CompTIA Security+ (SY0-501) Free Practice Exam Questions

955 real CompTIA Security+ (SY0-501) exam questions with answers and AI explanations. CompTIA certification prep — page 20 of 96.

  1. Question 209: Which of the following BEST describes a network-based attack that can allow an attacker to take full control of a vulnerable host?
  2. Question 210: Which of the following is the BEST reason for salting a password hash before it is stored in a database?
  3. Question 211: An organization wants to utilize a common, Internet-based third-party provider for authorization and authentication. The provider uses a technology based on OA…
  4. Question 212: Which of the following is the BEST choice for a security control that represents a preventive and corrective logical control at the same time?
  5. Question 213: A third-party penetration testing company was able to successfully use an ARP cache poison technique to gain root access on a server. The tester successfully m…
  6. Question 214: The POODLE attack is an MITM exploit that affects:
  7. Question 215: A vice president at a manufacturing organization is concerned about desktops being connected to the network. Employees need to log onto the desktops' local acc…
  8. Question 216: An organization has hired a penetration tester to test the security of its ten web servers. The penetration tester is able to gain root/administrative access i…
  9. Question 217: A security administrator is tasked with conducting an assessment made to establish the baseline security posture of the corporate IT infrastructure. The assess…
  10. Question 218: A security team wants to establish an Incident Response plan. The team has never experienced an incident. Which of the following would BEST help them establish…