CompTIA Security+ Practice Test of the Day 061725

Welcome to today’s practice test!

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

 

Results

QUIZ START

#1. An analyst in a SOC observes that multiple hosts have downloaded an unsigned executable from an external IP and initiated outbound traffic to unknown domains. What type of malware is most likely involved?

A. Keylogger

B. Trojan

C. Logic bomb

D. Rootkit

Previous

Next

#2. An attacker is attempting to exploit a web application by entering JavaScript into a form field to execute commands in a user’s browser. What is the attacker trying to exploit?

A. SQL Injection

B. Directory Traversal

C. Cross-Site Scripting (XSS)

D. Command Injection

Previous

Next

#3. A security administrator at a healthcare provider is implementing role-based access controls (RBAC) to limit data exposure. What principle is the administrator applying?

A. Defense in depth

B. Principle of least privilege

C. Segregation of duties

D. Zero Trust

Previous

Next

#4. An attacker intercepts and modifies communication between a user and a web server, presenting the user with a fake login page. What type of attack is this?

A. DNS poisoning

B. Man-in-the-middle

C. Session hijacking

D. Pharming

Previous

Next

#5. A company enforces full-disk encryption on all employee laptops. What security principle does this best support?

A. Non-repudiation

B. Integrity

C. Confidentiality

D. Availability

Previous

Next

#6. A system administrator notices that a legacy application cannot support multifactor authentication. Which control should be implemented to minimize risk?

A. Place the system in an isolated VLAN

B. Use password rotation policies

C. Enable single sign-on (SSO)

D. Encrypt all outbound traffic

Previous

Next

#7. A security engineer deploys a honeynet within a segmented portion of the network. What is the primary purpose of this setup?

A. Improve latency

B. Patch legacy systems

C. Replace antivirus

D. Capture threat actor tactics

Previous

Next

#8. A company needs to securely transfer files containing large amounts of PII to an external partner weekly. Which is the BEST solution for this purpose?

A. Telnet

B. FTP

C. HTTPS

D. SFTP

Previous

Next

#9. A web server is under a reflected DDoS attack using DNS amplification. Select the two BEST mitigations:

Select all that apply:

A. Disable unused open resolvers

B. Implement a WAF

C. Enforce rate limiting

D. Use DNSSEC

Previous

Next

#10. An attacker sends malformed input to a server, causing it to crash. Which vulnerability is being exploited?

A. XSS

B. Buffer overflow

C. SQL injection

D. TOC/TOU

Previous

Finish

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To view CompTIA Security+ practice tests on other days, click here.To view answers for today’s questions, expand the Answers accordion below.