SkillTestPro | CompTIA Security+ Practice Test 26

CompTIA Security+ Practice Test 26

CompTIA Security+ Exam Practice Test

1 / 15

What is the PRIMARY purpose of a risk acceptance decision?

To encrypt all data.

To monitor network logs.

To update all systems.

To train staff.

To acknowledge and tolerate a risk without mitigation.

2 / 15

Which security control monitors insider activity?

User behavior analytics (UBA).

Network firewall.

Antivirus software.

Web proxy.

VLAN tagging.

3 / 15

What is the BEST way to secure a wireless access point?

Using WEP encryption.

Enabling WPA3 with a strong passphrase.

Broadcasting the SSID.

Allowing guest access.

Disabling MAC filtering.

4 / 15

Which attack manipulates a user into downgrading security?

Downgrade attack.

Replay attack.

Pass-the-hash.

Birthday attack.

Side-channel attack.

5 / 15

What is a common sign of a botnet infection?

Slow boot times.

Missing applications.

Random reboots.

Unusual outbound network traffic.

Disabled updates.

6 / 15

Which regulation protects consumer data privacy in California?

GDPR.

HIPAA.

CCPA.

SOX.

CISA.

7 / 15

What is the PRIMARY purpose of a blue team?

To attack systems.

To develop software.

To defend and improve security controls.

To monitor employee activity.

To encrypt backups.

8 / 15

Which protocol secures web browsing?

HTTP.

TLS.

FTP.

SMTP.

ICMP.

9 / 15

What is the BEST way to prevent lateral movement in a network?

Using a flat network design.

Allowing all internal traffic.

Disabling encryption.

Sharing admin accounts.

Implementing microsegmentation.

10 / 15

Which attack exploits a race condition in software?

Time-of-check to time-of-use (TOCTOU).

Heap overflow.

Integer overflow.

Format string attack.

Command injection.

11 / 15

What is the PRIMARY purpose of a governance framework?

To monitor hardware performance.

To align security with business objectives.

To encrypt all files.

To block all traffic.

To install antivirus software.

12 / 15

Which type of backup is fastest to restore but requires more storage?

Incremental backup.

Differential backup.

Full backup.

Mirror backup.

Synthetic backup.

13 / 15

What is the BEST way to ensure secure software development?

Ignoring user input validation.

Releasing untested code.

Using hardcoded credentials.

Following the Secure Software Development Lifecycle (SSDLC).

Skipping code reviews.

14 / 15

Which security feature protects against email spoofing?

DKIM.

SNMP.

NTP.

LDAP.

RADIUS.

15 / 15

What is the PRIMARY purpose of a tabletop exercise?

To encrypt sensitive data.

To test incident response plans in a simulated scenario.

To monitor network traffic.

To update software patches.

To train developers.

Your score is

The average score is 100%