Security+ SY0-601 Free Practice Exam Pack

You have been tasked to implement a solution to send product offers to consumers’ smartphones when they trigger a search in a particular geographic location, enter a mall, neighborhood, or store.

What solution will you implement in order to achieve that?

Your company migrates its infrastructure to the public cloud because of the advantages the cloud offers. Which of the following options are advantages of using public cloud services? (Choose all that apply.)

You have been instructed to connect a storage device that allows storage and retrieval of data from a central location for authorized network users and varied clients.

Which of the following storage type will you use to meet the requirement?

The security process that relies on unique traits such as retinas, irises, voices, facial characteristics, and fingerprints of an individual to verify that he is who he says he is, is called:

What type of architecture developers use to build and run applications and services without having to manage infrastructure?

Which of the following types of disaster recovery sites allows a company to continue normal business operations, within a very short period of time after a disaster?

Which of the following attacks isn’t intended to steal data but to remain in place for as long as possible, quietly mining in the background?

Match the following password attack techniques with their meaning.

Which of the following options are considered as request forgery attacks? (Choose all that apply)

A hacker wants to attack a network with the aim of maintaining ongoing access to the targeted network rather than to get in and out as quickly as possible with the ultimate goal of stealing information over a long period of time. What type of attacking technique will the hacker use in this case?

You have set up an Intrusion detection system (IDS) and suddenly the IDS identifies an activity as an attack but the activity is acceptable behavior. The state, in this case, is known as:

The technique of redirecting victims from a current page to a new URL which is usually a phishing page that impersonates a legitimate site and steals credentials from the victims is known as:

You are developing a new system that requires users to be authenticated using temporary passcode which is generated by an algorithm that uses the current time of the day.

Which of the following authentication methods will you use to authenticate the users?

Which of the following options is a network architecture approach that enables the network to be intelligently and centrally controlled using software applications, and helps operators manage the network consistently, regardless of the underlying network technology?

Which of the following process is designed to protect personnel or assets and make sure they can function quickly when a disaster strikes (natural disasters, cyber-attacks)?

PC1 can ping the printer on the Marketing team network but can’t ping the printer on the Sales team network. Assuming you are working on a Linux environment, which of the following command would you type to get details about the route that packets go through from PC1 to the printer on the Sales team network?

You have been tasked to configure the Wi-Fi of your company’s LAN to allow certain workstations to have access to the Internet and the rest to be blocked.

Which of the following security technology will you implement to meet the requirement?

For security and monitoring purposes your company instructed you to implement a solution so that all packets entering or exiting a port should be copied and then should be sent to a local interface for monitoring.

Which of the following solution will you implement in order to meet the requirement?

Which of the following VPN solutions is used to connect a personal user device to a remote server on a private network?

Which of the following types of certificates will you use to digitally sign your apps as a way for end-users to verify that the code they receive has not been altered or compromised by a third party?

Assuming you have the domain yourcompany.com with the following sub-domains:

www.yourcompany.com
mail.yourcompany.com
intranet.yourcompany.com
secure.yourcompany.com
me.yourcompany.com

Which of the following types of certificates will you choose to secure all the first-level sub-domains on a single domain name?

Which of the following technologies will you use in order to send instant notifications to your subscribed users each time you publish a new blog post on your website?

Which of the following options are cryptographic protocols? (Choose all the apply)

The network administrator from your company notices that the network performance has been degraded due to a broadcast storm.

Which of the following techniques will you recommend to the network administrator in order to reduce broadcast storms? (Choose all that apply)

Which of the following VPN solutions is used to connect two local area networks utilized by businesses that want to provide their employees with secure access to network resources?

You have been tasked to implement a solution to encrypt data as it is written to the disk and decrypt data as it is read off the disk.

Which of the following solution will you implement to meet the requirement?

You have been hired as a security expert to implement a security solution to protect an organization from external threats. The solution should provide the organization with a superior ability to identify attacks, malware, and other threats and also provide packet filtering capabilities, VPN support, and network monitoring.

Which of the following security solutions will you implement to meet the requirement?

You have been tasked to access a remote computer for handling some administrative tasks over an unsecured network in a secure way.

Which of the following protocols will you use to access the remote computer to handle the administrative tasks?

Which of the following part(s) of the Authentication, Authorization, and Accounting (AAA) is responsible for measuring the resources a user consumes during access to a system?

Which of the following technique will you use to hide secret data within a non-secret file or message with the purpose of avoiding data detection?

Cloud backup is a strategy for sending a copy of files or database to a secondary server, which is usually hosted by a third-party service provider for preservation, in case of equipment failure or catastrophe. (True/False)

The developers of your company thinking to switch the development process to the cloud, so they don’t need to start from scratch when creating applications with the purpose of saving a lot of time and money on writing code.

Which of the following cloud service models the developers of your company will use to create unique, customizable software on the Cloud?

Which of the following types of social engineering techniques is the use of messaging systems to send an unsolicited message to large numbers of recipients for the purpose of commercial advertising, or for the purpose of non-commercial proselytizing?

Which of the following attacks is a Network Layer DDoS attack?

Which of the following cybersecurity testing exercise team does not focus exclusively on attacking or defending, but they do both?

Your organization is working with a contractor to build a database. You need to find a way to hide the actual data from being exposed to the contractor. Which of the following technique will you use in order to allow the contractor to test the database environment without having access to actual sensitive customer information?

You have been tasked to create a new Access Control List on the company’s firewall to prevent any HTTP traffic from/to the network. Type the port number that needs to be added to the ACL rule.

Given the following firewall configuration requirements, type the correct port number to complete the access control rules.

Given the following firewall configuration requirements, type the correct port number to complete the access control rules.