Just passed Comptia Security + certification. Thank you so much 🎉🎉🎉

@@nathaliefosso9345 Congrats!!!

Congrats !

Good morning! I just took it Saturday and made a 710. I had 1 PBQ I did not recognize at all and had to guess.. it was the Encrypting VPN concentrators one. I have booked again for July 5th and wanted to ask if you had any guidance on it bc I’m afraid I could get the same PBQ again. Thanks in advanced.

@@katherineearhart7445 Hey! I don't recall getting a PB question for specifically encryption related to VPN concentrators, however, I did get a PB question for setting up two VPN concentrators for two hosts across the internet. To be honest, I didn't really study/care about the PBQs since you can pass without getting any of them right, so I mainly focused on the multiple choice questions. However, I've noticed that the knowledge required to correctly answer these PB questions is quite broad, meaning that there are multiple topics that you would need to understand in order to get one of the PB questions correct. I'm not a study expert, but given that you have about 2 weeks left until your next exam, depending on your dedication to passing the exam, it might be worth trying to practice setting up a VPN concentrator in a virtual environment or something related to hands-on practice if you want to specifically get that question right. I can't guarantee that my advice will help you, but hopefully I was able to help a bit. P.S. I hope I am not overstepping my boundaries by saying this, but seeing that you got a 710, I think it might help if you also get more practice on the multiple choice questions, as I doubt one PBQ would be the difference between you passing or not at your current score. I was a bit cheap on searching for practice questions, so I didn't use any paid services or products for practice questions. Here's a list of all the questions I practiced with: Cyber James' Security+ videos, Professor Messer's SY0-701 Study Group livestreams (on his youtube channel), Professor Messer's weekly quizzes on his website (www.professormesser.com/category/security-plus/sy0-701/sy0-701-pop-quiz/), and a few other 1-3 hour youtube videos on sy0-701 practice questions (preferably the ones that give explanations for all answer choices, as it's important to know why the other choices in a question might be wrong).

Thank you so much!

Congrats!!!!

More to come keep a lookout for more! And good luck with your exam.

Youre not alone

🩷

Just passed today and the exam thankfully was nothing like this. I was getting between 91-94% on Professor Messer's practice exams (while missing a lot of these questions) and passed the real exam with a 821 (91%). I have heard from others that Professor Messer's exams are the closest you will get to the real thing and is a good indicator of whether or not you will pass, so maybe check out those exams and see how you can do.

💪 hope you’re doing well buddy

Hey Congrats!! Can u comment on PBQs like how many were there and their complexity?

Make sure you feel like you're ready, good luck!

Exactly what I was thinking lmao

Thank you, and no these questions were made using the 701 objectives.

@@ImCyberJames Hi! I learned that SSL is no longer used due to known vulnerabilities and it has been replaced by TLS. Do you confirm/agree with this? If so, can you explain how SSL can be the correct answer then? Thanks!

@@zannimo1 Correct, TLS replaced SSL. Even though the word SSL is still used today, 99% of the time they are referring to TLS. CompTIA still wants you to know what SSL is. Out of all the given answers for question 3, SSL, although technically not considered secure, is still the best answer for secure communication out of the possible answers.

Thanks!

Thank you for the heads up, I blurred that out.

They’re created based on the comptia objectives for me to take and record.

Where did you find these questions?

u mean question 3. SSL is right because MD5 is hashing technique, DSA is primarily used for Digital Signatures, AES is encryption technique used to encrypt data at rest and is used in protocols like SSL or TLS to enrypt data in transit so we select SSL as whole.

Sorry I wish I could but it's not up to me! The questions have to be made and then sent to me to take

@@ImCyberJamesyou have have 4 videos for 601 are they similar to 701?

Did u pass your exam?

@@BoomBoom-bu2no yes got 767

@@akshatkembhavi9837 do you have any tips or advice for the test i take it this monday?

While I see what you're saying, this questions requires you to understand the incident response procedure. Out of the four steps outlined by CompTIA, (1. Preparation, 2. Detection and Analysis, 3. Containment, Eradication & Recovery, and 4. Post event activity) You need to ask yourself which step we're currently in. At this point, based on the scenario and the limited information we have, we're in the Detection and Analysis phase. We don't 100% know if it's a true positive yet. It could be a popup on a website saying the files are encrypted. However, we don't need to think that far to answer the question. Out of the next steps according to the Incident Response plan you'll need to contain the device. Which would be isolating it on an isolated network, which is a very common and expected practice when analysis still needs to be performed, such as malware analysis, that still needs to be attached to a network to understand what the malware is doing. Keep in mind this network is segmented from production networks where the possibility of spreading is extremely limited. But you also don't need to know that to answer the question. Containment is the next step in the incident response plan, and is also a possible answer. While I agree this will most likely end up getting eradicated, according to CompTIA it's not the NEXT answer. TLDR: This question doesn't require you to think too hard into the question/scenario. It requires you to follow the Incident Response plan. Eradication will probably happen, just not yet. Hope that makes sense!

​@@ImCyberJames I appreciate your response and perhaps things have changed over the last few years since I have been in IT, but when we used to deal with these kinds of threats, we didn't connect it back to the network until we knew the threat was removed. The only time we would even consider that option is if we had no boots on the ground. That said, obviously that is not the point of the question as you pointed out. I just wish questions would be more straight forward instead of trying to throw you curve balls. Tests should be more about demonstrating that you know the information and less about being able to outthink the test creators. In any case, I think it would be helpful to point out things that might trip us up and how to not to fall for traps found in the questions. So in this case, perhaps your explanation might include "in the real world you might do this or you might not do that, but that is not the point of the question. The point is ______________ and regardless of what small details they may throw at you to trip you up, you need to focus on ___________" I hope that makes sense.