Free OffSec SEC-100 Exam Questions

Become OffSec Certified with updated SEC-100 exam questions and correct answers

Page: 1 / 120

Total 600 Questions | Updated On: Jul 30, 2025

Add To Cart

Question 1

Which type of vulnerability allows an attacker to execute arbitrary code on a remote machine?

A : Cross-site scripting (XSS)

B : Man-in-the-Middle (MitM)

C : Brute force attack

D : Buffer overflow

Answer: D

Question 2

Which Python library is used to interact with the Google Cloud Platform for security and compliance automation?

A : google-api-python-client

B : requests

C : pandas

D : boto3

Answer: A

Question 3

Which of the following is a common indicator of a phishing attempt?

A : An email from a legitimate business

B : An email with poor grammar and spelling errors

C : An email with personalized information

D : An email from a known contact

Answer: B

Question 4

What does "Cross-Site Request Forgery" (CSRF) involve?

A : Exploiting server-side vulnerabilities to gain unauthorized access

B : Attacking a website by injecting malicious scripts into user sessions

C : Intercepting and altering communication between a client and server

D : Forcing users to perform unwanted actions on a web application where they are authenticated

Answer: D

Question 5

Which of the following is an effective way to ensure high availability for critical systems?

A : Implementing redundancy and failover solutions

B : Conducting regular vulnerability assessments

C : Encrypting all sensitive data

D : Regularly updating software and applying patches

Answer: A

Page: 1 / 120

Total 600 Questions | Updated On: Jul 30, 2025

Add To Cart