CompTIA Security+ Practice Test of the Day 052625

Welcome to today’s practice test!

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

 

Results

QUIZ START

#1. A security administrator at a healthcare provider notices that several employees are reusing passwords across systems and not adhering to expiration policies. What control is BEST suited to enforce stronger password hygiene across the enterprise?

Role-based access control (RBAC)

Group Policy Object (GPO)

Data Loss Prevention (DLP)

Least privilege

Previous

Next

#2. An attacker is attempting to intercept login credentials on a public Wi-Fi network by redirecting users to a fake login page. What type of attack is this?

DNS poisoning

Cross-site scripting

Session fixation

ARP flooding

Previous

Next

#3. An analyst in a SOC observes an outbound connection from a server to a known command-and-control (C2) domain. Which of the following is the MOST appropriate next step?

Block the IP address at the perimeter firewall

Reboot the server immediately

Update the antivirus definitions

Perform a system restore

Previous

Next

#4. A company implements tokenization to protect sensitive customer data. Which statement BEST describes how tokenization enhances security?

It encrypts all data at rest using asymmetric keys

It replaces sensitive data with a non-sensitive equivalent

It creates a hash value for each data record

It masks data for anonymized analytics

Previous

Next

#5. A company’s incident response team is reviewing logs after a ransomware attack. They observe suspicious PowerShell scripts executed remotely. What is the MOST likely attack vector?

SQL injection

Remote code execution

Drive-by download

Credential stuffing

Previous

Next

#6. A security engineer is configuring multifactor authentication for remote workers. Which combination BEST meets the MFA requirement?

Password + CAPTCHA

Fingerprint + smartcard

Username + PIN

Security question + password

Previous

Next

#7. A company uses a centralized cloud-based SIEM to monitor and correlate events from multiple geographic locations. Which of the following BEST describes this setup?

Decentralized logging

Security orchestration

Centralized log management

Vulnerability scanning

Previous

Next

#8. A DevOps team is using Infrastructure as Code (IaC) to deploy cloud resources. What is the PRIMARY security advantage of IaC?

Manual charge tracking

Simplified password rotation

Automated baseline enforcement

Elimination of inside threats

Previous

Next

#9. A __________ is a security flaw that is exploited before the vendor has released a fix.

enter answer here

Previous

Next

#10. An organization wants to reduce its attack surface by decommissioning unused services. Which principle does this action BEST align with?

Separation of duties

Layered security

Least functionality

Risk transference

Previous

Finish

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To view CompTIA Security+ practice tests on other days, click here.

To view answers for today’s questions, expand the Answers accordion below.