FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 15: CompTIA Security+

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 221

Multiple Choice

Review LaterAdd Note

Review Later

Which of the following methods minimizes the system interaction when gathering information to conduct a vulnerability assessment of a router?

A) Download the configuration
B) Run a credentialed scan.
C) Conduct the assessmenet during downtime
D) Change the routing to bypass the router.

E) All of the above
F) C) and D)

Correct Answer

verified

Show Answer

Question 222

Multiple Choice

Review LaterAdd Note

Review Later

Management wishes to add another authentication factor in addition to fingerprints and passwords in order to have three-factor authentication. Which of the following would BEST satisfy this request?

A) Retinal scan
B) Passphrase
C) Token fob
D) Security question

E) None of the above
F) A) and D)

Correct Answer

verified

Show Answer

Question 223

Multiple Choice

Review LaterAdd Note

Ann, a user, reports she is unable to access an application from her desktop. A security analyst verifies Ann's access and checks the SIEM for any errors. The security analyst reviews the log file from Ann's system and notices the following output: Which of the following is MOST likely preventing Ann from accessing the application from the desktop?

A hacker has a packet capture that contains: Which of the following tools will the hacker use against this type of capture?

A preventive control differs from a compensating control in that a preventive control is:

Joe a computer forensic technician responds to an active compromise of a database server. Joe first collects information in memory, then collects network traffic and finally conducts an image of the hard drive. Which of the following procedures did Joe follow?

After correctly configuring a new wireless enabled thermostat to control the temperature of the company's meeting room, Joe, a network administrator determines that the thermostat is not connecting to the internet-based control system. Joe verifies that the thermostat received the expected network parameters and it is associated with the AP. Additionally, the other wireless mobile devices connected to the same wireless network are functioning properly. The network administrator verified that the thermostat works when tested at his residence. Which of the following is the MOST likely reason the thermostat is not connecting to the internet?

A customer calls a technician and needs to remotely connect to a web server to change some code manually. The technician needs to configure the user's machine with protocols to connect to the Unix web server, which is behind a firewall. Which of the following protocols does the technician MOST likely need to configure?

A company offers SaaS, maintaining all customers' credentials and authenticating locally. Many large customers have requested the company offer some form of federation with their existing authentication infrastructures. Which of the following would allow customers to manage authentication and authorizations from within their existing organizations?

In a lessons learned report, it is suspected that a well-organized, well-funded, and extremely sophisticated group of attackers may have been responsible for a breach at a nuclear facility. Which of the following describes the type of actors that may have been implicated?

Which of the following is a security consideration for IoT devices?

An application was recently compromised after some malformed data came in via web form. Which of the following would MOST likely have prevented this?

A security analyst is investigating a potential breach. Upon gathering, documenting, and securing the evidence, which of the following actions is the NEXT step to minimize the business impact?

A security analyst is interested in setting up an IDS to monitor the company network. The analyst has been told there can be no network downtime to implement the solution, but the IDS must capture all of the network traffic. Which of the following should be used for the IDS implementation?

When connected to a secure WAP, which of the following encryption technologies is MOST likely to be configured when connecting to WPA2-PSK?

A security analyst is determining the point of compromise after a company was hacked. The analyst checks the server logs and sees that a user account was logged in at night, and several large compressed files were exfiltrated. The analyst then discovers the user last logged in four years ago and was terminated. Which of the following should the security analyst recommend to prevent this type of attack in the future? (Choose two.)

A security administrator has completed a monthly review of DNS server query logs. The administrator notices continuous name resolution attempts from a large number of internal hosts to a single Internet addressable domain name. The security administrator then correlated those logs with the establishment of persistent TCP connections out to this domain. The connections seem to be carrying on the order of kilobytes of data per week. Which of the following is the MOST likely explanation for this company?

A technician is implementing 802.1X with dynamic VLAN assignment based on a user Active Directory group membership. Which of the following configurations supports the VLAN definitions?

Which of the following is a component of multifactor authentication?

During certain vulnerability scanning scenarios, it    is possible for the target system to react in unexpected ways. This type of scenario is MOST commonly known as: