SkillTestPro | CompTIA Security+ Practice Test 25

CompTIA Security+ Practice Test 25

CompTIA Security+ Exam Practice Test

1 / 10

Which attack exploits a website’s trusted relationship with a user?

SQL injection.

Clickjacking.

File inclusion.

Parameter tampering.

Directory traversal.

2 / 10

What is a common technique used by advanced persistent threats (APTs)?

Random email blasts.

Public social media posts.

Single login attempts.

Long-term stealthy infiltration.

Immediate system shutdown.

3 / 10

Which framework helps organizations prioritize cybersecurity investments?

NIST CSF.

ISO 9001.

ITIL.

TOGAF.

CMMI.

4 / 10

What is the BEST way to recover from a ransomware attack?

Paying the ransom.

Restoring from a verified offline backup.

Reinstalling the OS.

Deleting encrypted files.

Ignoring the infection.

5 / 10

Which protocol is vulnerable to sniffing due to lack of encryption?

HTTPS.

TLS.

IPsec.

SFTP.

SNMPv2c.

6 / 10

What is the PRIMARY purpose of a security posture assessment?

To encrypt all data.

To monitor employee emails.

To install firewalls.

To evaluate an organization’s overall security readiness.

To update hardware.

7 / 10

Which virtualization security feature isolates guest operating systems?

Hypervisor.

Virtual switch.

Snapshot.

Container.

Sandbox.

8 / 10

What is the BEST way to secure a database?

Allowing remote access without restrictions.

Encrypting data at rest and in transit.

Using default credentials.

Disabling backups.

Storing logs externally.

9 / 10

Which attack targets high-profile executives?

Phishing.

Spear phishing.

Whaling.

Baiting.

Quid pro quo.

10 / 10

What is a common sign of a rootkit infection?

High network latency.

Excessive pop-ups.

Slow browser performance.

Missing emails.

Hidden processes or altered system files.

Your score is

The average score is 77%