Penetration Testing

Evaluating networks and systems security

The process of identifying vulnerabilities and potential security risks in networks and systems through simulated cyberattacks, and providing recommendations and countermeasures to mitigate the discovered issues.

5 minutes 5 Questions

Concepts covered: Scanning and Enumeration, Incident Response and Forensics, Vulnerability Assessment, Exploit Development, Social Engineering, Analysis and Reporting, Red Teaming, Security Controls Assessment, Gaining Access, Covering Tracks, Reconnaissance, Footprinting and Reconnaissance, Ethical Hacking, Blue Teaming, Maintaining Access

Test mode:

Exam (Timed)

Practice (With explanations)

Start practice test

CompTIA Security+ - Penetration Testing Example Questions

Test your knowledge of Amazon Simple Storage Service (S3)

Question 1

A blue team collects logs from various servers, but they are not in a standardized format. What should they implement to normalize and centrally manage logs?

Endpoint protection platform (EPP) Security information and event management (SIEM) A standalone intrusion detection system (IDS) Manual log standardization

Correct Answer: Security information and event management (SIEM)

A SIEM system collects, stores, normalizes, and analyzes logs from various sources, making it the perfect solution for centrally managing diverse logs. Standalone IDS, manual standardization, EPP, firewall and IPS management software, and RDP do not provide the necessary functionality to address the specific problem.

Question 2

The blue team discovered a vulnerability in third-party software used by the company. What action should they take to mitigate this risk?

Immediately uninstall the software Contact the vendor to report the issue and determine if a patch is available Ignore the problem and hope it doesn't lead to an incident Develop a custom patch in-house

Correct Answer: Contact the vendor to report the issue and determine if a patch is available

When dealing with vulnerabilities in third-party software, the appropriate action is to contact the vendor to report the issue and determine if a patch is available. The vendor can address the vulnerability and provide guidance on mitigation. Other responses may disrupt business operations or fail to properly resolve the issue.

Question 3

A hacker gained access to a database and stole sensitive information. They plan to use encryption to erase their presence. Which method should they use?

Storing the data in an unsecured location Wiping the stolen data with encryption Performing multiple encryption passes on their computer Sending the data via an unencrypted email

Correct Answer: Wiping the stolen data with encryption

Encrypting the stolen data with a secure algorithm makes it more difficult for investigators to uncover the hacker's activities. The other options fail to provide adequate levels of security.

Go Premium

CompTIA Security+ Preparation Package (2024)

1087 Superior-grade CompTIA Security+ practice questions.
Accelerated Mastery: Deep dive into critical topics to fast-track your mastery.
Unlock Effortless CompTIA Security+ preparation: 5 full exams.
100% Satisfaction Guaranteed: Full refund with no questions if unsatisfied.
Bonus: If you upgrade now you get upgraded access to all courses
Risk-Free Decision: Start with a 7-day free trial - get premium features at no cost!

Start Your Free 7-Day Trial