Cybersecurity & Cryptography MCQ
Test your Cybersecurity & Cryptography knowledge with 100 multiple choice questions covering fundamentals to advanced concepts, with instant feedback and explanations.
What is the CIA triad in cybersecurity?
2What is encryption?
3What is a hash function in cryptography?
4What is the difference between symmetric and asymmetric encryption?
5What is a digital signature?
6What is a public key certificate?
7What is phishing?
8What is two-factor authentication (2FA)?
9What is a firewall?
10What is SQL injection?
11What is Cross-Site Scripting (XSS)?
12What is a VPN?
13What is malware?
14What is ransomware?
15What is a brute force attack?
16What is a DoS (Denial of Service) attack?
17What is the principle of least privilege?
18What is a zero-day vulnerability?
19What is a Man-in-the-Middle (MITM) attack?
20What is port scanning?
21What is the difference between authentication and authorization?
22What is an SSL/TLS certificate and what does it contain?
23What is network segmentation?
24What is a security audit?
25What does HTTPS provide over HTTP?
26What is a password salt?
27What is penetration testing?
28What is the purpose of HTTPS certificate pinning?
29What is social engineering in cybersecurity?
30What is a botnet?
31What is the purpose of input validation in web security?
32What is the OWASP Top 10?
33What is vulnerability scanning?
34What is a CVE?
35What is encryption at rest?
36What is encryption in transit?
37What is a rootkit?
38What is a CSRF (Cross-Site Request Forgery) attack?
39What is security through obscurity?
40What is an intrusion detection system (IDS)?
What is AES and why is it the standard symmetric cipher?
2What is the difference between TLS 1.2 and TLS 1.3?
3What is forward secrecy (Perfect Forward Secrecy)?
4What is RSA encryption and what are its limitations?
5What is elliptic curve cryptography (ECC)?
6What is Diffie-Hellman key exchange?
7What is a rainbow table attack?
8What is the purpose of HMAC?
9What is a certificate authority (CA)?
10What is certificate revocation and why is it important?
11What is the OAuth 2.0 authorization framework?
12What is OpenID Connect?
13What is a JSON Web Token (JWT)?
14What is SAML (Security Assertion Markup Language)?
15What is a WAF (Web Application Firewall)?
16What is defense in depth?
17What is the difference between a vulnerability, exploit, and payload?
18What is privilege escalation?
19What is a supply chain attack?
20What is SSRF (Server-Side Request Forgery)?
21What is path traversal?
22What is cryptographic agility?
23What is FIDO2/WebAuthn?
24What is memory safety and how do it relate to security vulnerabilities?
25What is the difference between a pentest and a red team engagement?
26What is SIEM (Security Information and Event Management)?
27What is the purpose of a nonce in cryptographic protocols?
28What is the difference between block ciphers and stream ciphers?
29What is a man-in-the-browser (MitB) attack?
30What is DNS spoofing (cache poisoning)?
31What is the purpose of Subresource Integrity (SRI) in web security?
32What is the purpose of a Content Security Policy (CSP) header?
33What is credential stuffing and how does it differ from brute forcing?
34What is the role of a key derivation function (KDF) such as PBKDF2 or Argon2?
35What is typosquatting in the context of cybersecurity?
36What is the purpose of network address translation (NAT) from a security perspective?
37What is the purpose of code signing?
38What is the difference between vertical and horizontal scaling of security monitoring, in the context of a Security Operations Center (SOC) maturity model?
39What is an evil twin attack in wireless network security?
40What is the purpose of DNSSEC (Domain Name System Security Extensions)?
What is post-quantum cryptography (PQC)?
2What is Spectre/Meltdown and what class of vulnerability are they?
3What is a timing attack?
4What is return-oriented programming (ROP) and how does it bypass DEP/NX?
5What is Kernel Address Space Layout Randomization (KASLR) and its limitations?
6What is the principle of complete mediation in security?
7What is the Trusted Platform Module (TPM)?
8What is security by design and what does it entail?
9What is lattice-based cryptography and why is it quantum-resistant?
10What is a hardware security module (HSM)?
11What is the MITRE ATT&CK framework?
12What is oblivious RAM (ORAM) and its security purpose?
13What is the difference between a CRL and OCSP Stapling?
14What is a confused deputy problem in security?
15What is Secure Multi-Party Computation (MPC)?
16What is homomorphic encryption?
17What is cyber threat intelligence (CTI) and how is it used?
18What is the concept of zero trust architecture?
19What is differential privacy and how is it used in practice?
20What is a zero-knowledge proof (ZKP) and what core property makes it useful in cryptography?