Home

Home / CompTIA / SY0-701

Question list

List of questions

Question 1

(5)

Which of the following threat actors is the most likely to be hired by a foreign government to attack critical systems located in other countries?

Question 2

(5)

Which of the following is used to add extra complexity before using a one-way data transformation algorithm?

Question 3

(3)

Which of the following has been implemented when a host-based firewall on a legacy Linux system allows connections from only specific internal IP addresses?

Question 4

(3)

The management team notices that new accounts that are set up manually do not always have correct access or permissions. Which of the following automation techniques should a systems administrator

Question 5

(5)

Which of the following involves an attempt to take advantage of database misconfigurations?

Question 6

(4)

An organization would like to store customer data on a separate part of the network that is not accessible to users on the main corporate network. Which of the following should the administrator use

Question 7

(1)

Which of the following is used to quantitatively measure the criticality of a vulnerability?

Question 8

(4)

A technician is opening ports on a firewall for a new system being deployed and supported by a SaaS provider. Which of the following is a risk in the new system?

Question 9

(4)

Which of the following security concepts is the best reason for permissions on a human resources fileshare to follow the principle of least privilege?

Question 10

(4)

A company is planning to set up a SIEM system and assign an analyst to review the logs on a weekly basis. Which of the following types of controls is the company setting up?

Open VPLUS File

Convert VPLUS to PDF

Related questions

Which of the following threat actors is the most likely to be hired by a foreign government to attack critical systems located in other countries?

Which of the following is used to add extra complexity before using a one-way data transformation algorithm?

An organization is building a new backup data center with cost-benefit as the primary requirement and RTO and RPO values around two days. Which of the following types of sites is the best for this scenario?

A Chief Information Security Officer wants to monitor the company's servers for SQLi attacks and allow for comprehensive investigations if an attack occurs. The company uses SSL decryption to allow traffic monitoring. Which of the following strategies would best accomplish this goal?

Which of the following has been implemented when a host-based firewall on a legacy Linux system allows connections from only specific internal IP addresses?

A technician is opening ports on a firewall for a new system being deployed and supported by a SaaS provider. Which of the following is a risk in the new system?

A newly identified network access vulnerability has been found in the OS of legacy loT devices. Which of the following would best mitigate this vulnerability quickly?

Which of the following involves an attempt to take advantage of database misconfigurations?

An employee receives a text message that appears to have been sent by the payroll department and is asking for credential verification. Which of the following social engineering techniques are being attempted? (Choose two.)

Which of the following security concepts is the best reason for permissions on a human resources fileshare to follow the principle of least privilege?

Question 350 - SY0-701 discussion

Report

Which of the following is a type of vulnerability that involves inserting scripts into web-based applications in order to take control of the client's web browser?

A.

SQL injection

B.

Cross-site scripting

C.

Zero-day exploit

D.

On-path attack

Show Answer

asked 18/10/2024

Konstantinos Lagoudakis

28 questions

User

Your answer: A B C D

0 comments

Sorted by

Leave a comment first