SY0-601 Free Practice Test

- (Exam Topic 2)
A company's security team received notice of a critical vulnerability affecting a high-profile device within the web infrastructure. The vendor patch was just made available online but has not yet been regression tested in development environments. In the interim, firewall rules were implemented to reduce the access to the interface affected by the vulnerability. Which of the following controls does this scenario describe?

1. A. Deterrent
2. B. Compensating
3. C. Detective
4. D. Preventive

Correct Answer: B

- (Exam Topic 1)
A security analyst is designing the appropnate controls to limit unauthorized access to a physical site The analyst has a directive to utilize the lowest possible budget Which of the following would BEST meet the requirements?

1. A. Preventive controls
2. B. Compensating controls
3. C. Deterrent controls
4. D. Detective controls

Correct Answer: C
Deterrent makes sense on further thought. The question just states unauthorized access. It doesn't state the intent of any unauthorized intruders. Deterrence is designed to reduce the occurrence of unintentional bystanders or unmotivated malicious agents from entering the site. Should the agent be motivated enough, a preventative measure is needed. But again, the question doesn't list intentions. Therefore this method works to limit the number of unauthorized visitors by weeding out everyone but the motivated, and the truly stupid.

- (Exam Topic 3)
A network engineer has been asked to investigate why several wireless barcode scanners and wireless computers in a warehouse have intermittent connectivity to the shipping server. The barcode scanners and computers are all on forklift trucks and move around the warehouse during their regular use. Which of the
following should the engineer do to determine the issue? (Choose two.)

1. A. Perform a site survey
2. B. Deploy an FTK Imager
3. C. Create a heat map
4. D. Scan for rogue access points
5. E. Upgrade the security protocols

Correct Answer: AC

- (Exam Topic 5)
While reviewing pcap data, a network security analyst is able to locate plaintext usernames and passwords being sent from workstations to network witches. Which of the following is the security analyst MOST likely observing?

1. A. SNMP traps
2. B. A Telnet session
3. C. An SSH connection
4. D. SFTP traffic

Correct Answer: B

- (Exam Topic 6)
Which of the following controls would provide the BEST protection against tailgating?

1. A. Access control vestibule
2. B. Closed-circuit television
3. C. Proximity card reader
4. D. Faraday cage

Correct Answer: A