https://www.examslabs.com/CompTIA/CompTIA-Security-Recertification/best-RC0-501-exam-dumps.html
(170 Q&As Dumps, 30%OFF Special Discount: 30free)
NEW QUESTION: 1
Which of the following are methods to implement HA in a web application server
environment? (Select two.)
A. VPN concentrators
B. Routers
C. Load balancers
D. Application layer firewalls
E. Reverse proxiesa
Answer: C,D
NEW QUESTION: 2
Which of the following AES modes of operation provide authentication? (Select two.)
A. DSA
B. CFB
C. CBC
D. CCM
E. GCM
Answer: D,E
NEW QUESTION: 3
A security analyst receives a notification from the IDS after working hours, indicating a spike in
network traffic. Which of the following BEST describes this type of IDS?
A. Stateful
B. Host-based
C. Signature-based
D. Anomly-based
Answer: C
NEW QUESTION: 4
A manager suspects that an IT employee with elevated database access may be knowingly
modifying financial transactions for the benefit of a competitor. Which of the following practices
should the manager implement to validate the concern?
A. Mandatory vacations
B. Separation of duties
C. Background checks
D. Security awareness training
Answer: B
NEW QUESTION: 5
A company is using a mobile device deployment model in which employees use their personal
devices for work at their own discretion. Some of the problems the company is encountering include
the following:
Which of the following is a deployment model that would help the company overcome these
problems?
A. CYOD
B. BYOD
C. VDI
D. COPE
Answer: A
NEW QUESTION: 6
A security analyst captures forensic evidence from a potentially compromised system for
further investigation. The evidence is documented and securely stored to FIRST:
A. obtain a legal hold
B. preserve the data
C. recover data at a later time
D. maintain the chain of custody
Answer: D
NEW QUESTION: 7
A user suspects someone has been accessing a home network without permission by
spoofing the MAC address of an authorized system. While attempting to determine if an authorized
user is logged into the home network, the user reviews the wireless router, which shows the
following table for systems that are currently on the home network.
Which of the following should be the NEXT step to determine if there is an unauthorized user on the
network?
A. Conduct a ping sweep of each of the authorized systems and see if an echo response is received.
B. Apply MAC filtering and see if the router drops any of the systems.
C. Physically check each of the authorized systems to determine if they are logged onto the network.
D. Deny the "unknown" host because the hostname is not known and MAC filtering is not applied to
this host.
Answer: D
https://www.examslabs.com/CompTIA/CompTIA-Security-Recertification/best-RC0-501-exam-dumps.html
NEW QUESTION: 8
Which of the following specifically describes the exploitation of an interactive process to access
otherwise restricted areas of the OS?
A. Process affinity
B. Pivoting
C. Buffer overflow
D. Privilege escalation
Answer: D
NEW QUESTION: 9
Joe, a user, wants to send Ann, another user, a confidential document electronically. Which of
the following should Joe do to ensure the document is protected from eavesdropping?
A. Encrypt it with Ann's public key
B. Encrypt it with Joe's private key
C. Encrypt it with Ann's private key
D. Encrypt it with Joe's public key
Answer: A
NEW QUESTION: 10
A technician suspects that a system has been compromised. The technician reviews the
following log entry:
WARNING- hash mismatch: C:\Window\SysWOW64\user32.dll
WARNING- hash mismatch: C:\Window\SysWOW64\kernel32.dll
Based solely ono the above information, which of the following types of malware is MOST likely
installed on the system?
A. Trojan
B. Ransomware
C. Backdoor
D. Rootkit
Answer: D
NEW QUESTION: 11
Which of the following network vulnerability scan indicators BEST validates a successful, active
scan?
A. The scan job is scheduled to run during off-peak hours.
B. The scan results identify the hostname and IP address.
C. The scan data identifies the use of privileged-user credentials.
D. The scan output lists SQL injection attack vectors.
Answer: B
NEW QUESTION: 12
A black hat hacker is enumerating a network and wants to remain convert during the process.
The hacker initiates a vulnerability scan. Given the task at hand the requirement of being convert,
which of the following statements BEST indicates that the vulnerability scan meets these
requirements?
A. The vulnerability scanner is performing banner grabbing.
B. The vulnerability scanner is performing in network sniffer mode.
C. The vulnerability scanner is performing local file integrity checks.
D. The vulnerability scanner is performing an authenticated scan.
Answer: B
NEW QUESTION: 13
A security analyst reviews the following output:
The analyst loads the hash into the SIEM to discover if this hash is seen in other parts of the network.
After inspecting a large number of files, the SIEM reports the following.
File hash: E289F21CD33E4F57890DDEA5CF267ED2
File found: somestuff.xls, somefile.pdf, nofile.doc
Which of the following is the MOST likely cause of the hash being found in other areas?
A. The file is encrypted.
B. There are MD5 has collisions
C. Shadow copies are present.
D. Jan Smith is an insider threat.
Answer: C
NEW QUESTION: 14
An organization wishes to provide better security for its name resolution services. Which of
the following technologies BEST supports the deployment of DNSSEC at the organization?
A. LDAP
B. TLS
C. SSL
D. TPM
E. PKI
Answer: B
NEW QUESTION: 15
A systems administrator is attempting to recover from a catastrophic failure in the
datacenter. To recover the domain controller, the systems administrator needs to provide the
domain administrator credentials. Which of the following account types is the systems administrator
using?
A. Guest account
B. Shared account
C. Service account
D. User account
Answer: C
https://www.examslabs.com/CompTIA/CompTIA-Security-Recertification/best-RC0-501-exam-dumps.html