SY0-601 Free Practice Test

- (Exam Topic 3)
Under GDPR, which of the following is MOST responsible for the protection of privacy and website user rights?

1. A. The data protection officer
2. B. The data processor
3. C. The data owner
4. D. The data controller

Correct Answer: C

- (Exam Topic 3)
An organization's RPO for a critical system is two hours. The system is used Monday through Friday, from 9:00 am to 5:00 pm. Currently, the organization performs a full backup every Saturday that takes four hours to complete. Which of the following additional backup implementations would be the BEST way for the analyst to meet the business requirements?

1. A. Incremental backups Monday through Friday at 6:00 p.m and differential backups hourly
2. B. Full backups Monday through Friday at 6:00 p.m and incremental backups hourly.
3. C. incremental backups Monday through Friday at 6:00 p.m and full backups hourly.
4. D. Full backups Monday through Friday at 6:00 p.m and differential backups hourly.

Correct Answer: A

- (Exam Topic 3)
A security analyst is reviewing the following attack log output:

Which of the following types of attacks does this MOST likely represent?

1. A. Rainbow table
2. B. Brute-force
3. C. Password-spraying
4. D. Dictionary

Correct Answer: C
Password spraying is a type of brute-force attack in which a malicious actor uses a single password against targeted user accounts before moving on to attempt a second password, and so on. This technique allows the actor to remain undetected by avoiding rapid or frequent account lockouts.
https://us-cert.cisa.gov/ncas/current-activity/2019/08/08/acsc-releases-advisory-password-spraying-attacks#:~:te

- (Exam Topic 1)
A company recently added a DR site and is redesigning the network. Users at the DR site are having issues browsing websites.
INSTRUCTIONS
Click on each firewall to do the following:
Deny cleartext web traffic.
Ensure secure management protocols are used. Please Resolve issues at the DR site.
The ruleset order cannot be modified due to outside constraints.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.




Solution:
Firewall 1:


DNS Rule – ANY --> ANY --> DNS --> PERMIT
HTTPS Outbound – 10.0.0.1/24 --> ANY --> HTTPS --> PERMIT Management – ANY --> ANY --> SSH --> PERMIT
HTTPS Inbound – ANY --> ANY --> HTTPS --> PERMIT HTTP Inbound – ANY --> ANY --> HTTP --> DENY
Firewall 2: No changes should be made to this firewall
Graphical user interface, application Description automatically generated


Firewall 3:
DNS Rule – ANY --> ANY --> DNS --> PERMIT
HTTPS Outbound – 192.168.0.1/24 --> ANY --> HTTPS --> PERMIT Management – ANY --> ANY --> SSH --> PERMIT
HTTPS Inbound – ANY --> ANY --> HTTPS --> PERMIT HTTP Inbound – ANY --> ANY --> HTTP --> DENY
Graphical user interface, application Description automatically generated



Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

- (Exam Topic 3)
A commercial cyber-threat intelligence organization observes IoCs across a variety of unrelated customers. Prior to releasing specific threat intelligence to other paid subscribers, the organization is MOST likely
obligated by contracts to:

1. A. perform attribution to specific APTs and nation-state actors.
2. B. anonymize any PII that is observed within the IoC data.
3. C. add metadata to track the utilization of threat intelligence reports.
4. D. assist companies with impact assessments based on the observed data

Correct Answer: B