SY0-601無料問題集「CompTIA Security+」

質問 1

A security analyst notices an unusual amount of traffic hitting the edge of the network. Upon examining the logs, the analyst identifies a source IP address and blocks that address from communicating with the network. Even though the analyst is blocking this address, the attack is still ongoing and coming from a large number of different source IP addresses. Which of the following describes this type of attack?

（A）Privilege escalation

（B）DDoS

（C）Buffer overflow

（D）DNS poisoning

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

A security analyst reviews domain activity logs and notices the following:

Which of the following is the best explanation for what the security analyst has discovered?

（A）An attacker is attempting to brute force jsmith's account.

（B）Ransomware has been deployed in the domain.

（C）The user jsmith's account has been locked out.

（D）A keylogger is installed on jsmith's workstation.

正解：A 解答を投票する

質問 3

A company's help desk has received calls about the wireless network being down and users being unable to connect to it The network administrator says all access points are up and running One of the help desk technicians notices the affected users are working in a building near the parking lot. Which of the following is the most likely reason for the outage?

（A）Someone near the building is jamming the signal

（B）The APs in the affected area have been unplugged from the network

（C）Someone set up an evil twin access point in the affected area.

（D）A user has set up a rogue access point near the building

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Which of the following has been implemented when a host-based firewall on a legacy Linux system allows connections from only specific internal IP addresses?

（A）Transfer of risk

（B）SNMP traps

（C）Network segmentation

（D）Compensating control

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Which of the following environments utilizes a subset of customer data and is most likely to be used to assess the impacts of major system upgrades and demonstrate system features?

（A）Production

（B）Development

（C）Staging

（D）b Test

正解：C 解答を投票する

質問 6

An organization wants to minimize the recovery time from backups in case of a disaster. Backups must be retained for one month, while minimizing the storage space used for backups. Which of the following is the best approach for a backup strategy?

（A）Full weekly and incremental daily

（B）Full monthly, incremental daily, and differential weekly

（C）Full weekly and differential daily

（D）Full daily

正解：A 解答を投票する

質問 7

Users report access to an application from an internal workstation is still unavailable to a specific server, even after a recent firewall rule implementation that was requested for this access. ICMP traffic is successful between the two devices. Which of the following tools should the security analyst use to help identify if the traffic is being blocked?

（A）ssh

（B）tracert

（C）ping

（D）nmap

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

The following are the logs of a successful attack.

Which of the following controls would be BEST to use to prevent such a breach in the future?

（A）Account lockout

（B）Password history

（C）Account expiration

（D）Password complexity

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

Which Of the following is the best method for ensuring non-repudiation?

（A）SSO

（B）SSH key

（C）Digital certificate

（D）Token

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

A company needs to keep the fewest records possible, meet compliance needs, and ensure destruction of records that are no longer needed. Which of the following best describes the policy that meets these requirements?

（A）Classification policy

（B）Security policy

（C）Access control policy

（D）Retention policy

正解：D 解答を投票する

質問 11

A security practitioner is performing due diligence on a vendor that is being considered for cloud services. Which of the following should the practitioner consult for the best insight into the current security posture of the vendor?

（A）PCI DSS standards

（B）SLA contract

（C）SOC 2 report

（D）CSF framework

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

While researching a data exfiltration event, the security team discovers that a large amount of data was transferred to a file storage site on the internet. Which of the following controls would work best to reduce the risk of further exfiltration using this method?

（A）Blocking IP traffic at the firewall

（B）Data loss prevention

（C）Containerization

（D）File integrity monitoring

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

A security analyst it investigating an incident to determine what an attacker was able to do on a compromised Laptop. The analyst reviews the following SIEM log:

Which of the following describes the method that was used to compromise the laptop?

（A）An attacker was able to move laterally from PC 1 to PC2 using a pass-the-hash attach

（B）An attacker was able to phish user credentials successfully from an Outlook user profile

（C）An attacker was able to bypass the application approve list by emailing a spreadsheet. attachment with an embedded PowerShell in the file.

（D）An attacker was able to install malware to the CAasdf234 folder and use it to gain administrator rights and launch Outlook

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

Which of the technologies is used to actively monitor for specific file types being transmitted on the network?

（A）Data loss prevention

（B）Tcpreplay

（C）Honeynets

（D）File integrity monitoring

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

Which of the following should a technician consider when selecting an encryption method for data that needs to remain confidential for a specific length of time?

（A）The key length of the encryption algorithm

（B）A method of introducing entropy into key calculations

（C）The computational overhead of calculating the encryption key

（D）The encryption algorithm's longevity

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

A developer is building a new portal to deliver single-pane-of-glass management capabilities to customers with multiple firewalls. To Improve the user experience, the developer wants to implement an authentication and authorization standard that uses security tokens that contain assertions to pass user Information between nodes. Which of the following roles should the developer configure to meet these requirements? (Select TWO).

（A）Notarized referral

（B）Identity provider

（C）Service provider

（D）Service requestor

（E）Identity processor

（F）Tokenized resource

正解：B、C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

SY0-601 無料問題集「CompTIA Security+」

弊社を連絡する

関連リンク

トップ試験