SY0-501 무료 덤프문제 온라인 액세스

A security analyst wants to obfuscate some code and decides to use ROT13. Which of the following is an example of the text "HELLO WORLD" in ROT13?

• A.URYYB JBEYQ
• B.QYEBJ BYYRU
• C.KHOOR ZRUOG
• D.DLROWOLLEH

Which of the following would have the GREATEST impact on the supporting, database server if input handling is not properly implemented on a web application?

• A.Cross-site request forgery
• B.Server-side request forgery
• C.Cross-site scripting
• D.Insecure direct object reference
• E.Command injection

A chief information security officer (CISO) asks the security architect to design a method for contractors to access the company's internal wiki, corporate directory, and email services securely without allowing access to systems beyond the scope of their project. Which of the following methods would BEST fit the needs of the CISO?

• A.IaaS
• B.VDI
• C.vpn
• D.PaaS

A network administrator needs 10 prevent users from accessing the accounting department records. All users are connected to the same Layer 2 device and access the internal through the same router. Which of the following should be Implemented to segment me accounting department from the rest of the users?

• A.Implement VLANs and an ACL.
• B.Create a site-to-site VPN.
• C.Enable MAC address filtering.
• D.Install a firewall and create a DUZ

A company help desk as received several reports that employees have experienced identify theft and compromised accounts. This occurred several days after receiving an email asking them to update their personal bank information. Which of the following is a vulnerability that has been exploited?

• A.Improperly configured accounts
• B.Trojan horses
• C.Phishing
• D.Untrained users
• E.Forged certificates