ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-501 All Questions

View all questions & answers for the SY0-501 exam
Go to Exam

Exam SY0-501 topic 1 question 881 discussion

Actual exam question from CompTIA's SY0-501
Question #: 881
Topic #: 1
[All SY0-501 Questions]

During an incident, a company's CIRT determines it is necessary to observe the continued network-based transactions between a callback domain and the malware running on an enterprise PC. Which of the following techniques would be BEST to enable this activity while reducing the risk of lateral spread and the risk that the adversary would notice any changes?

  • A. Physically move the PC to a separate Internet point of presence.
  • B. Create and apply microsegmentation rules.
  • C. Emulate the malware in a heavily monitored DMZ segment.
  • D. Apply network blacklisting rules for the adversary domain.
Show Suggested Answer Hide Answer
Suggested Answer: BA 🗳️
by Teza at Aug. 23, 2020, 11:57 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
steven1
Highly Voted 4 years, 9 months ago
B. could do it, and would be the best option so they can study the malware. 'Micro-segmentation is a network security technique that enables security architects to logically divide the data center into distinct security segments down to the individual workload level, and then define security controls and deliver services for each unique segment.' A. could be a temp solution until the segmentation is done (if there are two answers).
upvoted 11 times
...
Hanzero
Highly Voted 4 years, 9 months ago
tf two choices?
upvoted 9 times
...
KelvinYau
Most Recent 7 months, 3 weeks ago
Selected Answer: C
wtf, 2 ans?
upvoted 1 times
...
love310bus
1 year, 12 months ago
C."Emulate the malware in a heavily monitored DMZ segment" it provides an isolated environment for the malware to run.
upvoted 1 times
...
abd1234
3 years ago
Selected Answer: B
per the comments from others
upvoted 1 times
...
fonka
3 years, 11 months ago
Yes b Organizations that adopt microsegmentation realize tangible benefits in the form of a reduced attack surface, improved breach containment, stronger compliance posture and streamlined policy management.
upvoted 1 times
...
Staceycrank
4 years, 4 months ago
According to other sites, the answer is B
upvoted 3 times
...
hlwo
4 years, 8 months ago
key word " lateral spread "
upvoted 3 times
CrystalClear
4 years, 5 months ago
What the hell man , ffs what is the answer :P
upvoted 6 times
...
...
Teza
4 years, 10 months ago
The question didn't say choose two. Also, why do we need to physically move the affected system
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel