Practice Exams:

Free SY0-601 Exam Braindumps

Pass your CompTIA Security+ Exam exam with these free Questions and Answers

Page 28 of 107
PDF with 534 Questions
QUESTION 131

- (Exam Topic 1)
A SOC operator is analyzing a log file that contains the following entries:
SY0-601 dumps exhibit

  1. A. SQL injection and improper input-handling attempts
  2. B. Cross-site scripting and resource exhaustion attempts
  3. C. Command injection and directory traversal attempts
  4. D. Error handling and privilege escalation attempts

Correct Answer: C

QUESTION 132

- (Exam Topic 3)
A global pandemic is forcing a private organization to close some business units and reduce staffing at others. Which of the following would be BEST to help the organization’s executives determine the next course of action?

  1. A. An incident response plan
  2. B. A communications plan
  3. C. A disaster recovery plan
  4. D. A business continuity plan

Correct Answer: D
Business continuity may be defined as "the capability of an organization to continue the delivery of products or services at pre-defined acceptable levels following a disruptive incident”,[1] and business continuity planning [2][3] (or business continuity and resiliency planning) is the process of creating systems of prevention and recovery to deal with potential threats to a company.[4] In addition to prevention, the goal is to enable ongoing operations before and during execution of disaster recovery.[5] Business continuity is the intended outcome of proper execution of both business continuity planning and disaster recovery.

QUESTION 133

- (Exam Topic 3)
A cybersecunty administrator needs to implement a Layer 7 security control on a network and block potential attacks. Which of the following can block an attack at Layer 7? (Select TWO)

  1. A. HIDS
  2. B. NIPS
  3. C. HSM
  4. D. WAF
  5. E. HIPS
  6. F. NIDS
  7. G. Stateless firewall

Correct Answer: BD

QUESTION 134

- (Exam Topic 3)
A malicious actor recently penetration a company’s network and moved laterally to the datacenter. Upon investigation, a forensics firm wants to know was in the memory on the compromised server. Which of the following files should be given to the forensics firm?

  1. A. Security
  2. B. Application
  3. C. Dump
  4. D. Syslog

Correct Answer: C
Dump files are a special type of files that store information about your computer, the software on it, and the data loaded in the memory when something bad happens. They are usually automatically generated by Windows or by the apps that crash, but you can also manually generate them https://www.digitalcitizen.life/view-contents-dump-file/

QUESTION 135

- (Exam Topic 3)
An engineer needs to deploy a security measure to identify and prevent data tampering within the enterprise.
Which of the following will accomplish this goal?

  1. A. Antivirus
  2. B. IPS.
  3. C. FTP
  4. D. FIM

Correct Answer: D

Page 28 of 107
PDF with 534 Questions

Post your Comments and Discuss CompTIA SY0-601 exam with other Community members: