CompTIA Security+ Practice Questions Part 1

During the examination of the infected laptop, it is noticed that the malware loads on startup
and also loads a file called netutilities.dll every time MS Word is opened. This is an
example represents which of the following attack?

While testing a new application your group noted that when 3 or more of you click ‘submit’
at the same time on a particular form, the application crashes every time. This is an example
of which error?

Which one is a Passive Tool?

From the following choose the example of Initial Exploitation?

In which type of testing, the testers are not provided with any type of information for
performing assessment?

From the following which is not correct regarding insider threat?

Which of the following can be included in criminal activity on the internet? (Select all that
apply.)

Which of the following have the ability to write scripts that exploit vulnerabilities and are
also able to discover new vulnerabilities?

In which of the following threat category the attacks by an attacker or a small group of
attackers falls?

When the input supplied to the program is more than it can process, what type of
vulnerability occurs?

A user reports that he is unable to connect to the network. When you troubleshoot the
issue, you notice that the MAC address for his default gateway is not matching with the
MAC address of your company’s router. What type of attack is he facing?

High traffic load is crashing your e-commerce site. When you look at the traffic logs, you
identify that thousands of requests coming from hundreds of various IP addresses for the
same URL. You are facing which of the following attacks?

Which of the following can help in cracking the password of a disgruntled user who is fired
recently in the least time?

The attack in which network traffic is captured and retransmitted at a later time by the
attacker is known as?

You notice a man in a red shirt standing close to a locked door with a large box in his hands.
He waits for someone else to come along and open the locked door, then proceeds to follow
him inside. What type of social engineering attack is this?

In your company, the desktops are being infected by a malware in a way that more and
more systems are becoming a victim of that malware every hour despite the fact that users
are not sharing any e-mails, programs, or even files. Which malware is causing this
infection?

You are not able to open any of the Word document stored on the local system and when
a document is forced open for analyzation purpose you see only random characters and
there is no sign that the file is still a Word document. You are a victim of which malware?

Some desktops in your company are displaying the message “Your files have been
encrypted. Pay 2 bitcoins in order to recover them.” These desktops have been affected by
which malware?

A member of your company is facing issues with his laptop. Whenever he opens a browser,
he sees various pop-ups after every few minutes and whatever website he visits, the popups
appear. His laptop is affected by which malware?

For what reason NAT will likely keep on being used in even IPv6 systems?
Why will NAT likely continue to be used even in IPv6 networks?

You are requested to suggest a VPN methodology to a senior management of your company
for newly purchased VPN concentrators. For what reason would you
firmly recommend IPSec VPNs?

Which of the following is the core technology of NIPS on which it relies?

How can security be improved through a proxy server?

For encryption keys, the temper protection can be provided by which of the following
device?

From the following which one represents most network tools that detect an attack?

The tcpdump command-line tool is a category of which of the following?

A company was attacked by the bad guys multiple times and that attack results in data
violations. Therefore the company set up some vulnerable virtual machines containing fake
data that looks exactly like the company’s real machines in order to identify how the bad
guys get into the system. Which of the following mechanism was implemented by the
company?

If a worm is going through your company that reaches out to other nodes on port TCP/1337.
Which of the following tools would you need to identify the affected nodes on your
network?

Related to log and event anomalies which principle is valid?

The most likely reason behind access violation errors is?

Which statement is true regarding firewalls?

Satellite communications (SATCOM) usage is most common in which of the following
scenario?

For establishing trust relationship which mechanism is used by the Bluetooth?

From the following which one is not a part of a proper Mobile Device Management (MDM)
policy?

ANT is correctly described by which of the following?

A user is receiving “cannot resolve address” error notes from his browser. Which port is
possibly an issue on his firewall?

Which of the following defines the Secure Shell (SSH) protocol?

Which port is used by FTPS?

Which of the following statement regarding Transport Layer Security (TLS) is correct?

Which of the following is the purpose of using Tunneling?

The defense-in-depth is not supported by which one of the following?

Which of the following can result in the highest risk if configured improperly?

Why is UEFI preferred rather than BIOS?

Which of the following is not performed by a Secure Boot?

What is not true about hardware roots of trust?

What is the simple way of improving the security of a system?

Which statement is not true regarding systems on a chip?

Which aspect is important to remember while dealing with the medical device’s security?

Which term describes the loss of control over data during operations?

In which testing environment fuzz testing works great?