You're reading from CompTIA Security+: SY0-601 Certification Guide Complete coverage of the new CompTIA Security+ (SY0-601) exam to help you pass on the first attempt

Product type Paperback

Published in Dec 2020

Publisher Packt

ISBN-13 9781800564244

Length 550 pages

Edition 2nd Edition

Languages

Python

Tools

Kali Linux

Concepts

Cybersecurity

Author (1):

Ian Neil

View More author details

Table of Contents (23) Chapters

Preface

1. Section 1: Security Aims and Objectives

2. Chapter 1: Understanding Security Fundamentals FREE CHAPTER

3. Chapter 2: Implementing Public Key Infrastructure

4. Chapter 3: Investigating Identity and Access Management

5. Chapter 4: Exploring Virtualization and Cloud Concepts

6. Section 2: Monitoring the Security Infrastructure

7. Chapter 5: Monitoring, Scanning, and Penetration Testing

8. Chapter 6: Understanding Secure and Insecure Protocols

9. Chapter 7: Delving into Network and Security Concepts

10. Chapter 8: Securing Wireless and Mobile Solutions

11. Section 3: Protecting the Security Environment

12. Chapter 9: Identifying Threats, Attacks, and Vulnerabilities

13. Chapter 10: Governance, Risk, and Compliance

14. Chapter 11: Managing Application Security

15. Chapter 12: Dealing with Incident Response Procedures

16. Section 4: Mock Tests

17. Chapter 13: Mock Exam 1

18. Mock Exam 1 Assessment

19. Chapter 14: Mock Exam 2

20. Mock Exam 2 Assessment

21. Assessment

22. Other Books You May Enjoy

Leave a review - let other readers know what you think

Review Questions

Now it's time to check your knowledge. Answer the questions, and then check your answers, which can be found in the Assessments section at the end of the book:

Which pen tester would be given source code?
Why would a shared account pose a problem to monitoring?
Which pen tester would be given no access prior to the test but, at the last minute, is given a diagram of the desktops?
What needs to be established prior to a pen test commencing?
While carrying out an unannounced pen test, how does the tester know if the internal security team are on to him?
What is the scope of rules of engagement?
If the pen test has been announced to the IT team, what information should they give regarding the test prior to the test starting?
What is the main difference between a credentialed and a non-credentialed vulnerability scan?
At what phase of a pen test does the tester return the systems back to the original state or inform the IT...