implement a solution to mitigate the risk. Which of the following is the BEST solution for company to implement?

  • A. SSO authentication
  • B. OAuth authentication
  • C. Password vaults
  • D. SSH keys

正解:A


質問 # 597
A security analyst is investigating some users who are being redirected to a fake website that resembles www.comptia.org. The following output was found on the naming server of the organization:

Which of the following attacks has taken place?

  • A. DNS poisoning
  • B. Domain reputation
  • C. Domain hijacking
  • D. Disassociation

正解:A

解説:
DNS server cache poisoning aims to corrupt the records held by the DNS server itself. This can be accomplished by performing DoS against the server that holds the authorized records for the domain, and then spoofing replies to requests from other name servers. Another attack involves getting the victim name server to respond to a recursive query from the attacking host. A recursive query compels the DNS server to query the authoritative server for the answer on behalf of the client.


質問 # 598
Which of the following can be used to calculate the total loss expected per year due to a threat targeting an asset?

  • A. MTBF x impact
  • B. EF x asset value
  • C. ALE / SLE
  • D. SLE x ARO

正解:D

解説:
The total loss expected per year due to a threat targeting an asset can be calculated using the Single Loss Expectancy (SLE) multiplied by the Annualized Rate of Occurrence (ARO). SLE is the monetary loss expected from a single event, while ARO is the estimated frequency of that event occurring in a year.
Reference: CompTIA Security+ Study Guide: Exam SY0-501, 7th Edition, by Emmett Dulaney and Chuck Easttom, Chapter 9: Risk Management, page 414.


質問 # 599
A recent penetration test identified that an attacker could flood the MAC address table of network switches.
Which of the following would best mitigate this type of attack?

  • A. IPS
  • B. NGFW
  • C. Load balancer
  • D. Port security

正解:D


質問 # 600
An administrator identifies some locations on the third floor of the building that have a poor wireless signal.
Multiple users confirm the incident and report it is not an isolated event. Which of the following should the administrator use to find the areas with a poor or nonexistent wireless signal?

  • A. Agentless scanning
  • B. Embedded systems
  • C. Wardriving
  • D. Heat map

正解:D


質問 # 601
As part of a security compliance assessment, an auditor performs automated vulnerability scans. In addition, which of the following should the auditor do to complete the assessment?

  • A. Log analysis
  • B. Packet captures
  • C. Configuration reviews
  • D. User behavior analysis

正解:C


質問 # 602
Which of the following is used to validate a certificate when it is presented to a user?

  • A. CSR
  • B. CA
  • C. CRC
  • D. OCSP

正解:D

解説:
Online Certificate Status Protocol (OCSP) is used to validate a certificate when it is presented to a user. OCSP is a protocol that allows a client or browser to query the status of a certificate from an OCSP responder, which is a server that maintains and provides the revocation status of certificates issued by a certificate authority (CA). OCSP can help to verify the authenticity and validity of a certificate and prevent the use of revoked or expired certificates. Reference: https://www.comptia.org/blog/what-is-ocsp https://www.certblaster.com/wp-content/uploads/2020/11/CompTIA-Security-SY0-601-Exam-Objectives-1.0.pdf


質問 # 603
A company wants to get alerts when others are researching and doing reconnaissance on the company. One approach would be to host a part of the infrastructure online with known vulnerabilities that would appear to be company assets. Which of the following describes this approach?

  • A. Honeypot
  • B. Bug bounty
  • C. DNS sinkhole
  • D. Watering hole

正解:A


質問 # 604
......


CompTIA Security+認定試験は、サイバーセキュリティの専門家にとって必須の認定試験です。それは、さまざまなサイバーセキュリティのドメインでの個人のスキルと知識を検証し、世界中の雇用主に認められています。この認定試験は、サイバーセキュリティの分野でキャリアを進めたい個人に最適であり、他の高度なサイバーセキュリティの認定試験の前提条件です。

 

CompTIA SY0-601公式認定ガイドPDF:https://www.goshiken.com/CompTIA/SY0-601-mondaishu.html

無料CompTIA Security+ SY0-601公式認定ガイドPDFダウンロード:https://drive.google.com/open?id=10GMwU4-Lclw2Z9ryQt_fUKmovGimf9lO