CompTIA Security+ Practice Test of the Day 052425

Welcome to today’s practice test!

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

 

Results

QUIZ START

#1. An attacker is exploiting a zero-day vulnerability in a company’s customer portal. What mitigation technique is most appropriate to limit the impact of such attacks?

Signature-based IDS

Application allow list

Scheduled patch management

Static code analysis

Previous

Next

#2. An analyst in a SOC observes unusual outbound connections from a financial server at 3 AM, a time with no scheduled activity. What is the best course of action?

Initiate patch management

Conduct a root cause analysis

Reboot the server immediately

Isolate the server from the network

Previous

Next

#3. A security engineer needs to enhance email security by preventing spoofed messages. Which technologies should be implemented?

DNSSEC, OCSP

SPF, DKIM, DMARC

IPSec, WPA3

LDAP, SAML

Previous

Next

#4. A company is concerned about unauthorized devices connecting to its internal network. What technology provides device authentication before network access?

VPN

NAC

WAF

EDR

Previous

Next

#5. A cloud engineer is implementing resilience in a multi-region AWS deployment. What approach best supports high availability?

Local backups only

Load balancer with auto-scaling across regions

Encrypting data at rest

Using a single AZ instance

Previous

Next

#6. A ________ is a secure cryptographic hardware component used to generate, store, and manage encryption keys and certificates.

enter answer here

Previous

Next

#7. During a pen test, an attacker uses ARP poisoning to intercept LAN traffic. Which mitigation strategy best protects against this attack?

Network segmentation

Dynamic ARP Inspection (DAI)

HTTPS encryption

Web application firewall (WAF)

Previous

Next

#8. A software developer needs to verify code integrity and authorship. Which cryptographic method provides this assurance?

Tokenization

Hashing

Digital Signature

Symmetric Encryption

Previous

Next

#9. A company wants to securely deploy patches to thousands of IoT devices with minimal downtime. Which best practice should they adopt?

Penetration testing

Version rollback

Staged deployment

Zero trust architecture

Previous

Next

#10. Scenario: A vulnerability scan reveals outdated software, weak passwords, and open ports on a legacy server. Task: Choose the THREE most appropriate remediation actions.

Select all that apply:

Update software to latest version

Enforce password complexity

Shut down the server

Close unnecessary ports

Encrypt the database

Previous

Finish

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To view CompTIA Security+ practice tests on other days, click here.

To view answers for today’s questions, expand the Answers accordion below.