Role-Based Access control helps prevent this OWASP Top 10 weakness

Invalidated Redirect or Forward

What is the type of flaw that occurs when un trusted user entered data is sent to the interpreter as part of a query or command?

Insecure Direct Object References

You receive an e-mail from bank saying that you have won a contest. What should you do

Contact your bank to confirm the information

Provide the information so you can claim your prize as quickly as possible

Answer the e-mail and ask them to call you with more information

Forward the mail to others for their opinion

The use of proper security techniques can (choose two)

Minimize the threat of attackers

Prevent most hackers from accessing your system

Allow access to unauthorized users

Network permissions should be established so that users can accomplish their tasks, but cannot access any system resources that are not necessary so that

Only the resources authorized for that user will be at risk

A hacker cannot steal a legitimate user's identity

Users will not have access to and misuse system resources

Hackers will not pose as legitimate users

You should set a secure flag in a cookie to ensure that:

The cookie is sent over an encrypted channel

The cookie is a persistent cookie

The cookie is deleted when the user closes the browser

The cookie is not available to client script

Web Application Security Testing-PreTest

Professional Development

•

20 Qs

Similar activities

Hakdad - information technology - basic knowledge

12th Grade - Professional Development

•

15 Qs

Ipad

1st Grade - Professional Development

•

15 Qs

Volume 2

Professional Development

•

17 Qs

Computer Networks

Professional Development

•

20 Qs

Sec+ Quiz - 2

Professional Development

•

15 Qs

UML Use Case and Activity Diagram

Professional Development

•

20 Qs

Numérique et moi

Professional Development

•

18 Qs

Computational Thinking

Professional Development

•

17 Qs

Web Application Security Testing-PreTest

Quiz

•

Computers

•

Professional Development

•

Practice Problem

•

Hard

Omantel Ohi

Used 174+ times

FREE Resource

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following threats is most likely to be caused by poor input validation?

Enabling of IPSec

Insecure direct object reference

Insufficient transport layer protection

Insecure cryptographic storage

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What happens when an application takes user inputted data and sends it to a web browser without proper validation and escaping?

Security Mis-configuration

Cross Site Scripting

Insecure Direct Object Reference

Broken Authentication and Session Management

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

An attack technique that forces a user’s session credential or session ID to an explicit value

Brute Force Attack

Session Hijacking

Session Fixation

Dictionary Attack

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What threat arises from not flagging HTTP cookies with tokens as secure?

Session Hijacking

Insecure Cryptographic Storage

Access Control Violation

Session Replay

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

How does malicious input flow in a DOM-based XSS?

From Server to Client

From Client to Server

From Attacker to Server

From Victim to Server

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which attack can execute scripts in the user’s browser and is capable of hijacking user sessions, defacing websites or redirecting the user to malicious sites

SQL injection

Cross Site Scripting

Malware Uploading

Man in the Middle

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What flaw can lead to exposure of resources or functionality to unintended actors?

Session Fixation

Improper authentication

Insecure Cryptographic Storage

Invalidated redirects and forwards

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

DBMS-QUIZ

Quiz

•

Professional Development

20 questions

ASJ_ XII 3.10 -3.12

Quiz

•

Professional Development

18 questions

Job roles in IT technical support and management

Quiz

•

11th Grade - Professi...

18 questions

Cycle 4: Session 13 Final Review.

Quiz

•

Professional Development

16 questions

DW (EM25) - Design System (T11)

Quiz

•

University - Professi...

20 questions

AZ900_SampleQuestions

Quiz

•

Professional Development

16 questions

CPU scheduling

Quiz

•

Professional Development

20 questions

1ºDAM/DAW - Lenguajes de Marcas - UD2-3-9 - Prof. C. Boni

Quiz

•

University - Professi...

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

15 questions

4:3 Model Multiplication of Decimals by Whole Numbers

Quiz

•

5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

The Best Christmas Pageant Ever Chapters 1 & 2

Quiz

•

4th Grade

12 questions

Unit 4 Review Day

Quiz

•

3rd Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

Discover more resources for Computers

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

10 questions

Christmas Trivia

Quiz

•

Professional Development

21 questions

Name that Holiday Movie

Quiz

•

Professional Development

Web Application Security Testing-PreTest

20 questions

Which of the following threats is most likely to be caused by poor input validation?

What happens when an application takes user inputted data and sends it to a web browser without proper validation and escaping?

An attack technique that forces a user’s session credential or session ID to an explicit value

What threat arises from not flagging HTTP cookies with tokens as secure?

How does malicious input flow in a DOM-based XSS?

Which attack can execute scripts in the user’s browser and is capable of hijacking user sessions, defacing websites or redirecting the user to malicious sites

What flaw can lead to exposure of resources or functionality to unintended actors?

Role-Based Access control helps prevent this OWASP Top 10 weakness

What is the type of flaw that occurs when un trusted user entered data is sent to the interpreter as part of a query or command?

For every link or form which invoke state-changing functions with an unpredictable token for each user what attack can be prevented?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers