Mike Meyers CompTIA Security+ SY0-601 Exam Certification Passport, 6th Edition (2021)

Preview (31 of 764 Pages)

100%

Purchase to unlock

Loading page image...

About the AuthorDawn Dunkerleyreceived a PhD in Information Systems from NovaSoutheastern University in 2011 with a doctoral focus on measuringinformation security success within organizations. Her research interestsinclude cyberwarfare, cybersecurity, and the success and measurement oforganizational cybersecurity initiatives. Dr. Dunkerley holds numerousprofessional certifications, including the Certified Information SystemsSecurity Professional (CISSP), Information Systems Security ArchitectureProfessional (ISSAP), Information Systems Security EngineeringProfessional (ISSEP), Information Systems Security ManagementProfessional (ISSMP), Certified Secure Software Lifecycle Professional(CSSLP), Certified in Risk and Information System Control (CRISC), andCompTIA Security+. She is an Area Editor for theCyber Defense Reviewpublished by the United States Army Cyber Institute at West Point and aFellow of the Americas Institute of Cybersecurity Leadership.About the Technical EditorBobby E. Rogersis an information security engineer working as a contractorfor U.S. Department of Defense agencies, helping to secure, certify, andaccredit their information systems. His duties include information systemsecurity engineering, risk management, and certification and accreditationefforts. He retired after 21 years in the U.S. Air Force, serving as a networksecurity engineer and instructor, and has secured networks all over the world.Bobby has a master’s degree in information assurance (IA) and is pursuing adoctoral degree in cybersecurity from Capitol Technology University inMaryland. His many certifications include CISSP-ISSEP, CEH, and MCSE:Security, as well as the CompTIA A+, Network+, Security+, and Mobility+

Loading page image...

certifications.

Loading page image...

Copyright © 2021 by McGraw Hill. All rights reserved. Except as permittedunder the United States Copyright Act of 1976, no part of this publicationmay be reproduced or distributed in any form or by any means, or stored in adatabase or retrieval system, without the prior written permission of thepublisher, with the exception that the program listings may be entered, stored,and executed in a computer system, but they may not be reproduced forpublication.ISBN: 978-1-26-046796-3MHID:1-26-046796-1The material in this eBook also appears in the print version of this title:ISBN: 978-1-26-046795-6, MHID: 1-26-046795-3.eBook conversion by codeMantraVersion 1.0All trademarks are trademarks of their respective owners. Rather than put atrademark symbol after every occurrence of a trademarked name, we usenames in an editorial fashion only, and to the benefit of the trademark owner,with no intention of infringement of the trademark. Where such designationsappear in this book, they have been printed with initial caps.McGraw-Hill Education eBooks are available at special quantity discounts touse as premiums and sales promotions or for use in corporate trainingprograms. To contact a representative, please visit the Contact Us page atwww.mhprofessional.com.Information has been obtained by McGraw-Hill Education from sourcesbelieved to be reliable. However, because of the possibility of human ormechanical error by our sources, McGraw-Hill Education, or others,McGraw-Hill Education does not guarantee the accuracy, adequacy, orcompleteness of any information and is not responsible for any errors oromissions or the results obtained from the use of such information.TERMS OF USE

Loading page image...

This is a copyrighted work and McGraw-Hill Education and its licensorsreserve all rights in and to the work. Use of this work is subject to theseterms. Except as permitted under the Copyright Act of 1976 and the right tostore and retrieve one copy of the work, you may not decompile, disassemble,reverse engineer, reproduce, modify, create derivative works based upon,transmit, distribute, disseminate, sell, publish or sublicense the work or anypart of it without McGraw-Hill Education’s prior consent. You may use thework for your own noncommercial and personal use; any other use of thework is strictly prohibited. Your right to use the work may be terminated ifyou fail to comply with these terms.THE WORK IS PROVIDED “AS IS.” McGRAW-HILL EDUCATIONAND ITS LICENSORS MAKE NO GUARANTEES OR WARRANTIESAS TO THE ACCURACY, ADEQUACY OR COMPLETENESS OF ORRESULTS TO BE OBTAINED FROM USING THE WORK, INCLUDINGANY INFORMATION THAT CAN BE ACCESSED THROUGH THEWORK VIA HYPERLINK OR OTHERWISE, AND EXPRESSLYDISCLAIM ANY WARRANTY, EXPRESS OR IMPLIED, INCLUDINGBUT NOT LIMITED TO IMPLIED WARRANTIES OFMERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.McGraw-Hill Education and its licensors do not warrant or guarantee that thefunctions contained in the work will meet your requirements or that itsoperation will be uninterrupted or error free. Neither McGraw-Hill Educationnor its licensors shall be liable to you or anyone else for any inaccuracy, erroror omission, regardless of cause, in the work or for any damages resultingtherefrom. McGraw-Hill Education has no responsibility for the content ofany information accessed through the work. Under no circumstances shallMcGraw-Hill Education and/or its licensors be liable for any indirect,incidental, special, punitive, consequential or similar damages that resultfrom the use of or inability to use the work, even if any of them has beenadvised of the possibility of such damages. This limitation of liability shallapply to any claim or cause whatsoever whether such claim or cause arises incontract, tort or otherwise.

Loading page image...

I dedicate this book to my amazing family. Thomas, Lauren,and Max, you are the lights of my life. I couldn’t be happier orprouder to be your wife and mom. I love you.—Dawn Dunkerley

Loading page image...

Contents at a Glance1.0Threats, Attacks, and Vulnerabilities5.0Governance, Risk, and Compliance2.0Architecture and Design3.0Implementation4.0Operations and IncidentResponseAAbout the OnlineContentIndex

Loading page image...

ContentsAcknowledgmentsIntroduction1.0Threats, Attacks, andVulnerabilitiesObjective 1.1Compare and bcontrast different typesof social engineering techniquesUnderstanding Social EngineeringSocial Engineering TechniquesPhishingWhalingShoulder SurfingTailgatingPharmingSpamSPIMVishingHoaxesDumpster DivingInfluence CampaignsREVIEW1.1 QUESTIONS1.1 ANSWERS

Loading page image...

Objective 1.2Given a scenario, analyze potential indicators todetermine the type of attackAnalyze and Differentiate Among Types of MalwareVirusesKeyloggersTrojansBackdoorLogic BombsWormsAdware and SpywareRansomwareRootkitsBotnetsMalicious Code or Script ExecutionAnalyze and Differentiate Among Types of Password AttacksAnalyze and Differentiate Among Nonstandard and EmergingAttacksSupply-Chain AttacksPhysical AttacksAdversarial Artificial IntelligenceCloud-Based vs. On-Premises AttacksREVIEW1.2 QUESTIONS1.2 ANSWERSObjective 1.3Given a scenario, analyze potential indicators associatedwith application attacksApplication AttacksBuffer OverflowsResource ExhaustionPrivilege EscalationHijackingHTML Attachments

Loading page image...

Malicious Add-OnsCross-Site ScriptingRequest ForgeriesApplication Programming Interface AttacksDriver ManipulationHeader ManipulationInjectionsDirectory TraversalArbitrary Code ExecutionZero-Day AttacksRace ConditionsReplayREVIEW1.3 QUESTIONS1.3 ANSWERSObjective 1.4Given a scenario, analyze potential indicators associatedwith network attacksWireless AttacksData EmanationJammingBluetooth VulnerabilitiesNear-Field CommunicationWar DrivingAccess Points (Evil Twin)DisassociationPacket Sniffing and EavesdroppingWPS AttacksWEP/WPA AttacksNetwork AttacksDenial-of-ServiceLayer 2 AttacksSmurf Attack

Loading page image...

TCP/IP HijackingOn-PathXmas AttackDNS PoisoningDomain KitingDomain ReputationTyposquattingClient-side AttacksWatering Hole AttackREVIEW1.4 QUESTIONS1.4 ANSWERSObjective 1.5Explain different threat actors, vectors, and intelligencesourcesUnderstanding and Analyzing ThreatsActors, Attributes, and VectorsThreat Intelligence SourcesResearch SourcesREVIEW1.5 QUESTIONS1.5 ANSWERSObjective 1.6Explain the security concerns associated with varioustypes of vulnerabilitiesVulnerabilitiesVulnerability TypesREVIEW1.6 QUESTIONS1.6 ANSWERSObjective 1.7Summarize the techniques used in security assessmentsImplement Assessment Techniques to Discover SecurityThreats and VulnerabilitiesVulnerability Assessment Tools and Techniques

Loading page image...

REVIEW1.7 QUESTIONS1.7 ANSWERSObjective 1.8Explain the techniques used in penetration testingPenetration Testing TechniquesKnown, Unknown, and Partially Known EnvironmentTestingExercise TypesREVIEW1.8 QUESTIONS1.8 ANSWERS5.0Governance, Risk, and ComplianceObjective 5.1Compare and contrast various types of controlsControl CategoriesManagerial ControlsTechnical ControlsOperational ControlsControl TypesREVIEW5.1 QUESTIONS5.1 ANSWERSObjective 5.2Explain the importance of applicable regulations,standards, or frameworks that impact organizational securitypostureUnderstanding Guidance DocumentsRegulations, Legislation, and StandardsKey FrameworksBenchmarks and Secure Configuration GuidesREVIEW5.2 QUESTIONS5.2 ANSWERS

Loading page image...

Objective 5.3Explain the importance of policies to organizationalsecurityPolicies Supporting Organizational SecurityUsing Organizational Policies to Reduce RiskSecurity Training and Awareness PoliciesData and Documentation PoliciesUser Behavior PoliciesChange Management PoliciesIncident Response PolicyThird-Party Risk ManagementREVIEW5.3 QUESTIONS5.3 ANSWERSObjective 5.4Summarize risk management processes and conceptsUnderstanding and Managing RiskRisk AssessmentRisk RegisterTypes of DisastersFunctional Recovery PlansHigh Availability and Redundancy PlanningREVIEW5.4 QUESTIONS5.4 ANSWERSObjective 5.5Explain privacy and sensitive data concepts in relationto securityPrivacy and Sensitive DataOrganizational Consequences of Privacy and DataBreachesNotification of BreachesData TypesPrivacy Enhancing TechnologiesData Ownership Roles and Responsibilities

Loading page image...

Terms of Agreement and Privacy NoticesREVIEW5.5 QUESTIONS5.5 ANSWERS2.0Architecture and DesignObjective 2.1Explain the importance of security concepts in anenterprise environmentEnterprise SecurityChange and Configuration ManagementData ProtectionData EncryptionCloud StorageStorage Area NetworksHandling Big DataData SovereigntyResponse and RecoveryDeception and DisruptionREVIEW2.1 QUESTIONS2.1 ANSWERSObjective 2.2Summarize virtualization and cloud computing conceptsCloud ComputingAnything as a ServiceCloud DeploymentVirtualizationREVIEW2.2 QUESTIONS2.2 ANSWERSObjective 2.3Summarize secure application development,deployment, and automation conceptsSecure Application Development, Deployment, and

Loading page image...

AutomationDevelopment Life-Cycle ModelsSecure Coding ConceptsREVIEW2.3 QUESTIONS2.3 ANSWERSObjective 2.4Summarize authentication and authorization designconceptsAuthentication ConceptsMultifactor AuthenticationAuthentication MethodsBiometricsCloud vs. On-Premises RequirementsREVIEW2.4 QUESTIONS2.4 ANSWERSObjective 2.5Given a scenario, implement cybersecurity resilienceResiliency ConceptsService LevelsRedundancyBackupsNonpersistenceREVIEW2.5 QUESTIONS2.5 ANSWERSObjective 2.6Explain the security implications of embedded andspecialized systemsEmbedded and Specialized SystemsEmbedded SystemsIndustrial Control Systems and Supervisory Control andData Acquisition SystemsInternet of Things

Loading page image...

Specialized SystemsVoice over IPHeating, Ventilation, and Air Conditioning SystemsDrones/UAVsMultifunction PrintersSurveillance SystemsREVIEW2.6 QUESTIONS2.6 ANSWERSObjective 2.7Explain the importance of physical security controlsPhysical SecurityPhysical BarriersBadgesLightingAlarmsSignageSurveillanceLocksAccess Control VestibulePersonnelFaraday CagesVisitor LogsUSB Data BlockerSecure AreasFire SuppressionEnvironmental IssuesREVIEW2.7 QUESTIONS2.7 ANSWERSObjective 2.8Summarize the basics of cryptographic conceptsCryptography

Loading page image...

Common Use CasesAlgorithmsQuantum CryptographyHomomorphic EncryptionSteganographyBlockchainHashingDigital SignaturesRIPEMDHMACREVIEW2.8 QUESTIONS2.8 ANSWERS3.0ImplementationObjective 3.1Given a scenario, implement secure protocolsProtocols and Use CasesTCP/IPDNSSECSSHS/MIMESRTPLDAPSFile Transfer ProtocolsSNMPv3HTTPSIPSecE-mail ProtocolsNTPDHCPUse CasesREVIEW

Loading page image...

3.1 QUESTIONS3.1 ANSWERSObjective 3.2Given a scenario, implement host or application securitysolutionsHost and Application SecurityEndpoint ProtectionBoot IntegrityDatabasesApplication SecurityHardeningREVIEW3.2 QUESTIONS3.2 ANSWERSObjective 3.3Given a scenario, implement secure network designsSecure Network DesignLoad BalancingNetwork SegmentationVirtual Private NetworkDNSNetwork Access ControlOut-of-Band ManagementPort SecurityNetwork AppliancesHardware Security ModulesSensorsCollectorsAggregatorsFirewallsAccess Control ListsRoute SecurityQuality of ServiceImplications of IPv6

Loading page image...

Port Spanning/MonitoringMonitoring ServicesFile Integrity MonitorsREVIEW3.3 QUESTIONS3.3 ANSWERSObjective 3.4Given a scenario, install and configure wireless securitysettingsWireless SecurityCryptographic ProtocolsAuthentication ProtocolsMethodsInstallation ConsiderationsREVIEW3.4 QUESTIONS3.4 ANSWERSObjective 3.5Given a scenario, implement secure mobile solutionsMobile Security SolutionsConnection Methods and ReceiversMobile Device ManagementMobile DevicesEnforcement and MonitoringDeployment ModelsREVIEW3.5 QUESTIONS3.5 ANSWERSObjective 3.6Given a scenario, apply cybersecurity solutions to thecloudCloud SecurityCloud Security ControlsSolutions

Loading page image...

Cloud Native Controls vs. Third-Party SolutionsREVIEW3.6 QUESTIONS3.6 ANSWERSObjective 3.7Given a scenario, implement identity and accountmanagement controlsIdentity and Account ManagementIdentityAccount TypesAccount PoliciesREVIEW3.7 QUESTIONS3.7 ANSWERSObjective 3.8Given a scenario, implement authentication andauthorization solutionsAuthentication and AuthorizationAuthentication ManagementAuthenticationAccess Control SchemesREVIEW3.8 QUESTIONS3.8 ANSWERSObjective 3.9Given a scenario, implement public key infrastructurePublic Key InfrastructurePKI FundamentalsTypes of CertificatesCertificate FormatsOther Important ConceptsREVIEW3.9 QUESTIONS3.9 ANSWERS

Loading page image...

4.0Operations and Incident ResponseObjective 4.1Given a scenario, use the appropriate tool to assessorganizational securityAssessing Organizational SecurityNetwork Reconnaissance and DiscoveryFile ManipulationShell and Script EnvironmentsPacket Capture and ReplayForensicsExploitation FrameworksPassword CrackersData SanitizationREVIEW4.1 QUESTIONS4.1 ANSWERSObjective 4.2Summarize the importance of policies, processes, andprocedures for incident responseIncident ResponseIncident Response PlansIncident Response ProcessExercisesAttack FrameworksCommunication PlanBusiness Continuity PlanDisaster Recovery PlanContinuity of Operations PlanningIncident Response TeamStakeholder ManagementRetention PoliciesREVIEW4.2 QUESTIONS

Loading page image...

4.2 ANSWERSObjective 4.3Given an incident, utilize appropriate data sources tosupport an investigationData SourcesVulnerability Scan OutputSIEM DashboardsLog Filessyslog/rsyslog/syslog-ngjournalctlNXLogBandwidth MonitorsMetadataNetFlow/sFlowProtocol Analyzer OutputREVIEW4.3 QUESTIONS4.3 ANSWERSObjective 4.4Given an incident, apply mitigation techniques orcontrols to secure an environmentIncident MitigationReconfigure Endpoint Security SolutionsConfiguration ChangesIsolationContainmentSegmentationSecurity Orchestration, Automation, and ResponseREVIEW4.4 QUESTIONS4.4 ANSWERSObjective 4.5Explain the key aspects of digital forensicsDigital ForensicsDocumentation and Evidence

Loading page image...

Acquisition and PreservationOn-Premises vs. CloudIntegrityData RecoveryREVIEW4.5 QUESTIONS4.5 ANSWERSAAbout the Online ContentSystem RequirementsYour Total Seminars Training Hub AccountPrivacy NoticeSingle User License Terms and ConditionsTotalTester OnlineTechnical SupportIndex

Loading page image...

AcknowledgmentsSo many thanks go to McGraw Hill Professional, especially Tim Green,Emily Walters, and Janet Walden. You’ve been exceptionally helpful andpatient through this process.Finally, I couldn’t have completed this project without my technicaleditor, Bobby Rogers. He continues to be the best partner and, moreimportantly, the best friend I could hope to work alongside. Thank you.—Dawn Dunkerley

Loading page image...

IntroductionThis book is your guide to CompTIA’s Security+ certification, the vendor-neutral, industry-standard certification developed for foundation-levelcybersecurity professionals. Based on a worldwide job task analysis, theexam structure focuses on cybersecurity core competencies, understandinggovernance, risk, and compliance; attacks, threats, and vulnerabilities;architecture and design; operations and incident response; andimplementation.Whether the CompTIA Security+ certification is your first step toward acareer focus in security or an additional skill credential, this book is yourguide to success on the CompTIA Security+ certification exam.This book is organized similarly to the official CompTIA Security+ examobjectives, consisting of five domains, each of which is divided intoobjectives that align with the CompTIA Security+ exam objectives. I stickclosely to the exam content that’s officially stated by CompTIA, and when Idon’t, I provide you my expert take on the best way to approach the topics.For example, I’ve chosen to present Domain 5, with its coverage of risk, afterDomain 1 and its discussion of threat and vulnerability.Each domain contains some useful items to call out points of interest:EXAM TIPIndicates critical topics you’re likely to see on the actualexam.

Loading page image...

NOTEPoints out ancillary but pertinent information, as well as areasfor further study.KEY TERMDescribes special terms, in detail, and in a way you caneasily understand.CAUTIONWarns you of common pitfalls, misconceptions, andpotentially harmful or risky situations in working with the technology inthe real world.Cross-ReferenceDirects you to other places in the book where concepts are covered, foryour reference.ADDITIONAL RESOURCESWhere you can find books, websites,and other media for further assistance.The end of each objective gives you two handy tools. TheReviewcoverseach objective with a synopsis—a great way to quickly review the criticalinformation. Then theQuestionsandAnswersenable you to test your newlyacquired skills. For further study, this book includes access to online practiceexams that will help to prepare you for taking the exam itself. All theinformation you need for accessing the exam questions is provided in the

Loading page image...

appendix. I recommend that you take the practice exams to identify whereyou have knowledge gaps and then go back and review as needed.The IT industry changes and grows continuously,and so should you.Finishing one certification is just a step in an ongoing process of gainingmore knowledge to match your constantly changing and developing skills.Remember, in the cybersecurity business, if you’re not moving forward,you’re way behind!

Loading page image...

Threats, Attacks, andVulnerabilitiesDomain Objectives• 1.1Compare and contrast different types of social engineeringtechniques• 1.2Given a scenario, analyze potential indicators to determine thetype of attack• 1.3Given a scenario, analyze potential indicators associated withapplication attacks• 1.4Given a scenario, analyze potential indicators associated withnetwork attacks• 1.5Explain different threat actors, vectors, and intelligence sources• 1.6Explain the security concerns associated with various types ofvulnerabilities• 1.7Summarize the techniques used in security assessments• 1.8Explain the techniques used in penetration testing

Preview Mode

This document has 764 pages. Sign in to access the full document!

Report

Study Now!

Document Details

Related Documents

CompTIA CySA+ Study Guide, 3rd Edition (2023)

CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide (Exam CS0-003) (2024)

CompTIA DataX Study Guide: Exam DY0-001 (2024)

CompTIA CySA+ Practice Tests: Exam CS0-003 (2023)

CompTIA Tech+ CertMike Exam FC0-U71 (2024)

CompTIA Security+ Practice Tests: Exam SY0-701 (2024)

CompTIA Network+ Study Guide: Exam N10-009 (2024)

CompTIA Network+ Practice Tests: Exam N10-009 (2024)

CompTIA DataSys+ Study Guide : Exam DS0-001 (2023)

CompTIA Security+ Study Guide with over 500 Practice Test Questions : Exam SY0-701 (2023)

Company

Explore

Study Tools