Online Access Free CompTIA.SY0-601.v2025-01-07.q105 Practice Test (Page 3)

SY0-601 Exam Question 6

Which of the following is a reason why a forensic specialist would create a plan to preserve data after an incident and prioritize the sequence for performing forensic analysis?

A.Order of volatility

B.Preservation of event logs

C.Chain of custody

D.Compliance with legal hold

SY0-601 Exam Question 7

Local guidelines require that all information systems meet a minimum security baseline to be compliant Which of the following can security administrators use to assess their system configurations against the baseline?

A.SOAR playbook

B.Security control matrix

C.Risk management framework

D.Benchmarks

SY0-601 Exam Question 8

A ecurily analyst b concemed alout iratic initiated to he dark web fom the corporate LAN. Which of the folowing motworks should he analyst monior?

A.SFTP

B.AS

C.Tor

D.LoC

SY0-601 Exam Question 9

A recent penetration test identified that an attacker could flood the MAC address table of network switches.
Which of the following would best mitigate this type of attack?

A.IPS

B.Load balancer

C.NGFW

D.Port security

SY0-601 Exam Question 10

An attack has occurred against a company.
INSTRUCTIONS
You have been tasked to do the following:
Identify the type of attack that is occurring on the network by clicking on the attacker's tablet and reviewing the output. (Answer Area 1).
Identify which compensating controls should be implemented on the assets, in order to reduce the effectiveness of future attacks by dragging them to the correct server.
(Answer area 2) All objects will be used, but not all placeholders may be filled. Objects may only be used once.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.