ISC2 CC EXAM AND PRACTICE EXAM LATEST 2026
TEST BANK| ISC2 CERTIFIED IN CYBERSECURITY
(CC) EXAM PREP WITH COMPLETE 400 REAL EXAM
QUESTION AND CORRECT DETAILED ANSWERS
(VERIFIED ANSWERS) GRADED A+ (MOST RECENT!!)
Which device is used to connect a LAN to the Internet?
A. Router
B. Firewall
C. HIDS
D. SIEM - Correct Answer -A. Router
A router is a device that acts as a gateway between two or more
networks by relaying and directing data packets between them. A
firewall is a device that filters traffic coming from the Internet but does
not seek to distribute traffic. Neither Security Information and Event
Management (SIEM) systems nor Host Intrusion Detection Systems
(HIDS) are monitoring devices nor applications that aim at inter-network
connectivity.
Which of these would be the best option if a network administrator need
to control access to a network?
A. HIDS
B. IDS
C. SIEM
D. NAC - Correct Answer -D. NAC
pg. 1
,Network Access Control (NAC) refers to a class of mechanisms that
prevent access to a network until a user (or the user's device) either
presents the relevant credentials, or passes the results of health checks
performed on the client device. Security Information and Event
Management (SIEM), Host Intrusion Detection Systems (HIDS), and
Intrusion Detection Systems (IDS) are all monitoring systems.
Governments can impose financial penalties as a consequence of
breaking a:
A. Regulation
B. Procedure
D. Standard
D. Policy - Correct Answer -A. Regulation
Standards are created by governing or professional bodies (no
governments themselves). Policies and procedures are created by
organizations, and are therefore not subject to financial penalties (see
ISC2 Study Guide Chapter 1, Module 4).
The address 8be2:4382:8d84:7ce2:ec0f:3908:d29a:903a is an:
a. Web address
B. IPv6 address
C. Mac address
D. IPv4 address - Correct Answer -B. IPv6 address
An IPv6 address is a 128-bit address represented as a sequence of eight
groups of 16-bit hexadecimal values. An IPv4 address is a 32-bit address
pg. 2
,represented as a sequence of four 8-bit integers. A Mac address is a 48-
bit address represented as six groups of 8 bits values in hexadecimal. A
web address consists of a protocol name, a server address, and a
resource path (see ISC2 Study Guide, Chapter 4, module 1 - Understand
Computer Networking).
Which of these types of user is LESS likely to have a privileged
account?
A. System Administrator
B. Security Analyst
C. External Worker
D. Help Desk - Correct Answer -C. External Worker
Typically, external works should not have access to privileged accounts,
due to the possibility of misuse. he Help Desk (or IT Support Staff) may
have o view or manipulate endpoints, servers and application platforms
using privileged or restricted operations. Security analysts may require
fast access to the IT Infrastructure, systems, endpoints and data
environment. By definition, systems administrators require privileged
accounts, since they are responsible for operating systems, deploying
applications, and managing performance.
Which type of attack attempts to gain information by observing the
device's power consumption?
A. Side channels
B. Trojans
C. Cross Site Scripting
pg. 3
, D. Denial of Service - Correct Answer -A. Side channels
A side-channel attack is a passive and non-invasive attack aiming to
extract information from a running system, by using special-purpose
hardware to perform power monitoring, as well as time and fault
analysis attacks. The remaining are software-based attacks.
Which of these is not an attack against an IP network?
A. Man-in-the-middle Attack
B. Oversized Packet Attack
C. Side-channel Attack
D. Fragmented Packet Attack - Correct Answer -C. Side-channel Attack
Man-in-the-middle attacks, Oversized Packet Attacks, and Fragmented
Packet Attacks are typical IP network attacks (see ISC2 Study Guide,
Chapter 4, module 1, under Security of the Network). Side Channel
Attacks are non-invasive attacks that extract information from devices
(typically devices running cryptographic algorithms), and therefore do
not aim at IP networks.
Which of the following attacks take advantage of poor input validation
in websites?
A. Cross-Site Scripting
B. Rootkits
C. Phishing
D. Trojans - Correct Answer -A. Cross-Site Scripting
pg. 4
TEST BANK| ISC2 CERTIFIED IN CYBERSECURITY
(CC) EXAM PREP WITH COMPLETE 400 REAL EXAM
QUESTION AND CORRECT DETAILED ANSWERS
(VERIFIED ANSWERS) GRADED A+ (MOST RECENT!!)
Which device is used to connect a LAN to the Internet?
A. Router
B. Firewall
C. HIDS
D. SIEM - Correct Answer -A. Router
A router is a device that acts as a gateway between two or more
networks by relaying and directing data packets between them. A
firewall is a device that filters traffic coming from the Internet but does
not seek to distribute traffic. Neither Security Information and Event
Management (SIEM) systems nor Host Intrusion Detection Systems
(HIDS) are monitoring devices nor applications that aim at inter-network
connectivity.
Which of these would be the best option if a network administrator need
to control access to a network?
A. HIDS
B. IDS
C. SIEM
D. NAC - Correct Answer -D. NAC
pg. 1
,Network Access Control (NAC) refers to a class of mechanisms that
prevent access to a network until a user (or the user's device) either
presents the relevant credentials, or passes the results of health checks
performed on the client device. Security Information and Event
Management (SIEM), Host Intrusion Detection Systems (HIDS), and
Intrusion Detection Systems (IDS) are all monitoring systems.
Governments can impose financial penalties as a consequence of
breaking a:
A. Regulation
B. Procedure
D. Standard
D. Policy - Correct Answer -A. Regulation
Standards are created by governing or professional bodies (no
governments themselves). Policies and procedures are created by
organizations, and are therefore not subject to financial penalties (see
ISC2 Study Guide Chapter 1, Module 4).
The address 8be2:4382:8d84:7ce2:ec0f:3908:d29a:903a is an:
a. Web address
B. IPv6 address
C. Mac address
D. IPv4 address - Correct Answer -B. IPv6 address
An IPv6 address is a 128-bit address represented as a sequence of eight
groups of 16-bit hexadecimal values. An IPv4 address is a 32-bit address
pg. 2
,represented as a sequence of four 8-bit integers. A Mac address is a 48-
bit address represented as six groups of 8 bits values in hexadecimal. A
web address consists of a protocol name, a server address, and a
resource path (see ISC2 Study Guide, Chapter 4, module 1 - Understand
Computer Networking).
Which of these types of user is LESS likely to have a privileged
account?
A. System Administrator
B. Security Analyst
C. External Worker
D. Help Desk - Correct Answer -C. External Worker
Typically, external works should not have access to privileged accounts,
due to the possibility of misuse. he Help Desk (or IT Support Staff) may
have o view or manipulate endpoints, servers and application platforms
using privileged or restricted operations. Security analysts may require
fast access to the IT Infrastructure, systems, endpoints and data
environment. By definition, systems administrators require privileged
accounts, since they are responsible for operating systems, deploying
applications, and managing performance.
Which type of attack attempts to gain information by observing the
device's power consumption?
A. Side channels
B. Trojans
C. Cross Site Scripting
pg. 3
, D. Denial of Service - Correct Answer -A. Side channels
A side-channel attack is a passive and non-invasive attack aiming to
extract information from a running system, by using special-purpose
hardware to perform power monitoring, as well as time and fault
analysis attacks. The remaining are software-based attacks.
Which of these is not an attack against an IP network?
A. Man-in-the-middle Attack
B. Oversized Packet Attack
C. Side-channel Attack
D. Fragmented Packet Attack - Correct Answer -C. Side-channel Attack
Man-in-the-middle attacks, Oversized Packet Attacks, and Fragmented
Packet Attacks are typical IP network attacks (see ISC2 Study Guide,
Chapter 4, module 1, under Security of the Network). Side Channel
Attacks are non-invasive attacks that extract information from devices
(typically devices running cryptographic algorithms), and therefore do
not aim at IP networks.
Which of the following attacks take advantage of poor input validation
in websites?
A. Cross-Site Scripting
B. Rootkits
C. Phishing
D. Trojans - Correct Answer -A. Cross-Site Scripting
pg. 4
