Free Access to CompTIA.SY0-701.v2025-08-18.q266 with Valid Practice Test (Page 24)

Request Exam Contact

Home
View All Exams
New QA's
Upload

PRACTICE EXAMS:

Oracle
Fortinet
Juniper
Microsoft
Cisco
Citrix
CompTIA
VMware
ISC
SAP
EMC
PMI
HP
Salesforce
Other

Oracle
Fortinet
Juniper
Microsoft
Cisco
Citrix
CompTIA
VMware
ISC
SAP
EMC
PMI
HP
Salesforce

Home
CompTIA Certification
SY0-701 Exam
CompTIA.SY0-701.v2025-08-18.q266 Dumps

««
«
…
19
20
21
22
23
24
25
26
27
28
…
»
»»

Question 111

Which of the following is the best way to provide secure remote access for employees while minimizing the exposure of a company's internal network?

A.VPN
B.LDAP
C.FTP
D.RADIUS

Correct Answer: A

A VPN (Virtual Private Network) is a secure method to provide employees with remote access to a company's network. It encrypts data, protecting it from interception and ensuring secure communication between the user and the internal network.References: Security+ SY0-701 Course Content, Security+ SY0-601 Book.

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 112

An administrator is reviewing a single server's security logs and discovers the following;

Which of the following best describes the action captured in this log file?

A.Brute-force attack
B.Privilege escalation
C.Failed password audit
D.Forgotten password by the user

Correct Answer: A

A brute-force attack is a type of attack that involves systematically trying all possible combinations of passwords or keys until the correct one is found. The log file shows multiple failed login attempts in a short amount of time, which is a characteristic of a brute-force attack. The attacker is trying to guess the password of the Administrator account on the server. The log file also shows the event ID 4625, which indicates a failed logon attempt, and the status code 0xC000006A, which means the user name is correct but the password is wrong. These are indicators of compromise (IoC) that suggest a brute-force attack is taking place. References: CompTIA Security+ Study Guide: Exam SY0-701, 9th Edition, page 215-216 and 223 1

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 113

Which of the following is a type of vulnerability that involves inserting scripts into web-based applications in order to take control of the client's web browser?

A.SQL injection
B.Cross-site scripting
C.Zero-day exploit
D.On-path attack

Correct Answer: B

Cross-site scripting (XSS) vulnerabilities allow attackers to inject malicious scripts into a website, which are then executed in the user's web browser, potentially leading to data theft or session hijacking.References:
Security+ SY0-701 Course Content, Security+ SY0-601 Book.

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 114

Select the appropriate attack and remediation from each drop-down list to label the corresponding attack with its remediation.
INSTRUCTIONS
Not all attacks and remediation actions will be used.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Correct Answer:

Explanation:
Web serverBotnet Enable DDoS protectionUser RAT Implement a host-based IPSDatabase server Worm Change the default application passwordExecutive KeyloggerDisable vulnerable servicesApplication Backdoor Implement 2FA using push notification

Comment: *

Name: *

Email: *

Verification: *

insert code

Question 115

A recent penetration test identified that an attacker could flood the MAC address table of network switches.
Which of the following would best mitigate this type of attack?

A.Load balancer
B.Port security
C.IPS
D.NGFW

Correct Answer: B

Port security is the best mitigation technique for preventing an attacker from flooding the MAC address table of network switches. Port security can limit the number of MAC addresses learned on a port, preventing an attacker from overwhelming the switch's MAC table (a form of MAC flooding attack). When the allowed number of MAC addresses is exceeded, port security can block additional devices or trigger alerts.
* Load balancer distributes network traffic but does not address MAC flooding attacks.
* IPS (Intrusion Prevention System) detects and prevents attacks but isn't specifically designed for MAC flooding mitigation.
* NGFW (Next-Generation Firewall) offers advanced traffic inspection but is not directly involved in MAC table security.

Comment: *

Name: *

Email: *

Verification: *

insert code

««
«
…
19
20
21
22
23
24
25
26
27
28
…
»
»»

[×]

Download PDF File

Enter your email address to download CompTIA.SY0-701.v2025-08-18.q266 Dumps

Email:

Our website provides the Largest and the most Latest vendors Certification Exam materials around the world.

Using dumps we provide to Pass the Exam, we has the Valid Dumps with passing guranteed just which you need.

DMCA
About
Contact Us
Privacy Policy
Terms & Conditions

©2026 FreeQAs

www.freeqas.com materials do not contain actual questions and answers from Cisco's certification exams.

Web Analytics Made Easy - Statcounter