CERTIPORT 2026 CORE EXAM TEST QUESTIONS AND
ANSWERS RATED A+
✔✔Data Link Layer - ✔✔The second layer in the OSI model. This layer bridges the
networking media with the Network layer. Its primary function is to divide the data it
receives from the Network layer into frames that can then be transmitted by the Physical
layer. Protocols: Ethernet, MAC, Frames, CRC. Devices: NIC, Switch, Bridge, WAPS
✔✔Physical Layer - ✔✔The lowest, or first, layer of the OSI model. Protocols in this
layer generate and detect signals so as to transmit and receive data over a network
medium. These protocols also set the data transmission rate and monitor data error
rates, but do not provide error correction. Protocols: 100baseT, 1000BaseT. Devices:
Hubs, RJ45, Repeater
✔✔TCP Protocol - ✔✔Connection-based protocol and guarantees delivery
✔✔UDP Protocol - ✔✔Connection-less protocol and uses best attempt delivery
✔✔All People Seem To Need Data Processing - ✔✔Application, Presentation, Session,
Transport, Network, Data Link, Physical
✔✔host-based intrusion detection system (HIDS) - ✔✔A type of cybersecurity solution
that monitors IT systems for signs of suspicious activity to detect unusual behaviors or
patterns associated either with human users or applications that could be a sign of a
security breach or attempted attack.
✔✔Host-based intrusion prevention system (HIPS) - ✔✔An installed software package
which monitors a single host for suspicious activity by analyzing events occurring within
that host.
✔✔Intrusion Prevention System (IPS) - ✔✔A network security tool (which can be
hardware or software) that continuously monitors a network for malicious activity and
takes action to prevent it, including reporting, blocking, or dropping it, when it does
occur.
✔✔Intrusion Detection System (IDS) - ✔✔A network security technology originally built
for detecting vulnerability exploits against a target application or computer.
✔✔Network-Based Intrusion Detection System (NIDS) - ✔✔NIDS is designed to monitor
network traffic. It is important to know that NIDS is not capable of preventing an attack.
It can only detect the attack.
✔✔Network-Based Intrusion Prevention System (NIPS) - ✔✔NIPS is usually situated
between the network and the edge firewall.
, ✔✔Mobile Device Management (MDM) - ✔✔remotely controls smart phones and
tablets, ensuring data security
✔✔mobile application management (MAM) - ✔✔a security strategy that administers and
enforces corporate epolicies for applications on mobile devices
✔✔Mobile Content Management (MCM) - ✔✔Helps IT admins distribute content to
authorized people in an easy and secure way.
✔✔Unified Equipment Management (UEM) - ✔✔Combines all of the MAM, MDM, MCM
into one application to protect the phone.
✔✔Containers for phones - ✔✔When the company divides data on the mobile device to
corporate owned data areas and personal data areas.
✔✔Data at rest - ✔✔Preserved on a storage device. EX: Stored, backup, and archived
files, data on a hardcdrive
✔✔Data in processing/in use - ✔✔Manipulated by a microprocessor. EX: Word
document, CPU Data, database files
✔✔Data in motion/in transit - ✔✔Transmitted over a network. EX: Sending emails,
downloading and syncing files, data in PKI, Digital Certificates
✔✔Honeypots - ✔✔a decoy system used to provide early warning that an insider or
outsider is attempting to search for confidential information. (Decoy to entice the hacker
into a trap)
✔✔Power Shell - ✔✔A cross-platform and open source task automation and
configuration management framework. A Windows programming language. Hackers will
inject code into the Powershell program, and antivirus cannot detect the hack.
✔✔Power Shell pt2 - ✔✔Allows attackers to inject code from powershell into other
processes without first storing any malicious code on a hard disks.
✔✔Ping/ICMP protocol - ✔✔Tests and verifies network connectivity
✔✔Arp-a - ✔✔Shows ip address to mac address
✔✔tracert/traceroute(linux) - ✔✔Shows hops/routers along route maximum 30 hops
✔✔Netstat - ✔✔Shows ports local/external and incoming connections, Is used to show
all connections on your PC and who is connected to your PC. A network statistic tool
used to list active connections from and to your computer.
ANSWERS RATED A+
✔✔Data Link Layer - ✔✔The second layer in the OSI model. This layer bridges the
networking media with the Network layer. Its primary function is to divide the data it
receives from the Network layer into frames that can then be transmitted by the Physical
layer. Protocols: Ethernet, MAC, Frames, CRC. Devices: NIC, Switch, Bridge, WAPS
✔✔Physical Layer - ✔✔The lowest, or first, layer of the OSI model. Protocols in this
layer generate and detect signals so as to transmit and receive data over a network
medium. These protocols also set the data transmission rate and monitor data error
rates, but do not provide error correction. Protocols: 100baseT, 1000BaseT. Devices:
Hubs, RJ45, Repeater
✔✔TCP Protocol - ✔✔Connection-based protocol and guarantees delivery
✔✔UDP Protocol - ✔✔Connection-less protocol and uses best attempt delivery
✔✔All People Seem To Need Data Processing - ✔✔Application, Presentation, Session,
Transport, Network, Data Link, Physical
✔✔host-based intrusion detection system (HIDS) - ✔✔A type of cybersecurity solution
that monitors IT systems for signs of suspicious activity to detect unusual behaviors or
patterns associated either with human users or applications that could be a sign of a
security breach or attempted attack.
✔✔Host-based intrusion prevention system (HIPS) - ✔✔An installed software package
which monitors a single host for suspicious activity by analyzing events occurring within
that host.
✔✔Intrusion Prevention System (IPS) - ✔✔A network security tool (which can be
hardware or software) that continuously monitors a network for malicious activity and
takes action to prevent it, including reporting, blocking, or dropping it, when it does
occur.
✔✔Intrusion Detection System (IDS) - ✔✔A network security technology originally built
for detecting vulnerability exploits against a target application or computer.
✔✔Network-Based Intrusion Detection System (NIDS) - ✔✔NIDS is designed to monitor
network traffic. It is important to know that NIDS is not capable of preventing an attack.
It can only detect the attack.
✔✔Network-Based Intrusion Prevention System (NIPS) - ✔✔NIPS is usually situated
between the network and the edge firewall.
, ✔✔Mobile Device Management (MDM) - ✔✔remotely controls smart phones and
tablets, ensuring data security
✔✔mobile application management (MAM) - ✔✔a security strategy that administers and
enforces corporate epolicies for applications on mobile devices
✔✔Mobile Content Management (MCM) - ✔✔Helps IT admins distribute content to
authorized people in an easy and secure way.
✔✔Unified Equipment Management (UEM) - ✔✔Combines all of the MAM, MDM, MCM
into one application to protect the phone.
✔✔Containers for phones - ✔✔When the company divides data on the mobile device to
corporate owned data areas and personal data areas.
✔✔Data at rest - ✔✔Preserved on a storage device. EX: Stored, backup, and archived
files, data on a hardcdrive
✔✔Data in processing/in use - ✔✔Manipulated by a microprocessor. EX: Word
document, CPU Data, database files
✔✔Data in motion/in transit - ✔✔Transmitted over a network. EX: Sending emails,
downloading and syncing files, data in PKI, Digital Certificates
✔✔Honeypots - ✔✔a decoy system used to provide early warning that an insider or
outsider is attempting to search for confidential information. (Decoy to entice the hacker
into a trap)
✔✔Power Shell - ✔✔A cross-platform and open source task automation and
configuration management framework. A Windows programming language. Hackers will
inject code into the Powershell program, and antivirus cannot detect the hack.
✔✔Power Shell pt2 - ✔✔Allows attackers to inject code from powershell into other
processes without first storing any malicious code on a hard disks.
✔✔Ping/ICMP protocol - ✔✔Tests and verifies network connectivity
✔✔Arp-a - ✔✔Shows ip address to mac address
✔✔tracert/traceroute(linux) - ✔✔Shows hops/routers along route maximum 30 hops
✔✔Netstat - ✔✔Shows ports local/external and incoming connections, Is used to show
all connections on your PC and who is connected to your PC. A network statistic tool
used to list active connections from and to your computer.
