CompTIA SY0-601 시험

Question No : 1

A security analyst is reviewing the following attack log output:



Which of the following types of attacks does this MOST likely represent?

• A.Rainbow table
• B.Brute-force
• C.Password-spraying
• D.Dictionary

답을 확인하기

정답:
Explanation:
Password spraying is a type of brute-force attack in which a malicious actor uses a single password against targeted user accounts before moving on to attempt a second password, and so on. This technique allows the actor to remain undetected by avoiding rapid or frequent account lockouts.
https://us-cert.cisa.gov/ncas/current-activity/2019/08/08/acsc-releases-advisory-password-spraying-attacks#:~:text=Password%20spraying%20is%20a%20type,rapid%20or%20frequent%20account%20lockouts.

Question No : 2

A small company that does not have security staff wants to improve its security posture.
Which of the following would BEST assist the company?

• A.MSSP
• B.SOAR
• C.IaaS
• D.PaaS

답을 확인하기

정답:

Question No : 3

The IT department’s on-site developer has been with the team for many years. Each time an application is released, the security team is able to identify multiple vulnerabilities.
Which of the following would BEST help the team ensure the application is ready to be released to production?

• A.Limit the use of third-party libraries.
• B.Prevent data exposure queries.
• C.Obfuscate the source code.
• D.Submit the application to QA before releasing it.

답을 확인하기

정답:

Question No : 4

A software developer needs to perform code-execution testing, black-box testing, and non-functional testing on a new product before its general release.
Which of the following BEST describes the tasks the developer is conducting?

• A.Verification
• B.Validation
• C.Normalization
• D.Staging

답을 확인하기

정답:

Question No : 5

Which of the following ISO standards is certified for privacy?

• A.ISO 9001
• B.ISO 27002
• C.ISO 27701
• D.ISO 31000

답을 확인하기

정답:
Explanation:
ISO 27701 also abbreviated as PIMS (Privacy Information Management System) outlines a framework for Personally Identifiable Information (PII) Controllers and PII Processors to manage data privacy. Privacy information management systems are sometimes referred to as personal information management systems. https://pecb.com/whitepaper/the-future-of-privacy-with-isoiec-27701

Question No : 6

A network administrator has been alerted that web pages are experiencing long load times.
After determining it is not a routing or DNS issue, the administrator logs in to the router, runs a command, and receives the following output:



Which of the following is the router experiencing?

• A.DDoS attack
• B.Memory leak
• C.Buffer overflow
• D.Resource exhaustion

답을 확인하기

정답:

Question No : 7

A company’s bank has reported that multiple corporate credit cards have been stolen over the past several weeks. The bank has provided the names of the affected cardholders to the company’s forensics team to assist in the cyber-incident investigation.
An incident responder learns the following information:
✑ . The timeline of stolen card numbers corresponds closely with affected users making Internet-based purchases from diverse websites via enterprise desktop PCs.
✑ All purchase connections were encrypted, and the company uses an SSL inspection proxy for the inspection of encrypted traffic of the hardwired network.
✑ Purchases made with corporate cards over the corporate guest WiFi network, where no SSL inspection occurs, were unaffected.
Which of the following is the MOST likely root cause?

• A.HTTPS sessions are being downgraded to insecure cipher suites
• B.The SSL inspection proxy is feeding events to a compromised SIEM
• C.The payment providers are insecurely processing credit card charges
• D.The adversary has not yet established a presence on the guest WiFi network

답을 확인하기

정답:

Question No : 8

A cybersecurity administrator has a reduced team and needs to operate an on-premises network and security infrastructure efficiently. To help with the situation, the administrator decides to hire a service provider.
Which of the following should the administrator use?

• A.SDP
• B.AAA
• C.IaaS
• D.MSSP
• E.Microservices

답을 확인하기

정답:

Question No : 9

A remote user recently took a two-week vacation abroad and brought along a corporate-owned laptop. Upon returning to work, the user has been unable to connect the laptop to the VPN.
Which of the following is the MOST likely reason for the user’s inability to connect the laptop to the VPN?

• A.Due to foreign travel, the user’s laptop was isolated from the network.
• B.The user’s laptop was quarantined because it missed the latest path update.
• C.The VPN client was blacklisted.
• D.The user’s account was put on a legal hold.

답을 확인하기

정답:

Question No : 10

A security analyst is performing a forensic investigation compromised account credentials. Using the Event Viewer, the analyst able to detect the following message, ‘’Special privileges assigned to new login.’’ Several of these messages did not have a valid logon associated with the user before these privileges were assigned.
Which of the following attacks is MOST likely being detected?

• A.Pass-the-hash
• B.Buffer overflow
• C.Cross-site scripting
• D.Session replay

답을 확인하기

정답:
Explanation:
https://www.beyondtrust.com/resources/glossary/pass-the-hash-pth-attack

Question No : 11

A security auditor is reviewing vulnerability scan data provided by an internal security team.
Which of the following BEST indicates that valid credentials were used?

• A.The scan results show open ports, protocols, and services exposed on the target host
• B.The scan enumerated software versions of installed programs
• C.The scan produced a list of vulnerabilities on the target host
• D.The scan identified expired SSL certificates

답을 확인하기

정답:

Question No : 12

A network engineer notices the VPN concentrator overloaded and crashes on days when there are a lot of remote workers. Senior management has placed greater importance on the availability of VPN resources for the remote workers than the security of the end users’ traffic.
Which of the following would be BEST to solve this issue?

• A.iPSec
• B.Always On
• C.Split tunneling
• D.L2TP

답을 확인하기

정답:

Question No : 13

A company provides mobile devices to its users to permit access to email and enterprise applications. The company recently started allowing users to select from several different vendors and device models. When configuring the MDM, which of the following is a key security implication of this heterogeneous device approach?

• A.The most common set of MDM configurations will become the effective set of enterprise mobile security controls.
• B.All devices will need to support SCEP-based enrollment; therefore, the heterogeneity of the chosen architecture may unnecessarily expose private keys to adversaries.
• C.Certain devices are inherently less secure than others, so compensatory controls will be needed to address the delta between device vendors.
• D.MDMs typically will not support heterogeneous deployment environments, so multiple MDMs will need to be installed and configured.

답을 확인하기

정답:

Question No : 14

A database administrator needs to ensure all passwords are stored in a secure manner, so the administrate adds randomly generated data to each password before string.
Which of the following techniques BEST explains this action?

• A.Predictability
• B.Key stretching
• C.Salting
• D.Hashing

답을 확인하기

정답:

Question No : 15

A company recently experienced a data breach and the source was determined to be an executive who was charging a phone in a public area.
Which of the following would MOST likely have prevented this breach?

• A.A firewall
• B.A device pin
• C.A USB data blocker
• D.Biometrics

답을 확인하기

정답: