Which of the following best describes a use case for a DNS sinkhole?
Answer(s): C
Option C is correct because a DNS sinkhole captures or redirects traffic destined for known-malicious domains to an undercontrolled IP, allowing detection, logging, and analysis of compromised hosts or attempted communications.A) Incorrect — DNS sinkholes are not intended to reveal a company’s domain structure to attackers; they block or redirect, not expose assets.B) Incorrect — sinkholes do not purposefully lure employees to malicious sites; they divert or quarantine such requests for analysis, not drive them to harm.D) Incorrect — while sinkholes can attract attackers, the primary use is detection/containment, not serving as a lure for adversaries.
An incident analyst finds several image files on a hard disk. The image files may contain geolocation coordinates. Which of the following best describes the type of information the analyst is trying to extract from the image files?
Answer(s): B
Option B is correct because image files often include metadata (EXIF) that can store geolocation coordinates, camera info, and timestamps, which analysts extract during investigations. Incorrect — A: Log data are records of events, not embedded in images. Incorrect — C: Encrypted data would require keys to reveal content; metadata itself is not encrypted. Incorrect — D: Sensitive data refers to content that needs protection, but the question focuses on extracting embedded contextual information (metadata), not classification of data sensitivity.
Which of the following most likely describes why a security engineer would configure all outbound emails to use S/MIME digital signatures?
Answer(s): D
Option D is correct because S/MIME provides digital signatures that ensure non-repudiation; the sender cannot deny sending the message, and recipients can verify authenticity and integrity. Incorrect — A: Compliance standards may require encryption or controls, but non-repudiation is the primary benefit of signing. B: S/MIME does not inherently increase delivery rates; it can affect delivery due to cryptographic processing. C: While signing verifies integrity, blocking phishing requires additional controls like DMARC/SPF/DKIM and user training. A correct reason for signing is non-repudiation, not primarily anti-phishing or delivery mechanics.
During a recent company safety stand-down, the cyber-awareness team gave a presentation on the importance of cyber hygiene. One topic the team covered was best practices for printing centers. Which of the following describes an attack method that relates to printing centers?
Option D is correct because dumpster diving involves collecting discarded documents or media to obtain sensitive information, a threat relevant to printing centers where printed outputs may be improperly discarded. Incorrect — A) Whaling targets high-profile individuals in phishing against executives, not printing-center specific. Incorrect — B) Credential harvesting aims to steal login credentials, not tied to printing practices. Incorrect — C) Prepending is a social engineering method where malicious content is added before legitimate data, not a printing-center attack vector.
Which of the following considerations is the most important regarding cryptography used in an IoT device?
Answer(s): A
Option A is correct because IoT devices have limited CPU, memory, and power; cryptographic algorithms must be lightweight to meet performance and energy constraints.B is incorrect because while bandwidth matters, it is less critical than on-device resource limits for cryptographic operations and key management.C is incorrect because the choice between block vs stream ciphers is secondary to resource constraints; the primary concern is feasibility within the device’s limits.D is incorrect because TLS version compatibility is important for secure communication, but resource constraints more directly impact the viability of cryptography on IoT devices.
A coffee shop owner wants to restrict internet access to only paying customers by prompting them for a receipt number. Which of the following is the best method to use given this requirement?
Option B is correct because a captive portal forces users to view a login/acceptance page before gaining access, enabling validation via a receipt number for paying customers. A) WPA3 provides encrypted Wi-Fi but not user admission control. C) PSK (pre-shared key) grants network access to anyone with the key, not customer-specific access. D) IEEE 802.1X authenticates devices, not typical receipt-based access control for public Wi-Fi; it requires a RADIUS server and client certificates, which is overkill for a simple portal check.
While performing digital forensics, which of the following is considered the most volatile and should have the contents collected first?
Option B is correct because RAM is the most volatile evidence; its contents are lost when power is removed, so live memory must be captured first in digital forensics to preserve running processes, open files, and encryption keys. A) Hard drive: non-volatile storage; can be collected after memory. C) SSD: non-volatile and typically slower to access but not volatile like RAM. D) Temporary files: non-volatile on disk; may be lost or overwritten but not as immediately volatile as RAM. However, if memory capture is not possible, then other volatile sources should be prioritized.
A hosting provider needs to prove that its security controls have been in place over the last six months and have sufficiently protected customer data. Which of the following would provide the best proof that the hosting provider has met the requirements?
Option B is correct because a SOC 2 Type 2 report provides independent auditor assurance that a service organization’s controls operated effectively over a defined period (typically six months), directly addressing data security and confidentiality for customers. A) NIST CSF is a framework, not an attestation of ongoing controls. C) CIS Top 20 (now CIS Controls) are controls, not an external validation report. D) Vulnerability report documents weaknesses but does not prove sustained control effectiveness or regulatory-style assurance over time.
Share your comments for CompTIA SY0-701 exam with other users:
i have interest to get a sybase iq dba certification
want to pass exm.
are the answers correct?
good morning, could you please upload this exam again, i need it to test my knowledge in sd-wan with version 7.0.
very nice question
i have learning disability and this exam dumps allowed me to focus on the actual questions and not worry about notes and the those other study materials.
165 should be apt
please upload the dumps, real need of them
any recent feeedback?
question number 2 is indicating you are giving proper questions. observe and change properly.
passed today.40% questions were new.litwere case study,lots of new questions on afd,ratelimit,tm,lb,app gatway.got 2 set series of questions which are not present here.questions on azure cyclecloud, no.of vnet/vms required for implimentation,blueprints assignment/management group etc
practice test
want the dumps for emc content management server programming(cmsp)
brilliant and helpful
q75. azure files is pass
very helpful
thank you for these questions. it helped a lot.
how do i get the h12-724 dumps
nice data dumps
answers are correct
good explanation
hi team just want to know if there is any update version of the exam 350-401
helpful on 2017 scrum guide
planning to attempt for the exam.
pleaseee upload
thanks ly so i have information cia
hello team, i need sap qm dumps for practice
it’s good but not senatios based
q.119 - the correct answer is b - they are not captured in an update set as theyre data.
good matter
please upload c_sacp_2308
please upload the dump. thanks very much !!
good questions
hi, could you please update the latest dump version