Practice Test Questions

29 Dec

Posted at 11:53h in Practice Test Questions by

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. Veronica is developing a web application that must interact with the database. She would like to safeguard it against SQL injection attacks. Which one of the following controls would best achieve her goal? A. Inline Queries B. Stored Procedures C. Normalizing her database structure D. Performing data wrangling Correct Answer: B Stored procedures are a form of parameterized query where the query template is stored on the database server, safe from modification. Making it our correct answer here. Users may only provide parameters to that query, which are executed in a manner that prevents SQL injection attacks.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...

29 Dec

Posted at 11:35h in Practice Test Questions by

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. Brenda recently participated in an incident response training program where members of the team met in a conference room to discuss their roles in an incident using the context of a simulated emergency situation. What term best describes this event? A. Partial Activation B. Walkthrough C. Tabletop D. Full Activation Correct Answer: C Activations, whether full or partial, only occur in response to an actual incident. So, that is not the correct answer. Walkthroughs are instructional sessions designed to familiarize team members with their roles and are not structured around a scenario. So, that is not the correct answer either. Tabletop exercises are informal sessions that gather team members to discuss how they would respond in a given scenario. Making tabletop the correct answer.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...

29 Dec

Posted at 11:00h in Practice Test Questions by

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. Which one of the following technologies is not commonly used in embedded systems? A. FPGA B. Raspberry Pi C. Arduino D. SELinux Correct Answer: D Raspberry Pis, Arduinos, and field-programmable gate arrays (FPGA) are all hardware platforms that are easily reconfigurable for use in embedded systems. So, these are not the correct answers. Security Enhanced Linux (SELinux) is a security-focused version of the Linux operating system. It is not commonly used in embedded systems because it has significant overhead and complexity. This is the correct answer.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...