CompTIA Security+ SY0-701 Release Date

CompTIA Security+ Exam 2025 Questions and Answers

Question 181

A security analyst finds a rogue device during a monthly audit of current endpoint assets that are connected to the network. The corporate network utilizes 002.1X for access control. To be allowed on the network, a device must have a Known hardware address, and a valid user name and password must be entered in a captive portal. The following is the audit report:

Which of the following is the most likely way a rogue device was allowed to connect?

Options:

A user performed a MAC cloning attack with a personal device.

A DMCP failure caused an incorrect IP address to be distributed

An administrator bypassed the security controls for testing.

DNS hijacking let an attacker intercept the captive portal traffic.

Question 182

A company plans to secure its systems by:

Preventing users from sending sensitive data over corporate email

Restricting access to potentially harmful websites

Which of the following features should the company set up? (Select two).

Options:

DLP software

DNS filtering

File integrity monitoring

Stateful firewall

Guardralls

Antivirus signatures

Question 183

A security engineer at a large company needs to enhance IAM to ensure that employees can only access corporate systems during their shifts. Which of the following access controls should the security engineer implement?

Options:

Role-based

Time-of-day restrictions

Least privilege

Biometric authentication

Question 184

Which of the following is used to add extra complexity before using a one-way data transformation algorithm?

Options:

Key stretching

Data masking

Steganography

Salting

Summer Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

CompTIA Security+ Exam 2025 Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce