SY0-501 Exam Questions

A user clicked an email link that led to a website that infected the workstation with a virus. The virus encrypted all the network shares to which the user had access. The virus wa...

Which of the fallowing security controls does an iris scanner provide?

An auditor wants to test the security posture of an organization by running a tool that will display the following: Which of the following commands should be used?

Which of the following attacks specifically impacts data availability?

Drag and Drop Question Task: Determine the types of attacks below by selecting an option from the dropdown list. Answer:

When connected to a secure WAP, which of the following encryption technologies is MOST likely to be configured when connecting to WPA2-PSK?

Lab Simulation You have just received some room and WiFi access control recommendations from a security consulting company. Click on each building to bring up available security co...

Which of the following network vulnerability scan indicators BEST validates a successful, active scan?

Which of the following allows an auditor to test proprietary-software compiled code for security flaws?

An application team is performing a load-balancing test for a critical application during off- hours and has requested access to the load balancer to review. Which servers are up w...

Lab Sim - Configure the Firewall Task: Configure the firewall (fill out the table) to allow these four rules: - Only allow the Accounting computer to have HTTPS access to the Admin...

Hotspot Question For each of the given items, select the appropriate authentication category from the dropdown choices. Instructions: When you have completed the simulation, please...

During a data breach cleanup it is discovered that not all of the sites involved have the necessary data wiping tools. The necessary tools are quickly distributed to the required t...

Hotspot Question For each of the given items, select the appropriate authentication category from the drop down choices. Select the appropriate authentication type for the followin...

Simulation A security administrator discovers that an attack has been completed against a node on the corporate network. All available logs were collected and stored. You must revi...

Joe, a technician, is working remotely with his company provided laptop at the coffee shop near his home. Joe is concerned that another patron of the coffee shop may be trying to a...

An attacker uses a network sniffer to capture the packets of a transaction that adds $20 to a gift card. The attacker then user a function of the sniffer to push those packets back...

An organization is moving its human resources system to a cloud services provider. The company plans to continue using internal usernames and passwords with the service provider, b...

The data backup window has expanded into the morning hours and has begun to affect production users. The main bottleneck in the process is the time it takes to replicate the backup...

A penetration testing is preparing for a client engagement in which the tester must provide data that proves and validates the scanning tools' results. Which of the following is th...

Which of the following best describes the initial processing phase used in mobile device forensics?

Ann a security analyst is monitoring the IDS console and noticed multiple connections from an internal host to a suspicious call back domain. Which of the following tools would aid...

An administrator is testing the collision resistance of different hashing algorithms. Which of the following is the strongest collision resistance test?

The SSID broadcast for a wireless router has been disabled but a network administrator notices that unauthorized users are accessing the wireless network. The administor has determ...

Which of the following should be used to implement voice encryption?

During an application design, the development team specifics a LDAP module for single sign-on communication with the company's access control database. This is an example of which...

After a merger, it was determined that several individuals could perform the tasks of a network administrator in the merged organization. Which of the following should have been pe...

A company exchanges information with a business partner. An annual audit of the business partner is conducted against the SLA in order to verify:

Which of the following is the proper way to quantify the total monetary damage resulting from an exploited vulnerability?

A security administrator needs to implement a system that detects possible intrusions based upon a vendor provided list. Which of the following BEST describes this type of IDS?

The chief Security Officer (CSO) has reported a rise in data loss but no break ins have occurred. By doing which of the following is the CSO most likely to reduce the number of inc...

Ann, a user, states that her machine has been behaving erratically over the past week. She has experienced slowness and input lag and found text files that appear to contain pieces...

An information security specialist is reviewing the following output from a Linux server. Based on the above information, which of the following types of malware was installed on t...

In terms of encrypting data, which of the following is BEST described as a way to safeguard password data by adding random data to it in storage?

A system administrator wants to provide for and enforce wireless access accountability during events where external speakers are invited to make presentations to a mixed audience o...

Which of the following would MOST likely appear in an uncredentialed vulnerability scan?

A security analyst observes the following events in the logs of an employee workstation: Given the information provided, which of the following MOST likely occurred on the workstat...

When identifying a company's most valuable assets as part of a BIA, which of the following should be the FIRST priority?

An organization needs to implement a large PKI. Network engineers are concerned that repeated transmission of the OCSP will impact network performance. Which of the following shoul...

When considering a third-party cloud service provider, which of the following criteria would be the BEST to include in the security assessment process? (Select two.)

Which of the following occurs when the security of a web application relies on JavaScript for input validation?

An analyst is reviewing a simple program for potential security vulnerabilities before being deployed to a Windows server. Given the following code: Which of the following vulnerab...

An organization's file server has been virtualized to reduce costs. Which of the following types of backups would be MOST appropriate for the particular file server?

A wireless network uses a RADIUS server that is connected to an authenticator, which in turn connects to a supplicant. Which of the following represents the authentication architec...

An employer requires that employees use a key-generating app on their smartphones to log into corporate applications. In terms of authentication of an individual, this type of acce...

Adhering to a layered security approach, a controlled access facility employs security guards who verify the authorization of all personnel entering the facility. Which of the foll...

A security analyst is hardening a web server, which should allow a secure certificate-based session using the organization's PKI infrastructure. The web server should also utilize...

A manager wants to distribute a report to several other managers within the company. Some of them reside in remote locations that are not connected to the domain but have a local s...

An auditor is reviewing the following output from a password-cracking tool: User:1: Password1 User2: Recovery! User3: Alaskan10 User4: 4Private User5: PerForMance2 Which of the fol...

Which of the following must be intact for evidence to be admissible in court?