CompTIA Security+ Certified Cloud Security Professional Practice Questions Bank
With 3 practice exams, each of which is timed at 200 minutes with a 200 questions , just like the official certification exam
Topics: CompTIA Security+ domains studied under this certification
1. Threats, Attacks and Vulnerabilities. 21%
2. Technologies and Tools. 22%
3. Architecture and Design. 15%
4. Identity and Access Management. 16%
5. Risk Management. 14%
6. Cryptography and PKI. 12%
Total Questions Count: 500
Exams Count: 3
Length of exam: 200 minutes
Number of questions: 200
Exam language availability: English
Passing grade: 70%
Questions:
A security administrator needs to configure remote access to a file share so it can only be accessed between the hours of 9:00 a.m. and 5:00 p.m. Files in the share can only be accessed by members of the same department as the data owner. Users should only be able to create files with approved extensions,which may differ by department. Which of the following access controls would be the MOST appropriate for this situation?
A)ABAC
B) DAC
C)RBAC
D)MAC
A penetration testing team deploys a specifically crafted payload to a web server,which results in opening a new session as the web server daemon. This session has full read/write access to the file system and the admin console. Which of the following BEST describes the attack?
A)Domain hijacking
B)Injection
C)Privilege escalation
D)Buffer overflow
A security administrator is trying to eradicate a worm,which is spreading throughout the organization,using an old remote vulnerability in the SMB protocol. The worm uses Nmap to identify target hosts within the company. The administrator wants to implement a solution that will eradicate the current worm and any future attacks that may be using zero-day vulnerabilities. Which of the following would BEST meet the requirements when implemented?
A) Host-based firewall
B)File integrity checking
C)Network-based intrusion prevention system
D)Application blacklisting
E)Enterprise patch management system
