CompTIA Security+ Practice Test Q & A 1 |

Please enter your email:

1. Phishing and spear-phishing attacks have been occurring more frequently against a company’s staff. Which of the following would MOST likely help mitigate this issue?

DNSSEC and DMARC

DNS query logging

Exact mail exchanger records in the DNS

The addition of DNS conditional forwarders

2. A company recently transitioned to a strictly BYOD culture due to the cost of replacing lost or damaged corporate-owned mobile devices. Which of the following technologies would be BEST to balance the BYOD culture while also protecting the company’s data?

Containerization

Geofencing

Full-disk encryption

Remote wipe

3. Which of the following cloud models provides clients with servers, storage, and networks but nothing else?

SaaS

PaaS

IaaS

DaaS

4. Which of the following BEST explains the reason why a server administrator would place a document named password.txt on the desktop of an administrator account on a server?

The document is a honeyfile and is meant to attract the attention of a cyberintruder.

The document is a backup file if the system needs to be recovered.

The document is a standard file that the OS needs to verify the login credentials.

The document is a keylogger that stores all keystrokes should the account be compromised.

5. A cybersecurity manager has scheduled biannual meetings with the IT team and department leaders to discuss how they would respond to hypothetical cyberattacks. During these meetings, the manager presents a scenario and injects additional information throughout the session to replicate what might occur in a dynamic cybersecurity event involving the company, its facilities, its data, and its staff. Which of the following describes what the manager is doing?

Developing an incident response plan

Building a disaster recovery plan

Conducting a tabletop exercise

Running a simulation exercise

6. A network administrator has been asked to install an IDS to improve the security posture of an organization.
Which of the following control types is an IDS?

Corrective

Physical

Detective

Administrative

7. A company has drafted an insider-threat policy that prohibits the use of external storage devices. Which of the following would BEST protect the company from data exfiltration via removable media?

Monitoring large data transfer transactions in the firewall logs

Developing mandatory training to educate employees about the removable media policy

Implementing a group policy to block user access to system files

Blocking removable-media devices and write capabilities using a host-based security tool

8. In which of the following situations would it be BEST to use a detective control type for mitigation?

A company implemented a network load balancer to ensure 99.999% availability of its web application.

A company designed a backup solution to increase the chances of restoring services in case of a natural disaster.

A company purchased an application-level firewall to isolate traffic between the accounting department and the information technology department.

A company purchased an IPS system, but after reviewing the requirements, the appliance was supposed to monitor, not block, any traffic.

A company purchased liability insurance for flood protection on all capital assets.

9. A cybersecurity analyst needs to implement secure authentication to third-party websites without users’ passwords. Which of the following would be the BEST way to achieve this objective?

OAuth

SSO

SAML

PAP

10. An organization has implemented a policy requiring the use of conductive metal lockboxes for personal electronic devices outside of a secure research lab. Which of the following did the organization determine to be the GREATEST risk to intellectual property when creating this policy?

The theft of portable electronic devices

Geotagging in the metadata of images

Bluesnarfing of mobile devices

Data exfiltration over a mobile hotspot

11. Which of the following differentiates a collision attack from a rainbow table attack?

A rainbow table attack performs a hash lookup

A rainbow table attack uses the hash as a password

In a collision attack, the hash and the input data are equivalent

In a collision attack, the same input results in different hashes

12. An organization wants to implement a solution that allows for automated logical controls for network defense. An
engineer plans to select an appropriate network security component, which automates response actions based on
security threats to the network. Which of the following would be MOST appropriate based on the engineer’s
requirements?

NIPS

HIDS

Web proxy

Elastic load balancer

NAC

13. A user typically works remotely over the holidays using a web-based VPN to access corporate resources. The user
reports getting untrusted host errors and being unable to connect. Which of the following is MOST likely the case?

The certificate has expired

The browser does not support SSL

The user’s account is locked out

The VPN software has reached the seat license maximum

14. A web application is configured to target browsers and allow access to bank accounts to siphon money to a foreign
account.
This is an example of which of the following attacks?

SQL injection

Header manipulation

Cross-site scripting

Flash cookie exploitation

15. A penetration testing is preparing for a client engagement in which the tester must provide data that proves and
validates the scanning tools’ results.
Which of the following is the best method for collecting this information?

Set up the scanning system’s firewall to permit and log all outbound connections

Use a protocol analyzer to log all pertinent network traffic

Configure network flow data logging on all scanning system

Enable debug level logging on the scanning system and all scanning tools used.

16. An organization wants to implement a third factor to an existing multifactor authentication. The organization already uses a smart card and password. Which of the following would meet the organization’s needs for a third factor?

Date of birth

Fingerprints

TPM

17. A manufacturer creates designs for very high security products that are required to be protected and controlled by the government regulations. These designs are not accessible by corporate networks or the Internet. Which of the following is the BEST solution to protect these designs?

An air gap

A Faraday cage

A shielded cable

A demilitarized zone

18. A company processes highly sensitive data and senior management wants to protect the sensitive data by utilizing classification labels. Which of the following access control schemes would be BEST for the company to implement?

Discretionary

Rule-based

Role-based

Mandatory

19. Which of the following policies would help an organization identify and mitigate potential single points of failure in the company’s IT/security operations?

Least privilege

Awareness training

Separation of duties

Mandatory vacation

20. A security administrator suspects there may be unnecessary services running on a server. Which of the following tools will the administrator MOST likely use to confirm the suspicions?

Nmap

Wireshark

Autopsy

DNSEnum

Question 1 of 20

CompTIA Security+ Practice Test Q & A 1

CompTIA Security+ Practice Test Q & A 1

Need to Pass The Security+ Exams ?

GET BETTER RESULTS!
Inquire TODAY!

Contact Us

Subscribe to our mailing list

CompTIA Security+ Practice Test Q & A 1

Need to Pass The Security+ Exams ?

GET BETTER RESULTS! Inquire TODAY!

Contact Us

GET BETTER RESULTS!
Inquire TODAY!