Free Access CompTIA.SY0-601.v2022-02-05.q371 Practice Test (Page 52)

Question 251

A user recently entered a username and password into a recruiting application website that had been forged to look like the legitimate site. Upon investigation, a security analyst identifies the following:
* The legitimate website's IP address is 10.1.1.20 and eRecruit.local resolves to this IP.
* The forged website's IP address appears to be 10.2.12.99, based on NetFlow records.
* All three of the organization's DNS servers show the website correctly resolves to the legitimate IP.
* DNS query logs show one of the three DNS servers returned a result of 10.2.12.99 (cached) at the approximate time of the suspected compromise.
Which of the following MOST likely occurred?

A.An attacker temporarily poisoned a name server.

B.An ARP poisoning attack was successfully executed.

C.A reverse proxy was used to redirect network traffic.

D.An SSL strip MITM attack was performed.

Question 252

A security analyst has been asked to investigate a situation after the SOC started to receive alerts from the SIEM. The analyst first looks at the domain controller and finds the following events:

To better understand what is going on, the analyst runs a command and receives the following output:

Based on the analyst's findings, which of the following attacks is being executed?

A.Brute-force

B.Credential harvesting

C.Spraying

D.Keylogger

Question 253

Which of the following is the MOST secure but LEAST expensive data destruction method for data that is stored on hard drives?

A.Pulverizing

B.Shredding

C.Incinerating

D.Degaussing

Question 254

A security analyst is investigation an incident that was first reported as an issue connecting to network shares and the internet, While reviewing logs and tool output, the analyst sees the following:

Which of the following attacks has occurred?

A.Pass-the-hash

B.MAC flooding

C.Directory traversal

D.IP conflict

E.ARP poisoning

Question 255

The IT department's on-site developer has been with the team for many years. Each time an application is released, the security team is able to identify multiple vulnerabilities. Which of the following would BEST help the team ensure the application is ready to be released to production?

A.Limit the use of third-party libraries.

B.Prevent data exposure queries.

C.Obfuscate the source code.

D.Submit the application to QA before releasing it.

Other Version: 2183CompTIA.SY0-601.v2025-02-24.q781; 2127CompTIA.SY0-601.v2024-07-31.q690; 1820CompTIA.SY0-601.v2023-02-27.q56; 1549CompTIA.SY0-601.v2023-02-09.q57; 3421CompTIA.SY0-601.v2023-02-06.q78; 1499CompTIA.SY0-601.v2023-01-05.q72; 3626CompTIA.SY0-601.v2022-09-29.q183; 7349CompTIA.SY0-601.v2022-05-18.q297; 3982CompTIA.SY0-601.v2022-05-11.q168; 4529CompTIA.SY0-601.v2022-05-09.q210; 4375CompTIA.SY0-601.v2022-05-03.q215; 104CompTIA.Examboosts.SY0-601.v2021-11-02.by.prudence.224q.pdf; 10237CompTIA.SY0-601.v2021-10-06.q97

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 119Oracle.1Z0-1057-23.v2025-09-10.q47; 153Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 167TheSecOpsGroup.CNSP.v2025-09-08.q20; 231CFAInstitute.ESG-Investing.v2025-09-08.q173; 199PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 154Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 251

Question 252

Question 253

Question 254

Question 255

Download PDF File