SY0-601無料問題集「CompTIA Security+」

質問 1

A user reports performance issues when accessing certain network fileshares The network team determines endpoint traffic is reaching one of the filestores but is being dropped on the return traffic Which of the following should be corrected to solve this issue?

（A）Antivirus software on the host

（B）The /etc/hosts file on the server

（C）Host-based firewall settings

（D）The intrusion detection system configuration

正解：C 解答を投票する

質問 2

A security analyst was asked to evaluate a potential attack that occurred on a publicly accessible section of the company's website. The malicious actor posted an entry in an attempt to trick users into clicking the following:

Which of the following was most likely observed?

（A）DLL injection

（B）XSS

（C）Session replay

（D）SQLi

正解：B 解答を投票する

質問 3

A security administrator is hardening corporate systems and applying appropriate mitigations by consulting a real-world knowledge base for adversary behavior. Which of the following would be best for the administrator to reference?

（A）SOAR

（B）CVSS

（C）MITRE ATT&CK

（D）CSIRT

正解：C 解答を投票する

質問 4

During a recent breach, employee credentials were compromised when a service desk employee issued an MFA bypass code to an attacker who called and posed as an employee. Which of the following should be used to prevent this type of incident in the future?

（A）Hardware token MFA

（B）Biometrics

（C）Identity proofing

（D）Least privilege

正解：C 解答を投票する

質問 5

An organization recently released a zero-trust policy that will enforce who is able to remotely access certain dat a. Authenticated users who access the data must have a need to know, depending on their level of permissions.
Which of the following is the first step the organization should take when implementing the policy?

（A）Classify all data on the file servers.

（B）Determine a quality CASB solution.

（C）Configure the DLP policies by user groups.

（D）Implement agentless NAC on boundary devices.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

Certain users are reporting their accounts are being used to send unauthorized emails and conduct suspicious activities. After further investigation, a security analyst notices the following:
* All users share workstations throughout the day.
* Endpoint protection was disabled on several workstations throughout the network.
* Travel times on logins from the affected users are impossible.
* Sensitive data is being uploaded to external sites.
* All user account passwords were forced to be reset and the issue continued.
Which of the following attacks is being used to compromise the user accounts?

（A）Rainbow

（B）Dictionary

（C）Keylogger

（D）Brute-force

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Which of the following roles would MOST likely have direct access to the senior management team?

（A）Data custodian

（B）Data controller

（C）Data protection officer

（D）Data owner

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Which of the following BEST describes the team that acts as a referee during a penetration-testing exercise?

（A）Red team

（B）Purple team

（C）Green team

（D）White team

（E）Blue team

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

An enterprise has hired an outside security firm to conduct penetration testing on its network and applications. The firm has been given all the developer's documentation about the internal architecture. Which of the following best represents the type of testing that will occur?

（A）Bug bounty

（B）White-box

（C）Black-box

（D）Gray-box

正解：B 解答を投票する

質問 10

Which of the following roles, according to the shared responsibility model, is responsible for securing the company's database in an laaS model for a cloud environment?

（A）Client

（B）Third-party vendor

（C）Cloud provider

（D）DBA

正解：A 解答を投票する

質問 11

Which of the following biometric authentication methods is the MOST accurate?

（A）Voice

（B）Gait

（C）Retina

（D）Signature

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

Which of the following describes how applications are built, configured, and deployed?

（A）Normalization

（B）Compiler

（C）Continuous validation

（D）Provisioning

正解：D 解答を投票する

質問 13

Which of the following would help ensure a security analyst is able to accurately measure the overall risk to an organization when a new vulnerability is disclosed?

（A）A full inventory of all hardware and software

（B）Documentation of system classifications

（C）A list of system owners and their departments

（D）Third-party risk assessment documentation

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

Which of the following is the best way to secure an on-site data center against intrusion from an insider?

（A）Bollards

（B）Access badge

（C）Motion sensor

（D）Video surveillance

正解：B 解答を投票する

質問 15

A security administrator received an alert for a user account with the following log activity:

Which of the following best describes the trigger for the alert the administrator received?

（A）Geolocation

（B）Number of failed log-in attempts

（C）Time-based log-in attempt

（D）Impossible travel time

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

The Chief Information Security Officer of an organization needs to ensure recovery from ransomware would likely occur within the organization's agreed-upon RPOs and RTOs. Which of the following backup scenarios would best ensure recovery?

（A）Daily full backups stored on premises in magnetic offline media

（B）Weekly full backups with daily incremental stored on a NAS drive

（C）Hourly differential backups stored on a local SAN array

（D）Daily differential backups maintained by a third-party cloud provider

正解：D 解答を投票する

質問 17

A software company is analyzing a process that detects software vulnerabilities at the earliest stage possible. The goal is to scan the source looking for unsecure practices and weaknesses before the application is deployed in a runtime environment. Which of the following would BEST assist the company with this objective?

（A）Use a web vulnerability scanner

（B）Use a penetration-testing OS

（C）Use static code analysis

（D）Use fuzzing testing

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 18

A dynamic application vulnerability scan identified that code injection could be performed using a web form. Which of the following will be the best remediation to prevent this vulnerability?

（A）Implement input validations

（B）Utilize a WAF

（C）Conjure HIPS

（D）Deploy UFA

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 19

Which of the following types of data are most likely to be subject to regulations and laws? (Select two).

（A）OSINT

（B）Pll

（C）PHI

（D）Proprietary

（E）Public

（F）Trade secrets

正解：B、C 解答を投票する

質問 20

Which of the following would be the best ways to ensure only authorized personnel can access a secure facility? (Select two).

（A）Access control vestibule

（B）Fencing

（C）Sensor

（D）Sign-in sheet

（E）Badge access

（F）Video surveillance

正解：A、E 解答を投票する

SY0-601 無料問題集「CompTIA Security+」

弊社を連絡する

関連リンク

トップ試験