Online Access Free SY0-601 Exam Questions

No.# Selected Answer: C
Answer: VDI and thin clients

Virtual Desktop Infrastructure (VDI) is a technology that refers to the use of virtual machines to provide and manage virtual desktops. VDI hosts desktop environments on a centralized server and deploys them to end-users on request. VDI can be used to provide the desktop experience.

The computing hardware for VDI can be split into thin clients and thick clients:

- Thin clients are simple computers that can be accessed through a remote connection to a central server which provides the client all of its resources. Thin clients do not have hard drives so data isn't stored locally, and applications would also need to be accessed through a server. Thin clients would work for this scenario since data can't be stored in the conference rooms and thin clients cant store data anyway.

- Thick clients are fully functional networked computers that have their OS, local storage, and handles their own processing. Just think company-provided desktop computers or laptops. They can connect to a server if they want, but can work independently as well. Since files can be stored locally on a thick client, they wouldn't work with the requirements of the scenario....

No.# Selected Answer: D
A load balancer can monitor the backend servers and direct traffic to working servers when other servers go offline. It can also maintain session persistence, where a reverse proxy does not care about session persistence.

No.# Answer: D. Directory traversal & F. Privilege escalation

Directory traversal is a type of HTTP exploit in which a hacker uses the software on a web server to access data in a directory other than the server's root directory. If the attempt is successful, the threat actor can view restricted files or execute commands on the server.

Privilege escalation is the act of exploiting a bug, a design flaw, or a configuration oversight in an operating system or software application to gain elevated access to resources that are normally protected from an application or user.

No.# Selected Answer: D

Time-based logins involve allowing or restricting user access to certain systems or resources based on specific time periods. In this case, the user encountered issues logging in to the corporate network using a VPN over the weekend but was able to log in successfully on Monday. This suggests that there may be a policy in place that restricts VPN access during non-business hours (weekends) but allows access during regular business hours (Monday to Friday). The time-based login policy is enforced to control access to the network

No.# PCI DSS requires background checks for employees handling credit card holder data.

No.# Answer: SSH - SSH or (Secure Shell) is a protocol that enables two computers to communicate securely by encrypting the connection. Since the question is looking to transfer files over the internet to a specific directory, the FTP protocol can be used for the file transfer itself. As SSH can be used with the FTP protocol, this allows for secure(SSH) file transfer(FTP) over the internet.

No.# Selected Answer: D

The attacker is exploiting the supply chain vector. The supply chain refers to the series of processes and organizations involved in the production, distribution, and delivery of goods and services. By infiltrating third-party software vendors, the attacker is attempting to gain access to the supply chain and compromise the software that is used by the organization. This can allow the attacker to launch attacks, steal sensitive data, or disrupt operations by inserting malicious code into the software. Social media, cloud, and social engineering are not directly related to the supply chain and would not be effective for infiltrating third-party software vendors.

No.# Selected Answer: A

Increasing cryptographic security involves strengthening the randomness and unpredictability of cryptographic elements, such as keys, data, or initialization vectors. High data entropy refers to data with a high degree of randomness, making it more challenging for attackers to predict or guess. The use of high data entropy in cryptographic processes helps increase the security and effectiveness of encryption.

No.# Selected Answer: A
Answer: Password complexity

Password complexity is a measure of how difficult a password is to guess in relation to any number of guessing or cracking methods. For the security auditor to be able to successfully perform a dictionary attack, that means that the credentials were too predictable and was likely a common password.

No.# Selected Answer: B

Domain Name System Security Extensions (DNSSEC) is a set of specifications that extend the DNS protocol by adding cryptographic authentication

No.# Selected Answer: D
Production should be the last place where to apply patches as you have already tested properly

No.# Answer: MAC flooding

The question mentions that the table is on Layer 2 which is the Data link layer. The data-link layer is where switches operates on to move traffic. Switches will use MAC addresses to find the physical address of the device. This is because the Layer 2 address(MAC Address) will be unique on the local network.

MAC flooding is a cyber attack that overflows the MAC Table (Layer 2 Table) of switches by sending out invalid MAC addresses.

When a MAC Address table is full, the switch is no longer able to save new addresses, so it will enter into fail-open mode and begin broadcasting data (like a hub) to all ports. This will allow an attacker to get data packets intended for another computer and be able to steal sensitive information.

No.# Answer: Attempt to quarantine all infected hosts to limit further spread.

As soon as the malware was identified, the incident response begins. The steps for incident response are:
1. Preparation - Preparing for an attack and how to respond
2. Identification - Identifying the threat
3. Containment - Containing the threat
4. Eradication - Removing the threat
5. Recovery - Recovering affected systems
6. Lessons Learned - Evaluating the incident response, see where there can be improvements for a future incident.

No.# Incident is detected, now incident response has to happen. Runbook describes everyone's roles during incident response.

No.# Conduct a site survey - Option B

Site survey is used to measure signal strength and channel usage throughout the area to cover. A site survey starts with an architectural map of the site, with features that can cause background interference marked. These features include solid walls,
reflective surfaces, motors, microwave ovens, and so on. The survey is performed with a Wi-Fi-enabled laptop or mobile device with Wi-Fi analyzer software installed. The Wi-Fi analyzer records information about the signal obtained at regularly spaced points as the surveyor moves around the area.

No.# B: >> Pivoting -> The act of an attacker moving from one compromised system to one or more other systems on the network

No.# Most of the IoT devices have the same password given by the manufacturer. In my opinion C (Weak credentials) is the most common point of attack.

Many thanks to the experts who created the dumps for the SY0-601 exam. I passed the exam with 93% marks. Suggested to all.

Best exam guide by freecram for SY0-601 certification exam. I just studied for 2 days and confidently gave the exam. Got 95% marks. Thank you freecram.