SY0-501 Exam Sample Questions Answers

Question No 1:

In order for network monitoring to work properly, you need a PC and a network card running in what mode?

A. Launch
B. Exposed
C. Promiscuous
D. Sweep

Answer: C

Question No 2:

Which of the following utilities can be used in Linux to view a list of users’ failed authentication attempts?

A. badlog
B. faillog
C. wronglog
D. killlog

Answer: B

Question No 3:

A periodic update that corrects problems in one version of a product is called a

A. Hotfix
B. Overhaul
C. Service pack
D. Security update

Answer: C

Question No 4:

A user has received an email from an external source which asks for details on the company’s new product line set for release in one month. The user has a detailed spec sheet but it is marked “Internal Proprietary Information”. Which of the following should the user do NEXT?

A. Contact their manager and request guidance on how to best move forward
B. Contact the help desk and/or incident response team to determine next steps
C. Provide the requestor with the email information since it will be released soon anyway
D. Reply back to the requestor to gain their contact information and call them

Answer: B

Question No 5:

Which of the following should be deployed to prevent the transmission of malicious traffic between virtual machines hosted on a singular physical device on a network?

A. HIPS on each virtual machine
B. NIPS on the network
C. NIDS on the network
D. HIDS on each virtual machine

Answer: A

Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *