CompTIA SY0-701 Free Practice Questions — Page 3

Q: Several employees received a fraudulent text message from someone claiming to be the Chief Executive Officer (CEO). The message stated: “I’m in an airport right now with no access to email. I need you to buy gift cards for employee recognition awards. Please send the gift cards to following email address.” Which of the following are the best responses to this situation? (Choose two).

B. Add a smishing exercise to the annual company training.. The incident is a smishing attack impersonating the CEO. Warning all employees immediately (C) stops others from falling for it. Adding smishing to annual training (B) prevents recurrence through awareness. Canceling gift cards only applies if someone already acted. Changing phone numbers doesn't stop spoofing. Forensic investigation and MDM don't address the immediate awareness need.

Q: A company is required to use certified hardware when building networks. Which of the following best addresses the risks associated with procuring counterfeit hardware?

A. A thorough analysis of the supply chain. Supply chain analysis identifies where counterfeit hardware could be introduced before purchase. A corporate acquisition policy is internal and doesn't verify hardware authenticity. Right to audit clauses apply post-contract, not during procurement. Penetration testing checks security weaknesses, not hardware authenticity. Supply chain analysis directly targets counterfeit hardware risk at the source.

Q: Which of the following provides the details about the terms of a test with a third-party penetration tester?

A. Rules of engagement. Rules of engagement (ROE) define the scope, boundaries, and terms of a penetration test with the third party. Supply chain analysis is about vendor risk. Right to audit is a contractual clause for reviewing vendor practices. Due diligence is a general risk assessment process. ROE is the specific document that governs pentest conduct.

Q: A penetration tester begins an engagement by performing port and service scans against the client environment according to the rules of engagement. Which of the following reconnaissance types is the tester performing?

A. Active. Active reconnaissance involves direct interaction with the target (port scans, service enumeration). Passive reconnaissance uses indirect methods like OSINT without touching the target. Defensive and offensive are not standard reconnaissance classification terms in CompTIA SY0-701. Port and service scanning directly touches the target, making it active.

Q: Which of the following is required for an organization to properly manage its restore process in the event of system failure?

B. DRP. A Disaster Recovery Plan (DRP) documents procedures to restore systems after failure. IRP (Incident Response Plan) handles security incidents, not general system recovery. RPO (Recovery Point Objective) is a metric defining acceptable data loss, not a process document. SDLC governs software development. DRP is specifically required to manage and test the restore process.

Question 1

Several employees received a fraudulent text message from someone claiming to be the Chief Executive Officer (CEO). The message stated: “I’m in an airport right now with no access to email. I need you to buy gift cards for employee recognition awards. Please send the gift cards to following email address.” Which of the following are the best responses to this situation? (Choose two).

Answer

Show Answer & Explanation

Correct Answer: B. Add a smishing exercise to the annual company training.

The incident is a smishing attack impersonating the CEO. Warning all employees immediately (C) stops others from falling for it. Adding smishing to annual training (B) prevents recurrence through awareness. Canceling gift cards only applies if someone already acted. Changing phone numbers doesn't stop spoofing. Forensic investigation and MDM don't address the immediate awareness need.

Question 2

A company is required to use certified hardware when building networks. Which of the following best addresses the risks associated with procuring counterfeit hardware?

Answer

Show Answer & Explanation

Correct Answer: A. A thorough analysis of the supply chain

Supply chain analysis identifies where counterfeit hardware could be introduced before purchase. A corporate acquisition policy is internal and doesn't verify hardware authenticity. Right to audit clauses apply post-contract, not during procurement. Penetration testing checks security weaknesses, not hardware authenticity. Supply chain analysis directly targets counterfeit hardware risk at the source.

Question 3

Which of the following provides the details about the terms of a test with a third-party penetration tester?

Answer

Show Answer & Explanation

Correct Answer: A. Rules of engagement

Rules of engagement (ROE) define the scope, boundaries, and terms of a penetration test with the third party. Supply chain analysis is about vendor risk. Right to audit is a contractual clause for reviewing vendor practices. Due diligence is a general risk assessment process. ROE is the specific document that governs pentest conduct.

Question 4

A penetration tester begins an engagement by performing port and service scans against the client environment according to the rules of engagement. Which of the following reconnaissance types is the tester performing?

Answer

Show Answer & Explanation

Correct Answer: A. Active

Active reconnaissance involves direct interaction with the target (port scans, service enumeration). Passive reconnaissance uses indirect methods like OSINT without touching the target. Defensive and offensive are not standard reconnaissance classification terms in CompTIA SY0-701. Port and service scanning directly touches the target, making it active.

Question 5

Which of the following is required for an organization to properly manage its restore process in the event of system failure?

Answer

Show Answer & Explanation

Correct Answer: B. DRP

A Disaster Recovery Plan (DRP) documents procedures to restore systems after failure. IRP (Incident Response Plan) handles security incidents, not general system recovery. RPO (Recovery Point Objective) is a metric defining acceptable data loss, not a process document. SDLC governs software development. DRP is specifically required to manage and test the restore process.

CompTIA SY0-701 Free Practice Questions — Page 3

Ready for the Full SY0-701 Experience?