CompTIA Security+ Practice Test of the Day 060725

Welcome to today’s practice test!

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

 

Results

QUIZ START

#1. A security administrator at a mid-sized company needs to ensure that only approved applications run on servers. Which control would best meet this requirement?

A. Least privilege

B. Application allow list

C. Segmentation

D. Patch management

Previous

Next

#2. An attacker is attempting to gain access to a system by trying every possible password. What type of attack is this?

A. Replay attack

B. Dictionary attack

C. Brute force attack

D. Credential stuffing

Previous

Next

#3. A security engineer is selecting an encryption method for securing large volumes of data at rest. Which should they choose?

A. ECC

B. TLS

C. Full-disk encryption

D. SHA-256

Previous

Next

#4. An analyst in a SOC observes a DDoS attack generating large amounts of reflected traffic. What type of DDoS attack is this?

A. Amplified

B. Direct

C. Persistent

D. On-path

Previous

Next

#5. A company implements SAML for authentication across multiple SaaS applications. What type of solution is this?

A. Federation

B. Multifactor authentication

C. Mandatory access control

D. Federation with single sign-on (SSO)

Previous

Next

#6. A change management process includes a rollback plan. What type of security control is this?

A. Corrective

B. Preventive

C. Compensating

D. Detective

Previous

Next

#7. A penetration test revealed default credentials still enabled on some devices. What type of vulnerability is this?

A. Supply chain

B. Credential reuse

C. Cryptographic

D. Misconfiguration

Previous

Next

#8. A security administrator at a mid-sized company is tasked with improving account security for remote employees accessing cloud resources. The administrator wants to add a layer of security that is not based solely on a password. Which of the following is the BEST option to implement?

A) Role-Based Access Control (RBAC)

B) Federation

C) Multifactor Authentication (MFA)

D) Account Lockout Policy

Previous

Next

#9. A company is setting up a high-availability architecture for its critical applications hosted on-premises. Select two controls that will MOST directly contribute to the resilience of this architecture:

Select all that apply:

A. Hot site

B. Jump server

C. Load balancer

D. Warm site

E. Intrusion Prevention System (IPS)

Previous

Next

#10. A security engineer is implementing an SD-WAN solution to support branch offices accessing cloud services. Which of the following is a PRIMARY benefit of SD-WAN?

A) Increased power redundancy

B) Improved physical security

C) Secure and optimized cloud connectivity

D) Guaranteed 100% uptime

Previous

Finish

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To view CompTIA Security+ practice tests on other days, click here.To view answers for today’s questions, expand the Answers accordion below.