SY0-601 Free Practice Test

- (Exam Topic 3)
An analyst is working onan email incident in which target opened an attachment containing a worm. The analyst wants to implement mitigation techniques to prevent further spread. Which of the following is the BEST course of action for the analyst to take?

1. A. Apply a DLP solution
2. B. Implement network segmentation.
3. C. Utilize email content filtering.
4. D. Isolate the infected attachment.

Correct Answer: B

- (Exam Topic 1)
Which of the following control types is focused primarily on reducing risk before an incident occurs?

1. A. Preventive
2. B. Deterrent
3. C. Corrective
4. D. Detective

Correct Answer: D

- (Exam Topic 5)
Which of the following cryptographic concepts would a security engineer utilize while implementing non-repudiation? (Select TWO)

1. A. Block cipher
2. B. Hashing
3. C. Private key
4. D. Perfect forward secrecy
5. E. Salting
6. F. Symmetric keys

Correct Answer: BC

- (Exam Topic 6)
Which of the following BEST describes the method a security analyst would use to confirm a file that is downloaded from a trusted security website is not altered in transit or corrupted using a verified checksum?

1. A. Hashing
2. B. Salting
3. C. Integrity
4. D. Digital signature

Correct Answer: C

- (Exam Topic 3)
Against the recommendation of the IT security analyst, a company set all user passwords on a server as “P@)55wOrD". Upon review of the /etc/pesswa file,
an attacker found the following:

hich of the following BEST explains why the encrypted passwords do not match?

1. A. Perfect forward secrecy
2. B. Key stretching
3. C. Salting
4. D. Hashing

Correct Answer: C