Just passed Comptia Security + certification. Thank you so much 🎉🎉🎉

@@nathaliefosso9345 Congrats!!!

​@nathaliefosso9345 do you happen to have any notes or anything? I'm super stressing about this test!!

CONGRATS!!!

Congrats on passing! And yeah the acronyms are extremely important.

Congrats !

Good morning! I just took it Saturday and made a 710. I had 1 PBQ I did not recognize at all and had to guess.. it was the Encrypting VPN concentrators one. I have booked again for July 5th and wanted to ask if you had any guidance on it bc I’m afraid I could get the same PBQ again. Thanks in advanced.

@@dawsonearhart7445 Hey! I don't recall getting a PB question for specifically encryption related to VPN concentrators, however, I did get a PB question for setting up two VPN concentrators for two hosts across the internet. To be honest, I didn't really study/care about the PBQs since you can pass without getting any of them right, so I mainly focused on the multiple choice questions. However, I've noticed that the knowledge required to correctly answer these PB questions is quite broad, meaning that there are multiple topics that you would need to understand in order to get one of the PB questions correct. I'm not a study expert, but given that you have about 2 weeks left until your next exam, depending on your dedication to passing the exam, it might be worth trying to practice setting up a VPN concentrator in a virtual environment or something related to hands-on practice if you want to specifically get that question right. I can't guarantee that my advice will help you, but hopefully I was able to help a bit. P.S. I hope I am not overstepping my boundaries by saying this, but seeing that you got a 710, I think it might help if you also get more practice on the multiple choice questions, as I doubt one PBQ would be the difference between you passing or not at your current score. I was a bit cheap on searching for practice questions, so I didn't use any paid services or products for practice questions. Here's a list of all the questions I practiced with: Cyber James' Security+ videos, Professor Messer's SY0-701 Study Group livestreams (on his youtube channel), Professor Messer's weekly quizzes on his website (www.professormesser.com/category/security-plus/sy0-701/sy0-701-pop-quiz/), and a few other 1-3 hour youtube videos on sy0-701 practice questions (preferably the ones that give explanations for all answer choices, as it's important to know why the other choices in a question might be wrong).

Hi, I"m using professer messer as well and i wanted to ask if you were able to go through all the videos and also, is the structure of the exam similar to the structure of james practice questions or even more complex?

@@damilolaadebayo8236 Hey, before taking the exam, I did watch his entire playlist for Sy0-701 (I didn't look at 601) over the course of about a couple weeks. I only watched the playlist once in its entirety and only revisited videos related to answers I got wrong on practice questions (not limited to Professor Messer's) to help remember the content better. As for the structure of the exam compared to his practice questions, the exam always starts off with around a few performance based questions (PBQs), which you can skip and revisit later (as with any other question). These PBQs are the most complex questions, often testing multiple learning objectives that CompTIA is looking for. For the multiple choice questions, which is what the rest of the test questions were, the real exam seemed to be worded a bit differently. Professor Messer's weekly quiz questions were simpler in the sense that the questions are consistent in what they are asking for (for example, the answer choices that Professor Messer provides are all short phrases or one-word answers). But for the exam, some questions will be similar to his questions, and some will be similar to what was in Cyber James' videos. His live study sessions however, do have a bit of variety, at least more so than the weekly quiz questions. Overall, I would say that regardless of the type of questions you get, just understanding the CompTIA learning objectives (either by doing lots of practice questions, or doing some other study method that you find helps you remember the material) should give you an immunity to whatever questions they may ask you. Also, just like in these Cyber James videos, they are quite deliberate on their wording, so it helped me to read the questions slowly and carefully, even if it felt like I already knew what the answer might be.

100%. You would let them know and then report to IT. Still complying with the policy but uniting risk by taking immediate action. Plus you know that IT dept isn’t going to look into it for a few hours at least 😂

Hey Congrats!! Can u comment on PBQs like how many were there and their complexity?

Got the job yet?

Congrats on passing!!!!

Thank you so much!

💪 hope you’re doing well buddy

You got this! Let me know when you pass!

How’d it go bro?

Did you pass?

@@ImCyberJames I passed thanks for all your videos again!!

@@Unknownlifters I passed!!!!

More to come keep a lookout for more! And good luck with your exam.

How did it go

@@micheal67 I passed it in the beginning of June, I passed with a 750 haha. Didn’t think I was gonna pass it, there was like 2 questions from this guys videos that were on my exam!! I don’t remember which but I remember how many since it was a while ago now

Absolutely!

You’re on the right track. I would recommend spending time going over all the acronyms in the exam objective. Out of all the feedback my students have given after taking their exams knowing acronyms was mentioned the most. You got this, let me know how you do!!

@ I sure will. Thanks.

@@ImCyberJames I just finished my exam and passed! All glory to God the Most High and Jesus Christ for answering my prayers. Your videos definitely were put before me at the right time because you helped me with really thinking about what they were asking. Thank you.

Congrats!!! Thank you, but keep in mind YOURE the one who passed. Congratulations!

Congrats!!!!

Thank you. These seem way too simple. I should not be getting a 20/20 before even starting to study

@@ethanshihadeh5458lol the test is 100% just as easy.

Damn. I got like half of these wrong. I read the whole book and I have years of experience in I.T. too lmao.

@@JP-pq9xi well I’ve taken compTIA exams back to back this past year, so there is overlap and i know the style of how they ask questions now. You’ve got it man it’ll come to you👍👍

​@@ethanshihadeh5458were the practice exam questions similar to the actual test questions?

you would be right. the best option would 100% be TLS, but since the question didn't list the answer its safe to assume they would mean SSL as in TLS. since these two words are almost used interchangeably now-a-days. if the question has you decide between SSL and TLS, always choose TLS. but if TLS is not an option, choose SSL if its encryption for COMMUNICATIONS.

Exactly what I was thinking lmao

Changing the user’s logon credentials doesn’t stop the data from being accessed. It doesn’t mention the hard drive being encrypted so you have to assume it isn’t, and whether the data is backed up is irrelevant to the question.

Youre not alone

🩷

Haha I hear you dude. I've almost given up like 5 times now. About to take the exam in like 3 weeks, i'm on my 5th practice exam and just now starting to gain some confidence.

@@jeremytucker3106 how did it go??

@@Pedro-bt1sw Bro I passed on my first try! I was shocked, I totally thought I was going to fail during the test :P

Agreed. Bad advice. Either that answer was wrong or the question is. Nothing in any of the exam objectives ever mentions or implies calling a bank or company from an obvious phishing email is in any way an enterprises solution to advising the recipient.

Only problem with turning it off is it wipes forensic evidence if stored in memory. Here it’s pretty obvious where the attack came from but it’s best practice to isolate and leave device running.

recovering data would come after the incident has been dealt with in the recovery plan. the best option would be to isolate so the machine doesn't affect/infect other machines on the network. once it's isolated, and once you eradicate the threat, you can worry about data recovery with back-ups later. i believe the question also doesnt specify storage devices. for comptia, its best not to assume what resources or hardware a company has. it's probably best to just use the information given and pick the BEST answer with that information. if you power down and remove the device, theres a chance thats the only storage device on that machine, so you'd still have to isolate it to deal with the threat. idk thats just my opinion tho

Good luck! Let me know how it goes!

@@ImCyberJames I passed!

@@kianaaleigh Wooo! Let's go! Congrats!

@@ImCyberJames Thank you!!

good luck friend, taking mine on the 5th. praying i pass it first try 😭

@@MomoJawa did u pass?

@@walidpopal9076 yep! 763 was my score

Thank you! It will be out in the next few days!

@@ImCyberJames WOOOOOO!!!!!!!

No, SSL. This is a bit of a trick question, because yes SSL is considered insecure compared to TLS. However, the question asks which is most appropriate to secure the communication. Communication is key here. AES alone does not encrypt communication, but SSL can use AES as part of secure communications. If TLS was an option, the answer would be TLS. SSL is still on the 701 exam objectives.

if the question asks whats the best ENCRYPTION method in general/data at rest, 100% AES since its used by the us military. if the question asks about best encryption for COMMUNICATIONS 100% SSL/TLS.

Thank you, and no these questions were made using the 701 objectives.

@@ImCyberJames Hi! I learned that SSL is no longer used due to known vulnerabilities and it has been replaced by TLS. Do you confirm/agree with this? If so, can you explain how SSL can be the correct answer then? Thanks!

@@zannimo1 Correct, TLS replaced SSL. Even though the word SSL is still used today, 99% of the time they are referring to TLS. CompTIA still wants you to know what SSL is. Out of all the given answers for question 3, SSL, although technically not considered secure, is still the best answer for secure communication out of the possible answers.

Thanks!

Make sure you feel like you're ready, good luck!

u mean question 3. SSL is right because MD5 is hashing technique, DSA is primarily used for Digital Signatures, AES is encryption technique used to encrypt data at rest and is used in protocols like SSL or TLS to enrypt data in transit so we select SSL as whole.

and to further strengthen his point, SSL is TLS, but TLS is a more updated version. if the question doesn't have TLS, pick SSL. and if the question has both, pick TLS.

The two main reasons why you should not immediately power down an endpoint suspected of ransomware is because 1. It could lead to permanent data loss and 2. You would not be able to continue analyzing the ransomware (if necessary) and volatile memory would be erased.

@@ImCyberJames It makes sense but could they not have written a program to automatically encrypt once you disconnect or isolate from the network? Some viruses will actually delete once they are no longer connected to the network? By powering off could you not boot in safe mode and start the scan after you isolate? I feel like that if the ransom was embedded in certain processes that would not run during the boot, you would be able to quarantine in a safe environment after the reboot and scan. If it is a active ransom attack they have already encrypted and gained the key before they reached out to you anyway..

B isn't a bad answer, the symptoms are similar. The reason why I went with A was because the scenario mentioned a web application. Web applications are connected to a database, and web applications are *often* targeted by SQL attacks. In my mind the specially crafted code was SQL code, and without input sanitation it left the database that connects the finance processes vulnerable.

Thank you for the heads up, I blurred that out.

Sorry I wish I could but it's not up to me! The questions have to be made and then sent to me to take

@@ImCyberJamesyou have have 4 videos for 601 are they similar to 701?

Did u pass your exam?

@@BoomBoom-bu2no yes got 767

@@akshatkembhavi9837 do you have any tips or advice for the test i take it this monday?

They’re created based on the comptia objectives for me to take and record.

Where did you find these questions?