SkillTestPro | CompTIA Security+ Practice Test 18

CompTIA Security+ Practice Test 18

CompTIA Security+ Exam Practice Test

1 / 10

Which type of firewall filters traffic based on application-layer data?

Packet-filtering firewall.

Stateful firewall.

Next-generation firewall (NGFW).

Proxy firewall.

Circuit-level gateway.

2 / 10

What is the PRIMARY goal of a vulnerability scan?

To encrypt network traffic.

To identify weaknesses in systems or applications.

To block unauthorized access.

To monitor user activity.

To install security patches.

3 / 10

Which policy defines acceptable use of company resources?

Acceptable use policy (AUP).

Data retention policy.

Incident response policy.

Access control policy.

Disaster recovery policy.

4 / 10

What is the FIRST step in responding to a suspected data breach?

Notify law enforcement.

Restore backups.

Analyze logs.

Update software.

Isolate affected systems.

5 / 10

Which encryption standard is used in WPA3 for Wi-Fi security?

WEP.

AES.

TKIP.

DES.

RC4.

6 / 10

What is the BEST way to secure IoT devices on a network?

Using default passwords.

Disabling all updates.

Allowing open internet access.

Placing them on a separate VLAN.

Sharing credentials across devices.

7 / 10

Which attack exploits trust between two systems?

Password spraying.

On-path attack.

Cross-site request forgery (CSRF).

Privilege escalation.

DNS spoofing.

8 / 10

What is the PRIMARY purpose of a risk register?

To encrypt sensitive data.

To monitor network traffic.

To generate security policies.

To train employees.

To document identified risks and mitigation plans.

9 / 10

Correct Answer: Verifying the sender’s email domain and content legitimacy.
Explanation: Phishing emails often spoof domains or contain suspicious content, detectable through careful inspection.

Preparation.

Containment.

Analysis.

Eradication.

Recovery.

10 / 10

What is the BEST method to detect a phishing email?

Checking for HTTPS in the URL.

Verifying the sender’s email domain and content legitimacy.

Scanning for virus signatures.

Blocking all external emails.

Encrypting the email client.

Your score is

The average score is 90%