SkillTestPro | CompTIA Security+ Practice Test 21

CompTIA Security+ Practice Test 21

CompTIA Security+ Exam Practice Test

1 / 10

Which design principle minimizes damage from a single failure?

Single point of failure avoidance.

High availability.

Least privilege.

Defense in depth.

Separation of duties.

2 / 10

What is the PRIMARY purpose of a security operations center (SOC)?

To develop software patches.

To monitor and respond to security incidents.

To encrypt all network traffic.

To manage employee access.

To design network architecture.

3 / 10

Which type of malware hides within another legitimate file?

Worm.

Dropper.

Rootkit.

Polymorphic malware.

File infector.

4 / 10

What is the BEST indicator of a cryptojacking attack?

Encrypted files.

Missing log entries.

Frequent system reboots.

High CPU usage without user activity.

Disabled firewall.

5 / 10

Which attack involves tricking a user into revealing credentials over the phone?

Smishing.

Whaling.

Vishing.

Pretexting.

Tailgating.

6 / 10

What is the BEST way to validate a disaster recovery plan?

Encrypting backups.

Disabling firewalls.

Updating all systems.

Monitoring logs daily.

Conducting tabletop exercises and simulations.

7 / 10

Which attack manipulates BGP to reroute traffic?

Route hijacking.

ARP spoofing.

MAC flooding.

DHCP starvation.

VLAN hopping.

8 / 10

What is the PRIMARY purpose of a third-party risk assessment?

To monitor employee performance.

To evaluate security risks from vendors or partners.

To update internal software.

To encrypt customer data.

To train staff on policies.

9 / 10

Which step follows containment in the incident response process?

Preparation.

Detection.

Recovery.

Lessons learned.

Eradication.

10 / 10

What is the BEST tool for analyzing packet captures during an incident?

Antivirus software.

Nessus.

Nmap.

Wireshark.

Metasploit.

Your score is

The average score is 70%