CompTIA Security+ Practice Test of the Day 062425

Welcome to today’s practice test!

This beginner-level practice test is inspired by the CompTIA Security+ (SY0-701) exam and is designed to help you reinforce key cybersecurity concepts on a daily basis.

These questions are not official exam questions, but they reflect topics and scenarios relevant to the Security+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

 

Results

QUIZ START

#1. A security administrator at a mid-sized company is implementing new controls to prevent unauthorized physical access to their data center. Which of the following controls would be considered preventive?

A. Security camera monitoring

B. Motion-activated alarms

C. Biometric access readers

D. Security incident logs

Previous

Next

#2. Which of the following best describes the purpose of a digital signature?

A. To encrypt sensitive data

B. To validate software licenses

C. To ensure data integrity and authenticity

D. To create secure tunnels over the internet

Previous

Next

#3. A security engineer is reviewing cloud architecture and recommends microsegmentation to limit lateral movement. Which concept is most aligned with this recommendation?

A. Defense in depth

B. Least functionality

C. Zero Trust

D. Secure enclaves

Previous

Next

#4. A company uses MDM to manage mobile devices. Which deployment model allows employees to choose their own device while maintaining some control by the company?

A. BYOD

B. CYOD

C. COPE

D. MAM

Previous

Next

#5. An attacker spoofs the source IP address of request packets, sending them to multiple legitimate servers. These servers then send their responses to the spoofed IP address, overwhelming the victim with traffic. What kind of attack is this?

A. Phishing

B. Reflected DDoS

C. SQL injection

D. Credential stuffing

Previous

Next

#6. Which of the following protocols uses port 443 and provides encryption for web communications?

A. HTTP

B. FTP

C. SSL

D. HTTPS

Previous

Next

#7. What is the primary purpose of a jump server in a segmented network?

A. Load balancing

B. User authentication

C. Controlled administrative access

D. Packet inspection

Previous

Next

#8. A SOC analyst needs to investigate a breach involving data exfiltration over HTTPS. Which tool should be used to analyze encrypted network traffic for anomalies?

A. Packet sniffer

B. NetFlow analyzer

C. Vulnerability scanner

D. Port scanner

Previous

Next

#9. Your company’s development team pushes weekly updates to a public web app. You want to minimize the risk of introducing vulnerabilities during deployment. What should you implement first?

A. Change control board

B. Static and dynamic code analysis

C. DMZ web server monitoring

D. A WAF rule for POST traffic

Previous

Next

#10. A penetration tester identifies that a web server still uses self-signed certificates in production. What is the most immediate risk?

A. Unpatched vulnerabilities

B. Lack of confidentiality

C. Users cannot validate server authenticity

D. Certificate expiration errors

Previous

Finish

Note: CompTIA and Security+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To view CompTIA Security+ practice tests on other days, click here.To view answers for today’s questions, expand the Answers accordion below.