SY0-701 Exam Discussions & Posts
mar
Commented on July 27, 2025
Q 151: B doesn't make sense to me as an access badge can be lost/stolen. Wouldn't vid surveillance be a better solution? unless "secure" is the key word here. vid surveillance then doesn't "secure" anything it is more of a deter/monitor solution.... I guess I answered my own question...
UNITED STATES
MAGICBUNNIEZ
Commented on July 26, 2025
208:Based on the scenario described—where an application server's software is behaving abnormally by generating unexpected outbound traffic over random high ports—the most likely exploited vulnerability is:
Memory Injection (e.g., Buffer Overflow or Code Injection)
Why?
Abnormal process behavior (unexpected network traffic) suggests execution of malicious code injected into the software’s memory.
Random high ports are commonly used by malware for command-and-control (C2) communication or data exfiltration.
Memory-based attacks (e.g., buffer overflows, ROP attacks) can hijack a legitimate process to execute attacker-controlled payloads.
Why Not the Others?
Race Condition
Causes timing-related exploits (e.g., TOCTOU attacks) but does not typically generate network traffic.
Would lead to logic errors, not outbound connections.
Side Loading
Involves loading malicious DLLs/libraries, but this usually happens at startup, not mid-execution.
More common in Windows environments (e.g.,
UNITED STATES
MAGICBUNNIEZ
Commented on July 26, 2025
194: To ensure the organization follows security best practices when transitioning an on-premises application to a cloud-based service, the security team should implement all of the listed controls, as they address different critical aspects of cloud security. However, if prioritizing the most fundamental requirement for a secure cloud deployment, the team should first ensure:
1. Virtualization and Isolation of Resources
Why? Cloud environments rely on multi-tenancy, so virtualization and isolation prevent cross-tenant attacks (e.g., VM escapes, side-channel attacks).
Best Practice: Use hypervisor security, container isolation, and micro-segmentation to enforce strict boundaries between workloads.
Supporting Controls (Also Critical but Secondary to Core Isolation):
2. Network Segmentation
Limits lateral movement if a breach occurs (e.g., separating frontend/backend tiers).
However, isolation at the virtualization layer is more foundational in cloud environments.
3. Data Encryption
UNITED STATES
stephen
Commented on July 26, 2025
very helpful
Anonymous
MAGICBUNNIEZ
Commented on July 24, 2025
To mitigate the risk of sensitive data exfiltration after a data classification initiative, the most effective solution among the given options is:
DLP (Data Loss Prevention)
Why DLP?
DLP solutions are specifically designed to detect and prevent unauthorized transfers or exfiltration of sensitive data.
They can monitor, classify, and block sensitive data (e.g., PII, financial records, intellectual property) from being emailed, uploaded, or copied outside the organization.
DLP enforces policies based on data classification, ensuring compliance with regulations like GDPR, HIPAA, or PCI DSS.
Other Options (Less Relevant for Data Exfiltration Mitigation):
XDR (Extended Detection and Response) – Focuses on threat detection and response, not necessarily preventing data exfiltration directly.
SPF (Sender Policy Framework) – Helps prevent email spoofing but does not stop data leaks.
DMARC (Domain-based Message Authentication, Reporting & Conformance) – Improves email authentication but d
UNITED STATES
Ola
Commented on July 23, 2025
Question 184 answer should be critical.
Anonymous
Charles
Commented on July 23, 2025
Awesome prep questions
Anonymous
Ola
Commented on July 23, 2025
Question 1015 - Should the answer not be executive whaling?
Anonymous
Ola
Commented on July 21, 2025
Question 50 is kind of tricky. Should the answer not be a cold site since we are looking at cost?
Anonymous
Bdot
Commented on June 22, 2025
Question 6: is A that is a BEC
UNITED STATES
Savvy
Commented on June 20, 2025
question 150: the correct answer is Assigning individual user IDs
Anonymous
Savvy
Commented on June 20, 2025
question 64 is Input validation
Anonymous
Clinka
Commented on June 20, 2025
Question #136 answer is End Of Life EOL not End of Support.
UNITED STATES
JustSayin
Commented on June 19, 2025
8: WAF, not SD-WAN
UNITED STATES
USA
Commented on June 19, 2025
This was very useful!
UNITED STATES
ismail
Commented on June 18, 2025
this is very usefull
Anonymous
Clinka
Commented on June 17, 2025
This is a great resource. Many thanks to those that created this.
UNITED STATES
Batman
Commented on June 10, 2025
Are the questions reliable?
Anonymous
Student
Commented on June 09, 2025
Does anyone know where to find the PBQ questions for the exam?
UNITED STATES
Qw
Commented on June 09, 2025
226 Containerization should be the answer
Anonymous
gb
Commented on June 05, 2025
184 critical i think is the correct option
UNITED KINGDOM
Batman
Commented on June 05, 2025
Question 18, all of my other sources say this answer SHOULD be D: -Threat Scope Reduction
(the answer I gave and then looked it up when this said I was wrong)
AI Overview
If an analyst is evaluating the implementation of Zero Trust principles within the data plane, the most relevant thing to evaluate is threat scope reduction.
I asked the question of AI (without offering answers) and the above is the result)
UNITED STATES
Batman
Commented on June 04, 2025
Am trying hard to memorize all of this - does anyone know what scenario questions there are?
UNITED STATES
bubs
Commented on June 03, 2025
question 136 is End of Life
Anonymous
Ron
Commented on June 03, 2025
Very intuitive.
UNITED STATES
anonymous
Commented on May 31, 2025
While studying through this, how recent or relevant are the questions? Does it update with the changes of the current exam? Thanks!
UNITED STATES
Babatunde
Commented on May 29, 2025
These questions are a life saver. Thanks to the team
EUROPEAN UNION
Nikolai
Commented on May 27, 2025
176 should be segmentation. Hashing doesn't make sense for the answer.
CZECH REPUBLIC
Viksit
Commented on May 27, 2025
@Ola,
Yes, I can tell you that almost all of these questions are word by word from the real exam. I wrote mine last week and saw almost 90% of these questions in my test.
Anonymous
Ola
Commented on May 26, 2025
Can most of this question be reliable please
Anonymous
Rineesh PM
Commented on May 25, 2025
Q 283, answer is data owner
BAHRAIN
Bryan
Commented on May 25, 2025
guys i want to know how much of these questions appears in real exams. is it worth to go with it and security study guide?? please advice
BAHRAIN
Bryan
Commented on May 25, 2025
Guys just wanna how good is this PBQ for the exam? how similar the exams questions are from these PBQ
BAHRAIN
Ted
Commented on May 24, 2025
@Comma Sotra
I have purchased the full version and got 50% off but I had to buy 2 exams.
I already passed this one.
CANADA
Rineesh PM
Commented on May 24, 2025
Q: 256 AI say BCP is an answer
Anonymous
Comma Sutra
Commented on May 24, 2025
Hey everyone, has anyone here purchased the exam questions from this site, or were the free questions sufficient to pass? I’m a bit worried about getting scammed!
UNITED STATES
anonymous
Commented on May 23, 2025
whoever wrote the answer to question 216 forgot to sanitize their input, ironically.
UNITED STATES
wouldnt you like to know
Commented on May 20, 2025
Question 76, the PBQ, lists the answer as virus. ChatGPT lists the answer as a worm. Self-replicating is wormish (think tapeworm vibes). "Well known credentials" signals compromised passwords. I'd select change default system password (though maybe app is more appropriate?).
UNITED STATES
Justin McMallon
Commented on May 19, 2025
Answer 50 should be: Cold NOT warm
UNITED STATES
Rineesh PM
Commented on May 19, 2025
Life CHanging dumps kudos to the team
GERMANY
Justin McMallon
Commented on May 18, 2025
These are the most accurate answers I have ever seen for the CompTIA Security+ Exam.
UNITED STATES
Dany Gynes
Commented on May 18, 2025
this is amazing, a lot of questions I have seen in the real exam when I failed, I will prepare now from here again.
UNITED STATES
Black
Commented on May 15, 2025
Passed yesterday with score of 773.
this dump is roughly 50% valid for unpaid version. I got 3 PBQ which are host infections and autoscaling and one new i have not seen before.
Question: Recent system breach due to password, choose the best password practices and what mitigation will prevent it from happening again?
Password protection standard: Reuse, Complexity, Length, Expiration, Age (you can choose any possible combination, no limit)
Answer: Reuse, Expiration, length (as per comptia, age and complexity are not best password practices)
Mitigation: FIDO Hardware, PIN, Password, SMS OTP
Answer: FIDO Hardware
I came across one youtube channel a few days before my exams. He thoroughly explains every PBQs. All his questions are literally form dumps. I HIGHLY recommend to check it out.
https://www.youtube.com/@MohammadLotfiA
Anonymous
Chika
Commented on May 11, 2025
Question 216 has no option A displayed
UNITED STATES
Chika
Commented on May 11, 2025
Question 136: End of life (EOL) refers to when a product (such as a device or software) is no longer sold, supported, or maintained by the vendor. This includes stopping updates, patches, and technical support. Once a device reaches EOL, it becomes a security risk if left in production without additional protections.
UNITED STATES
Chika
Commented on May 11, 2025
I confuse myself on question 45 with answers like fines and sanctions
UNITED STATES
Chika
Commented on May 11, 2025
This is impressive
UNITED STATES
Chika
Commented on May 11, 2025
Is the answer to question 18 not supposed to be secured zones ?
UNITED STATES
Sergio - SP Brasil
Commented on May 10, 2025
Questão 50 - fiquei dividido com uma resposta no simulado elenca a correta como Warm, Gostaria de saber se realmente essa resposta está correta, pois se for olhar pelo cenário o site frio é apropriada quando o tempo de RTO e RPO são mais longos. A Warm é mais rápida, mas se deparando com o cenário da questão de RTO/RPO em torno de 2 dias seria desnecessária
BRAZIL
Sergio - SP
Commented on May 10, 2025
fiquei dividido com uma resposta no simulado elenca a correta como Warm, Gostaria de saber se realmente essa resposta está correta? Pois se for olhar pelo cenário o site frio é apropriada quando o tempo de RTO e RPO são mais longos. A Warm é mais rápida, mas se deparando com o cenário da questão de RTO/RPO em torno de 2 dias seria desnecessária
BRAZIL
Black
Commented on May 10, 2025
@White - Q139 answer is EOS not EOL. The question clearly mentioned patches are no longer supported. EOS is the device where the vendor stops releasing patches, EOL is the device where vendor stops manufacturing.
Anonymous
White
Commented on May 03, 2025
Q139 ist wrong. Could be corrected? Please.
Anonymous
White
Commented on May 03, 2025
The right answer ist end of life
Anonymous
Nikolai
Commented on April 28, 2025
How are you all memorizing these? I'm using Anki and it seems to be helping along with a course on YouTube.
ROMANIA
Mac
Commented on April 25, 2025
Is question 184 correct?
Should the answer be critical?
UNITED KINGDOM
Anonymous
Commented on April 24, 2025
Should question 76, part 3, not be a worm & change the default app password?
EUROPEAN UNION
Alieu
Commented on April 21, 2025
Question 226 is incorrect. The correct answer is Containerization.
Anonymous
Sigma Tyler Kuo
Commented on April 21, 2025
Question 77 is wrong It should be origin clean infected clean infected
Anonymous
well, akshully
Commented on April 15, 2025
I'm pretty sure question 165 has an incorrect answer. They should be data retention and sanitization.
Anonymous
Sam
Commented on March 24, 2025
Hi guys,
This is Samuel from Florida. Alright, so I passed my CompTIA Security+ (SY0-701) exam and I am certified now.Lemme tell ya... this exam very hard. I used this exam dumps. Man, the questions same same, which was really nice. I also went through some books and practice tests, and messed around with labs a bit. A mix of everything is the way to go, I reckon. If you put in the time and prep well you’ll do just fine!
UNITED STATES
Toledo
Commented on March 19, 2025
I have been visiting this site and studied this exam for 1 week now. Wrote my exam yesterday and I passed. Most of the questions are word by word.
Hungary
John Doe
Commented on March 10, 2025
Some comments about the brain dumps.
FRANCE
smit
Commented on March 08, 2025
Uma duvida gente!!
Quantas vezes repassaram as 546 perguntas, para conceituar o suficiente para serem aprovados no exame?
UNITED STATES
H
Commented on March 07, 2025
With these questions, I passed the exam—highly recommended.
Question 77 appeared, but I think it was slightly different on the exam.
Overall, highly recommended.
SPAIN