Free Access CompTIA.SY0-601.v2022-05-03.q215 Practice Test (Page 11)

Question 46

Local guidelines require that all information systems meet a minimum-security baseline to be compliant. Which of the following can security administrators use to assess their system configurations against the baseline?

A.Risk management framework

B.Benchmarks

C.Security control matrix

D.SOAR playbook

Question 47

A security manager runs Nessus scans of the network after every maintenance window. Which of the following is the security manger MOST likely trying to accomplish?

A.Validating the hosts do not have vulnerable ports exposed to the internet

B.Checking the status of the automated malware analysis that is being performed

C.Identifying assets on the network that may not exist on the network asset inventory

D.Verifying that system patching has effectively removed knows vulnerabilities

Question 48

A security analyst is investigating an incident to determine what an attacker was able to do on a compromised laptop. The analyst reviews the following SIEM log:

Which of the following describes the method that was used to compromise the laptop?

A.An attacker was able to move laterally from PC1 to PC2 using a pass-the-hash attack

B.An attacker was able to phish user credentials successfully from an Outlook user profile

C.An attacker was able to bypass application whitelisting by emailing a spreadsheet attachment with an embedded PowerShell in the file

D.An attacker was able to install malware to the CAasdf234 folder and use it to gam administrator nights and launch Outlook

Question 49

An organization has implemented a two-step verification process to protect user access to data that 6 stored in the could Each employee now uses an email address of mobile number a code to access the dat a. Which of the following authentication methods did the organization implement?

A.HOTP

B.Static code

C.Token key

D.Push notification

Question 50

Security analysts are conducting an investigation of an attack that occurred inside the organization's network. An attacker was able to connect network traffic between workstation throughout the network. The analysts review the following logs:

The layer 2 address table has hundred of entries similar to the ones above. Which of the following attacks has MOST likely occurred?

A.ARP poisoning

B.SQL injection

C.DNS spoofing

D.MAC flooding

Other Version: 2181CompTIA.SY0-601.v2025-02-24.q781; 2127CompTIA.SY0-601.v2024-07-31.q690; 1819CompTIA.SY0-601.v2023-02-27.q56; 1548CompTIA.SY0-601.v2023-02-09.q57; 3417CompTIA.SY0-601.v2023-02-06.q78; 1499CompTIA.SY0-601.v2023-01-05.q72; 3619CompTIA.SY0-601.v2022-09-29.q183; 7339CompTIA.SY0-601.v2022-05-18.q297; 3971CompTIA.SY0-601.v2022-05-11.q168; 4519CompTIA.SY0-601.v2022-05-09.q210; 9423CompTIA.SY0-601.v2022-02-05.q371; 104CompTIA.Examboosts.SY0-601.v2021-11-02.by.prudence.224q.pdf; 10236CompTIA.SY0-601.v2021-10-06.q97

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 151Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 173PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 151Salesforce.Data-Architect.v2025-09-05.q216; 147Adobe.AD0-E605.v2025-09-05.q50

Question 46

Question 47

Question 48

Question 49

Question 50

Download PDF File