CompTIA Security+ Practice Test of the Day 060825

Welcome to today’s practice test!

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

 

Results

QUIZ START

#1. A security administrator at a mid-sized company is reviewing their organization’s VPN configuration to ensure data confidentiality and integrity during remote access sessions. Which protocol would be the most appropriate to secure these VPN tunnels?

A) HTTP

B) IPSec

C) FTP

D) SNMP

Previous

Next

#2. An analyst in a SOC observes multiple failed login attempts from the same external IP, followed by a successful login using an admin account. The login originated from a country where the company has no operations. What is the best next step for the analyst to take?

A) Reboot the affected server

B) Immediately disable the compromised account

C) Increase the account password complexity

D) Notify the marketing team

Previous

Next

#3. A security engineer is tasked with selecting a solution to centrally monitor and correlate logs from servers, applications, and network devices. Which solution is best suited for this purpose?

A) SIEM

B) IPS

C) Load balancer

D) Proxy server

Previous

Next

#4. A security administrator must apply segmentation controls to isolate IoT devices on the network. The goal is to reduce the attack surface while allowing the devices to communicate only with required cloud services. Select two controls that should be implemented to achieve this.

Select all that apply:

A) VLAN segmentation

B) Next-generation firewall

C) Certificate authority

D) DNSSEC

E) Public key infrastructure

F) Security token service

Previous

Next

#5. An attacker is attempting to gather employee email addresses by harvesting them from public sources and using typosquatted domains to trick users. Which type of attack is this?

A) Watering hole attack

B) Typosquatting

C) Spear phishing

D) Pretexting

Previous

Next

#6. An IT administrator is updating documentation after configuring new firewall rules. What type of document should they update to reflect these technical changes?

A) Acceptable use policy

B) Business impact analysis

C) Standard operating procedure

D) Service-level agreement

Previous

Next

#7. An organization is deploying a cloud service with shared responsibility for security between the provider and the customer. What cloud model is being used?

A) IaaS

B) PaaS

C) SaaS

D) On-premises

Previous

Next

#8. An insider threat is most likely to have which advantage over external attackers?

A) Superior malware tools

B) Better social engineering skills

C) Knowledge of internal systems

D) More computing resources

Previous

Next

#9. A network engineer configures 802.1X on network switches. What is the primary benefit of this configuration?

A) Prevents DDoS attacks

B) Enforces multifactor authentication

C) Provides port-based network access control

D) Detects rogue access points

Previous

Next

#10. An analyst in a SOC observes a suspicious process running on several endpoints. The process is encrypting files and appending an unfamiliar extension. Users are unable to access their data. What type of attack is occurring?

A) Trojan

B) Rootkit

C) Ransomware

D) Keylogger

Previous

Finish

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To view CompTIA Security+ practice tests on other days, click here.To view answers for today’s questions, expand the Answers accordion below.