• Home
  • Blogs
  • [Q95-Q120] Real Exam Questions SYO-501 Dumps Exam Questions in here [Sep-2021]

[Q95-Q120] Real Exam Questions SYO-501 Dumps Exam Questions in here [Sep-2021]

Share

Real Exam Questions SYO-501 Dumps Exam Questions in here [Sep-2021]

Get Latest Sep-2021 Conduct effective penetration tests using  SYO-501

NEW QUESTION 95
A network technician discovered the usernames and passwords used for network device configuration have been compromised by a user with a packet sniffer. Which of the following would secure the credentials from sniffing?

  • A. Use SSH for remote access.
  • B. Implement complex passwords.
  • C. Use TFTP to copy device configuration.
  • D. Configure SNMPv2 for device management.

Answer: A

 

NEW QUESTION 96
An attacker is attempting to harvest user credentials on a client's website. A security analyst notices multiple attempts of random usernames and passwords. When the analyst types in a random username and password, the logon screen displays the following message:
The username you entered does not exist.
Which of the following should the analyst recommend be enabled?

  • A. Username lockout
  • B. Input validation
  • C. Obfuscation
  • D. Error handling

Answer: A

 

NEW QUESTION 97
A new security administrator ran a vulnerability scanner for the first time and caused a system outage.
Which of the following types of scans MOST likely caused the outage?

  • A. Intrusive non-credentialed scan
  • B. Non-intrusive credentialed scan
  • C. Non-intrusive non-credentialed scan
  • D. Intrusive credentialed scan

Answer: A

 

NEW QUESTION 98
A business has recently deployed laptops to all sales employees. The laptops will be used primarily from home offices and while traveling, and a high amount of wireless mobile use is expected. To protect the laptops while connected to untrusted wireless networks, which of the following would be the BEST method for reducing the risk of having the laptops compromised?

  • A. MAC filtering
  • B. OS hardening
  • C. Application white-listing
  • D. Virtualization

Answer: B

 

NEW QUESTION 99
An organization is using a tool to perform a source code review. Which of the following describes the case in which the tool incorrectly identifies the vulnerability?

  • A. False negative
  • B. False positive
  • C. True positive
  • D. True negative

Answer: B

 

NEW QUESTION 100
A security administrator wants to configure a company's wireless network in a way that will prevent wireless clients from broadcasting the company's SSID. Which of the following should be configured on the company's access points?

  • A. Enable ESSID broadcast
  • B. Disable SSID broadcast
  • C. Disable MAC authentication
  • D. Enable wireless encryption
  • E. Disable WPS
  • F. Enable protected management frames.

Answer: A

Explanation:
Explanation
Tricky one! Notice that we want to stop the CLIENTS from broadcasting the SSID. They will typically do this when they don't see an existing SSID, so they broadcast a request for SSID's they've previously connected to.
The question asks what to do on the ACCESS POINTS, so by simply enabling the ESSID (SSID) broadcast, the clients will not have to do any broadcasting themselves.

 

NEW QUESTION 101
As a security measure, an organization has disabled all external media from accessing the network. Since some users may have data that needs to be transferred to the network, which of the following would BEST assist a security administrator with transferring the data while keeping the internal network secure?

  • A. Upload the data in a separate VLAN
  • B. Use a standalone scanning system
  • C. Contact the data custodian
  • D. Upload the media in the DMZ

Answer: B

 

NEW QUESTION 102
A security analyst is hardening an authentication server. One of the primary requirements is to ensure there is mutual authentication and delegation. Given these requirements, which of the following technologies should the analyst recommend and configure?

  • A. NTLM services
  • B. CHAP services
  • C. LDAP services
  • D. Kerberos services

Answer: D

Explanation:
Only Kerberos that can do Mutual Auth and Delegation.
https://docs.microsoft.com/en-us/windows-server/security/kerberos/kerberos-authentication- overview

 

NEW QUESTION 103
During a routine check, a security analyst discovered the script responsible for the backup of the corporate file server had been changed to the following.

Which of the following BEST describes the type of malware the analyst discovered?

  • A. RAT
  • B. Key logger
  • C. Rootkit
  • D. Logic bomb

Answer: D

 

NEW QUESTION 104
Task: Determine the types of attacks below by selecting an option from the dropdown list.

Answer:

Explanation:

Explanation

A: Phishing is the act of sending an email to a user falsely claiming to be an established legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft.
Phishing email will direct the user to visit a website where they are asked to update personal information, such as a password, credit card, social security, or bank account numbers, that the legitimate organization already has. The website, however, is bogus and set up only to steal the information the user enters on the page.
B: Whaling is a specific kind of malicious hacking within the more general category of phishing, which involves hunting for data that can be used by the hacker. In general, phishing efforts are focused on collecting personal data about users. In whaling, the targets are high-ranking bankers, executives or others in powerful positions or job titles. Hackers who engage in whaling often describe these efforts as "reeling in a big fish," applying a familiar metaphor to the process of scouring technologies for loopholes and opportunities for data theft. Those who are engaged in whaling may, for example, hack into specific networks where these powerful individuals work or store sensitive data. They may also set up keylogging or other malware on a work station associated with one of these executives. There are many ways that hackers can pursue whaling, leading C-level or top-level executives in business and government to stay vigilant about the possibility of cyber threats.
C: Vishing is the act of using the telephone in an attempt to scam the user into surrendering private information that will be used for identity theft. The scammer usually pretends to be a legitimate business, and fools the victim into thinking he or she will profit.
D: SPIM is a term sometimes used to refer to spam over IM (Instant Messaging). It's also called just spam, instant spam, or IM marketing. No matter what the name, it consists of unwanted messages transmitted through some form of instant messaging service, which can include Short Message Service (SMS) E: Social engineering is a non-technical method of intrusion hackers use that relies heavily on human interaction and often involves tricking people into breaking normal security procedures. It is one of the greatest threats that organizations today encounter. A social engineer runs what used to be called a "con game." For example, a person using social engineering to break into a computer network might try to gain the confidence of an authorized user and get them to reveal information that compromises the network's security.
Social engineers often rely on the natural helpfulness of people as well as on their weaknesses. They might, for example, call the authorized employee with some kind of urgent problem that requires immediate network access. Appealing to vanity, appealing to authority, appealing to greed, and old-fashioned eavesdropping are other typical social engineering techniques.
http://www.webopedia.com/TERM/P/phishing.html
http://www.techopedia.com/definition/28643/whaling
http://www.webopedia.com/TERM/V/vishing.html
http://searchsecurity.techtarget.com/definition/social-engineering

 

NEW QUESTION 105
A web developer improves client access to the company's REST API. Authentication needs to be
tokenized but not expose the client's password.
Which of the following methods would BEST meet the developer's requirements?

  • A. OAuth
  • B. LDAP
  • C. SAML
  • D. Shibboleth

Answer: C

 

NEW QUESTION 106
Which of the following would be considered multifactor authentication?

  • A. Voice recognition and retina scan
  • B. PIN and security question no :s
  • C. Hardware token and smart card
  • D. Strong password and fingerprint

Answer: D

 

NEW QUESTION 107
A user of the wireless network is unable to gain access to the network. The symptoms are:
1.) Unable to connect to both internal and Internet resources
2.) The wireless icon shows connectivity but has no network access
The wireless network is WPA2 Enterprise and users must be a member of the wireless security group to authenticate.
Which of the following is the MOST likely cause of the connectivity issues?

  • A. The user's laptop only supports WPA and WEP
  • B. The DHCP scope is full
  • C. A remote DDoS attack against the RADIUS server is taking place
  • D. The wireless signal is not strong enough
  • E. The dynamic encryption key did not update while the user was offline

Answer: A

 

NEW QUESTION 108
A government contracting company Issues smartphones lo employees lo enable access lo corporate resources.
Several employees will need to travel to a foreign country (or business purposes and will require access lo their phones. However, the company recently received intelligence that its intellectual property is highly desired by the same country's government. Which of the following MDM configurations would BEST reduce the risk of compromise while on foreign soil?

  • A. Disable location services.
  • B. Disable push notification services.
  • C. Disable firmware OTA updates.
  • D. Disable wipe.

Answer: C

 

NEW QUESTION 109
A small company's Chief Executive Officer (CEO) has asked its Chief Security Officer (CSO) to improve
the company's security posture quickly with regard to targeted attacks.
Which of the following should the CSO conduct FIRST?

  • A. Conduct an internal audit against industry best practices to perform a qualitative analysis.
  • B. Deploy a UTM solution that receives frequent updates from a trusted industry vendor.
  • C. Purchase multiple threat feeds to ensure diversity and implement blocks for malicious traffic
  • D. Survey threat feeds from services inside the same industry.

Answer: D

 

NEW QUESTION 110
Ann, a security administrator, has been instructed to perform fuzz-based testing on the company's
applications.
Which of the following best describes what she will do?

  • A. Hash the application to verify it won't cause a false positive on the HIPS
  • B. Enter random or invalid data into the application in an attempt to cause it to fault
  • C. Test the applications for the existence of built-in- back doors left by the developers
  • D. Work with the developers to eliminate horizontal privilege escalation opportunities

Answer: B

 

NEW QUESTION 111
A systems administrator is increasing the security settings on a virtual host to ensure users on one VM cannot access information from another VM. Which of the following is the administrator protecting against?

  • A. VM sprawl
  • B. VM sandboxing
  • C. VM migration
  • D. VM escape

Answer: D

Explanation:
Explanation/Reference:

 

NEW QUESTION 112
A wireless network has the following design requirements:
* Authentication must not be dependent on enterprise directory service
* It must allow background reconnection for mobile users
* It must not depend on user certificates
Which of the following should be used in the design to meet the requirements? (Choose two.)

  • A. PSK
  • B. EAP-TLS
  • C. PEAP
  • D. Open systems authentication
  • E. Captive portals

Answer: A,E

 

NEW QUESTION 113
A technician suspects that a desktop was compromised with a rootkit. After removing lhe hard drive from the desktop and running an offline le integrity check, the technician reviews the following output:

Based on the above output, which of the following is the malicious file?

  • A. lsass.exe
  • B. httpd.axe
  • C. notepad.exe
  • D. kernel.dll

Answer: D

 

NEW QUESTION 114
An information security specialist is reviewing the following output from a Linux server.

Based on the above information, which of the following types of malware was installed on the server?

  • A. Trojan
  • B. Ransomware
  • C. Backdoor
  • D. Rootkit
  • E. Logic bomb

Answer: C

 

NEW QUESTION 115
A company is deploying MFDs in its office to improve employee productivity when dealing with paperwork. Which of the following concerns is MOST likely to be raised as a possible security issue in relation Io these devices?

  • A. Sensitive scanned materials being saved on the local hard drive
  • B. Excessive disk space consumption due to storing large documents
  • C. Faulty printer drivers causing PC performance degradation
  • D. Improperly configured NIC settings interfering with network security

Answer: C

 

NEW QUESTION 116
Company policy requires the use if passphrases instead if passwords. Which of the following technical controls MUST be in place in order to promote the use of passphrases?

  • A. Complexity
  • B. History
  • C. Length
  • D. Reuse

Answer: A

 

NEW QUESTION 117
A Chief Executive Officer (CEO) is staying at a hotel during a business trip. The hotel's wireless network does not show a lock symbol. Which of the following precautions should the CEO take? (Choose two.)

  • A. Change the connection type to WPA2
  • B. Create a tunnel connection with EAP-TTLS
  • C. Tether to a mobile phone
  • D. Use a VPN
  • E. Change TKIP to CCMP

Answer: C,D

 

NEW QUESTION 118
Two users must encrypt and transmit large amounts of data between them.
Which of the following should they use to encrypt and transmit the data?

  • A. Digital signature
  • B. Hash function
  • C. Symmetric algorithm
  • D. Obfuscation

Answer: C

 

NEW QUESTION 119
Legal authorities notify a company that its network has been compromised for the second time in two years.
The investigation shows the attackers were able to use the same vulnerability on different systems in both attacks.
Which of the following would have allowed the security team to use historical information to protect against the second attack?

  • A. Lessons learned
  • B. Tabletop exercise
  • C. Recovery point objectives
  • D. Key risk indicators

Answer: A

 

NEW QUESTION 120
......

Authentic Best resources for SYO-501 Online Practice Exam: https://www.prep4king.com/SYO-501-exam-prep-material.html

Get the superior quality SYO-501 Dumps with explanations waiting just for you, get it now: https://drive.google.com/open?id=1-BtIt1cuG5U7RqrEvK6HvWMTJm5X7r1O

Related Blogs

more
CompTIA SYO-501 Certification Practice Exam

Prep4King will provide you with the best valid & training material for you to practice. You can get an good result with the help by our high quality study material.

Latest Update

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 PREP4KING.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor. Privacy Policy