CompTIA Security+ Practice Test of the Day 061525

Welcome to today’s practice test!

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

 

Results

QUIZ START

#1. A security administrator at a mid-sized enterprise notices that several employees are accessing social media websites that have led to malware infections. The administrator wants to block access to such sites at the network level. Which of the following would BEST meet this goal?

A. Host-based firewall

B. Web application firewall

C. URL filtering via secure web gateway

D. Packet filtering on the router

Previous

Next

#2. An attacker is attempting to harvest credentials by redirecting users to a malicious site that mimics a legitimate login page using a typo in the domain name. Which attack method is being used?

A. Pharming

B. Typosquatting

C. Watering hole attack

D. Man-in-the-middle

Previous

Next

#3. An attacker is attempting to exploit a race condition in a web application by submitting multiple simultaneous requests. Which type of vulnerability is the attacker targeting?

A. SQL injection

B. Time-of-use (TOU)

C. Buffer overflow

D. Privilege escalation

Previous

Next

#4. A penetration tester is using tools to scan a web application without accessing its source code. The goal is to identify vulnerabilities like SQLi and XSS. Which technique is being used?

A. Static analysis

B. Dynamic analysis

C. Threat modeling

D. Manual code review

Previous

Next

#5. A user reports being redirected to a spoofed website despite typing the correct URL. The DNS settings on their machine appear unchanged. What is the MOST likely cause?

A. Local host file manipulation

B. ARP spoofing

C. DHCP spoofing

D. DNS poisoning

Previous

Next

#6. A system administrator wants to enforce least privilege access to sensitive database systems in a finance department. Which access control model would BEST achieve this?

A. Mandatory Access Control (MAC)

B. Discretionary Access Control (DAC)

C. Role-Based Access Control (RBAC)

D. Attribute-Based Access Control (ABAC)

Previous

Next

#7. An analyst in a SOC notices repeated login attempts across multiple accounts originating from the same IP within a short time frame. What type of attack is MOST likely occurring?

A. Credential stuffing

B. Password spraying

C. Brute force attack

D. Dictionary attack

Previous

Next

#8. A security administrator is updating the organization’s incident response plan. Which of the following steps should occur FIRST in the event of a suspected security breach?

A. Eradication

B. Containment

C. Recovery

D. Detection and analysis

Previous

Next

#9. A developer is implementing OAuth 2.0 in a new web application. What is the PRIMARY purpose of OAuth?

A. Provide encryption for user data

B. Verify the identity of users

C. Allow third-party applications to access user resources without exposing credentials

D. Provide secure file transfer

Previous

Next

#10. You are tasked with configuring multifactor authentication (MFA) for a corporate VPN. The organization wants to use something the user knows and something they have. Task: Select the TWO most appropriate factors to fulfill this requirement.

Select all that apply:

A. Username

B. Password

C. Security token

D. Fingerprint scanner

Previous

Finish

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To view CompTIA Security+ practice tests on other days, click here.To view answers for today’s questions, expand the Answers accordion below.