CISSP Free Practice Test

- (Exam Topic 15)
A security practitioner needs to implementation solution to verify endpoint security protections and operating system (0S) versions. Which of the following is the BEST solution to implement?

1. A. An intrusion prevention system (IPS)
2. B. An intrusion prevention system (IPS)
3. C. Network Access Control (NAC)
4. D. A firewall

Correct Answer: B

- (Exam Topic 9)
Which of the following is a limitation of the Common Vulnerability Scoring System (CVSS) as it relates to conducting code review?

1. A. It has normalized severity ratings.
2. B. It has many worksheets and practices to implement.
3. C. It aims to calculate the risk of published vulnerabilities.
4. D. It requires a robust risk management framework to be put in place.

Correct Answer: C

- (Exam Topic 14)
Which of the following will help prevent improper session handling?

1. A. Ensure that all UlWebView calls do not execute without proper input validation.
2. B. Ensure that tokens are sufficiently long, complex, and pseudo-random.
3. C. Ensure JavaScript and plugin support is disabled.
4. D. Ensure that certificates are valid and fail closed.

Correct Answer: B

- (Exam Topic 9)
Which one of the following effectively obscures network addresses from external exposure when implemented on a firewall or router?

1. A. Network Address Translation (NAT)
2. B. Application Proxy
3. C. Routing Information Protocol (RIP) Version 2
4. D. Address Masking

Correct Answer: A

- (Exam Topic 13)
At a MINIMUM, audits of permissions to individual or group accounts should be scheduled

1. A. annually
2. B. to correspond with staff promotions
3. C. to correspond with terminations
4. D. continually

Correct Answer: A