1. Home
  2. CompTIA
  3. SY0-601

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-601
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1334 Q&As
  • Last Updated
    :Apr 06, 2025

CompTIA CompTIA Certifications SY0-601 Questions & Answers

  • Question 1231:

    Which of the following would be BEST for a technician to review to determine the total risk an organization can bear when assessing a "cloud-first" adoption strategy?

    A. Risk matrix

    B. Risk tolerance

    C. Risk register

    D. Risk appetite

  • Question 1232:

    CORRECT TEXT

    An incident has occurred in the production environment.

    Analyze the command outputs and identify the type of compromise.

    If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

  • Question 1233:

    A server administrator is reporting performance issues when accessing all internal resources. Upon further investigation, the security team notices the following:

    1.

    A user's endpoint has been compromised and is broadcasting its MAC as the default gateway's MAC throughout the LAN.

    2.

    Traffic to and from that endpoint is significantly greater than all other similar endpoints on the LAN.

    3.

    Network ports on the LAN are not properly configured.

    4.

    Wired traffic is not being encrypted properly. Which of the following attacks is most likely occurring?

    A. DDoS

    B. MAC flooding

    C. ARP poisoning

    D. DHCP snooping

  • Question 1234:

    During a forensic investigation, an analyst uses software to create a checksum of the affected subject's email file. Which of the following is the analyst practicing?

    A. Chain of custody

    B. Data recovery

    C. Non-repudiation

    D. Integrity

  • Question 1235:

    A software company has a shared codebase for multiple projects using the following strategy:

    1.

    Unused features are deactivated but still present on the code.

    2.

    New customer requirements trigger additional development work.

    Which of the following will most likely occur when the company uses this strategy?

    A. Malicious code

    B. Dead code

    C. Outsourced code

    D. Code obfuscation

  • Question 1236:

    A security audit of an organization revealed that most of the IT staff members have domain administrator credentials and do not change the passwords regularly. Which of the following solutions should the security team propose to resolve the findings in the most complete way?

    A. Creating group policies to enforce password rotation on domain administrator credentials

    B. Reviewing the domain administrator group, removing all unnecessary administrators, and rotating all passwords

    C. Integrating the domain administrator's group with an IdP and requiring SSO with MFA for all access D. Securing domain administrator credentials in a PAM vault and controlling access with role-based access control

  • Question 1237:

    Which of the following best describes a threat actor who is attempting to use commands found on a public code repository?

    A. Script kiddie

    B. State actor

    C. Insider threat

    D. Competitor espionage

  • Question 1238:

    While assessing the security of a web application, a security analyst was able to introduce unsecure strings through the application input fields by bypassing client-side controls. Which of the following solutions should the analyst recommend?

    A. Code signing

    B. Host-based intrusion detection system

    C. Secure cookies

    D. Server-side validation

  • Question 1239:

    A vulnerability scan returned the following results:

    2 Critical 5 High 15 Medium 98 Low

    Which of the following would the information security team most likely use to decide if all discovered vulnerabilities must be addressed and the order in which they should be addressed?

    A. Risk appetite

    B. Risk register

    C. Risk matrix

    D. Risk acceptance

  • Question 1240:

    A company wants to ensure that all employees in a given department are trained on each job role to help with employee burnout and continuity of business operations in the event an employee leaves the company. Which of the following should the company implement?

    A. Separation of duties

    B. Job rotation

    C. Mandatory vacations

    D. Least privilege

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-601 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.