Free · 6 practice questions · Cybersecurity

CompTIA CySA+ practice questions.

6 scenario-based questions covering every domain on the exam blueprint. Original DecipherU writing with primary-source citations, not exam-question mimicry. Free to read. Pair with the $147 cert-prep add-on for domain reviews and exam-day strategy.

Read the CompTIA CySA+ exam overview See parent course

Layered on soc analyst fundamentals

CompTIA CySA+ Exam Prep Add-On

CySA+ CS0-003 exam-ready ramp on top of SOC Analyst Fundamentals. Four domain reviews mapped to the official CompTIA blueprint, four full-length performance-based mock exams, and a flagged-answer review workflow tuned to the Tier 2 detection-and-response workflow.

Buy the prep · $147 See parent course

Question 1 of 6Domain · Security Operations

A SOC analyst reviews EDR telemetry and sees a PowerShell process spawned by Microsoft Word, then a network connection to an unfamiliar external IP. Which MITRE ATT&CK technique best describes the initial pattern?

Pick a letter to enable reveal

Question 2 of 6Domain · Vulnerability Management

A vulnerability scanner reports 5,000 findings. The team has bandwidth to remediate 50 per week. They want to weight by likelihood of exploitation in the next 30 days. Which scoring system is purpose-built for that?

Pick a letter to enable reveal

Question 3 of 6Domain · Incident Response and Management

A responder isolates an infected workstation by disconnecting it from the network. Per NIST SP 800-61 Rev. 2, which phase is this?

Pick a letter to enable reveal

Question 4 of 6Domain · Reporting and Communication

A public US-listed company discovers a material cybersecurity incident on a Tuesday. Per SEC Item 1.05 of Form 8-K (effective December 2023), what is the disclosure deadline?

Pick a letter to enable reveal

Question 5 of 6Domain · Vulnerability Management

A vulnerability appears in CISA's Known Exploited Vulnerabilities catalog. Federal civilian agencies must remediate per BOD 22-01. What is the operational implication for a private-sector security team?

Pick a letter to enable reveal

Question 6 of 6Domain · Security Operations

An analyst conducts threat hunting against a hypothesis: 'an adversary is using DCSync to extract credentials from our Active Directory.' Which event log telemetry best supports this hunt?

Pick a letter to enable reveal

Liked these 6? Get the full prep.

CompTIA CySA+ Exam Prep Add-On

Adds exam-blueprint domain reviews, exam-day strategy, the authorized study resources, and the gated practice scenarios behind purchase. $147 on top of the parent course. Verified against the official blueprint 2026-05-22.

Buy the prep · $147 Today's daily question

Other cert practice sets. Sixteen more cert-prep modules ship with practice question sets:

Get cybersecurity career insights delivered weekly

Join cybersecurity professionals receiving weekly intelligence on threats, job market trends, salary data, and career growth strategies.

By subscribing you agree to our privacy policy. Unsubscribe anytime.