Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

SY0-601 by CompTIA - Page 1 | ExamCademy

Mode Selection

Question 1

Question 2

Question 3

Which of the following components can be used to consolidate and forward inbound internet traffic to multiple cloud environments though a single firewall?

A Transit gateway
B Cloud hot site
C Edge computing
D DNS sinkhole

Question 4

A DBA reports that several production server hard drives were wiped over the weekend. The DBA also reports that several Linux servers were unavailable due to system files being deleted unexpectedly. A security analyst verified that software was configured to delete data deliberately from those servers. No backdoors to any servers were found. Which of the following attacks was MOST likely used to cause the data loss?

A Logic bomb
B Ransomware
C Fileless virus
D Remote access Trojans
E Rootkit

Question 5

Digital signatures use asymmetric encryption. This means the message is encrypted with:

A the sender's private key and decrypted with the sender's public key.
B the sender's public key and decrypted with the sender's private key.
C the sender's private key and decrypted with the recipient's public key.
D the sender's public key and decrypted with the recipient's private key.

Question 6

A security engineer was assigned to implement a solution to prevent attackers from gaining access by pretending to be authorized users. Which of the following technologies meets the requirement?

A SSO
B IDS
C MFA
D TPM

Question 7

The Chief Information Security Officer (CISO) has requested that a third-party vendor provide supporting documents that show proper controls are in place to protect customer data. Which of the following would be BEST for the third-party vendor to provide to the CISO?

A GDPR compliance attestation
B Cloud Security Alliance materials
C SOC 2 Type 2 report
D NIST RMF workbooks

Question 8

Which of the following is assured when a user signs an email using a private key?

A Non-repudiation
B Confidentiality
C Availability
D Authentication

Question 9

A systems administrator is troubleshooting a server's connection to an internal web server. The administrator needs to determine the correct ports to use. Which of the following tools BEST shows which ports on the web server are in a listening state?

A ipconfig
B ssh
C ping
D netstat

Question 10

Which of the following BEST reduces the security risks introduced when running systems that have expired vendor support and lack an immediate replacement?

A Implement proper network access restrictions.
B Initiate a bug bounty program.
C Classify the system as shadow IT.
D Increase the frequency of vulnerability scans.

Question 11

Due to unexpected circumstances, an IT company must vacate its main office, forcing all operations to alternate, off-site locations. Which of the following will the company MOST likely reference for guidance during this change?

A The business continuity plan
B The retention policy
C The disaster recovery plan
D The incident response plan

Question 12

While reviewing an alert that shows a malicious request on one web application, a cybersecurity analyst is alerted to a subsequent token reuse moments later on a different service using the same single sign-on method. Which of the following would BEST detect a malicious actor?

A Utilizing SIEM correlation engines
B Deploying Netflow at the network border
C Disabling session tokens for all sites
D Deploying a WAF for the web server

Question 13

Which of the following is an effective tool to stop or prevent the exfiltration of data from a network?

A DLP
B NIDS
C TPM
D FDE

Question 14

Two organizations plan to collaborate on the evaluation of new SIEM solutions for their respective companies. A combined effort from both organizations' SOC teams would speed up the effort. Which of the following can be written to document this agreement?

A MOU
B ISA
C SLA
D NDA

Question 15

The Chief Information Security Officer wants to prevent exfiltration of sensitive information from employee cell phones when using public USB power charging stations. Which of the following would be the BEST solution to implement?

A DLP
B USB data blocker
C USB OTG
D Disabling USB ports

Question 16

The board of directors at a company contracted with an insurance firm to limit the organization's liability. Which of the following risk management practices does this BEST describe?

A Transference
B Avoidance
C Mitigation
D Acknowledgement

Question 17

Which of the following is a risk that is specifically associated with hosting applications in the public cloud?

A Unsecured root accounts
B Zero-day
C Shared tenancy
D Insider threat

Question 18

DDoS attacks are causing an overload on the cluster of cloud servers. A security architect is researching alternatives to make the cloud environment respond to load fluctuation in a cost-effective way. Which of the following options BEST fulfills the architect's requirements?

A An orchestration solution that can adjust scalability of cloud assets
B Use of multipath by adding more connections to cloud storage
C Cloud assets replicated on geographically distributed regions
D An on-site backup that is displayed and only used when the load increases

Question 19

Which of the following documents provides expectations at a technical level for quality, availability, and responsibilities?

A EOL
B SLA
C MOU
D EOSL

Question 20

Which of the following is an example of transference of risk?

A Purchasing insurance
B Patching vulnerable servers
C Retiring outdated applications
D Application owner risk sign-off

Question 21

An employee received a word processing file that was delivered as an email attachment. The subject line and email content enticed the employee to open the attachment. Which of the following attack vectors BEST matches this malware?

A Embedded Python code
B Macro-enabled file
C Bash scripting
D Credential-harvesting website

Question 22

A security proposal was set up to track requests for remote access by creating a baseline of the users' common sign-in properties. When a baseline deviation is detected, an MFA challenge will be triggered. Which of the following should be configured in order to deploy the proposal?

A Context-aware authentication
B Simultaneous authentication of equals
C Extensive authentication protocol
D Agentless network access control

Question 23

Which of the following secure coding techniques makes compromised code more difficult for hackers to use?

A Obfuscation
B Normalization
C Execution
D Reuse

Question 24

Several attempts have been made to pick the door lock of a secure facility. As a result, the security engineer has been assigned to implement a stronger preventative access control. Which of the following would BEST complete the engineer's assignment?

A Replacing the traditional key with an RFID key
B Installing and monitoring a camera facing the door
C Setting motion-sensing lights to illuminate the door on activity
D Surrounding the property with fencing and gates

Question 25

As part of a security compliance assessment, an auditor performs automated vulnerability scans. In addition, which of the following should the auditor do to complete the assessment?

A User behavior analysis
B Packet captures
C Configuration reviews
D Log analysis

Page 1 of 35 • Questions 1-25 of 860

1 2 3 4 5

→

Know a question that should be here? Contribute to this exam

A user is attempting to navigate to a website from inside the company network using a desktop. When the user types in the URL, https://www.site.com, the user is presented with a certificate mismatch warning from the browser. The user does not receive a warning when visiting http://www.anothersite.com. Which of the following describes this attack?

A On-path
B Domain hijacking
C DNS poisoning
D Evil twin

A company wants to simplify the certificate management process. The company has a single domain with several dozen subdomains, all of which are publicly accessible on the internet. Which of the following BEST describes the type of certificate the company should implement?

A Subject alternative name
B Wildcard
C Self-signed
D Domain validation

SY0-601Preview