Free Access CompTIA.SY0-601.v2023-02-06.q78 Practice Test (Page 4)

Question 11

A security analyst is receiving several alerts per user and is trying to determine If various logins are malicious. The security analyst would like to create a baseline of normal operations and reduce noise. Which of the following actions should the security analyst perform?

A.Adjust the sensitivity levels of the SIEM correlation engine.

B.Disable email alerting and review the SIEM directly.

C.Adjust the data flow from authentication sources to the SIEM.

D.Utilize behavioral analysis to enable the SIEM's learning mode.

Question 12

Data exftitration analysis indicates that an attacker managed to download system configuration notes from a web server. The web-server logs have been deleted, but analysts have determined that the system configuration notes were stored in the database administrator's folder on the web server Which of the following attacks explains what occurred? (Select TWO)

A.Privilege escalation

B.Pass-the- hash

C.Directory traversal

D.Cross-site scnpting

E.Request forgery

F.SQL injection

Question 13

A security proposal was set up to track requests for remote access by creating a baseline of the users' common sign-in properties. When a baseline deviation is detected, an Iv1FA challenge will be triggered. Which of the following should be configured in order to deploy the proposal?

A.Extensive authentication protocol

B.Context-aware authentication

C.Agentless network access control

D.Simultaneous authentication of equals

Question 14

Which of the following is an example of risk avoidance?

A.Buying insurance to prepare for financial loss associated with exploits

B.Not taking preventive measures to stop the theft of equipment

C.Not installing new software to prevent compatibility errors

D.Installing security updates directly in production to expedite vulnerability fixes

Question 15

A security analyst is reviewing web-application logs and finds the following log:

Which of the following attacks is being observed?

A.On-path attack

B.Directory traversal

C.CSRF

D.XSS

Other Version: 2181CompTIA.SY0-601.v2025-02-24.q781; 2125CompTIA.SY0-601.v2024-07-31.q690; 1809CompTIA.SY0-601.v2023-02-27.q56; 1547CompTIA.SY0-601.v2023-02-09.q57; 1494CompTIA.SY0-601.v2023-01-05.q72; 3598CompTIA.SY0-601.v2022-09-29.q183; 7317CompTIA.SY0-601.v2022-05-18.q297; 3954CompTIA.SY0-601.v2022-05-11.q168; 4497CompTIA.SY0-601.v2022-05-09.q210; 4345CompTIA.SY0-601.v2022-05-03.q215; 9401CompTIA.SY0-601.v2022-02-05.q371; 104CompTIA.Examboosts.SY0-601.v2021-11-02.by.prudence.224q.pdf; 10225CompTIA.SY0-601.v2021-10-06.q97

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 144Adobe.AD0-E605.v2025-09-05.q50

Question 11

Question 12

Question 13

Question 14

Question 15

Download PDF File