Role-Based Access control helps prevent this OWASP Top 10 weakness

Invalidated Redirect or Forward

What is the type of flaw that occurs when un trusted user entered data is sent to the interpreter as part of a query or command?

Insecure Direct Object References

You receive an e-mail from bank saying that you have won a contest. What should you do

Contact your bank to confirm the information

Provide the information so you can claim your prize as quickly as possible

Answer the e-mail and ask them to call you with more information

Forward the mail to others for their opinion

The use of proper security techniques can (choose two)

Minimize the threat of attackers

Prevent most hackers from accessing your system

Allow access to unauthorized users

Network permissions should be established so that users can accomplish their tasks, but cannot access any system resources that are not necessary so that

Only the resources authorized for that user will be at risk

A hacker cannot steal a legitimate user's identity

Users will not have access to and misuse system resources

Hackers will not pose as legitimate users

You should set a secure flag in a cookie to ensure that:

The cookie is sent over an encrypted channel

The cookie is a persistent cookie

The cookie is deleted when the user closes the browser

The cookie is not available to client script

Web Application Security Testing-PreTest

Professional Development

•

20 Qs

Similar activities

Internet

5th Grade - Professional Development

•

20 Qs

Emerging Trends in Cloud Computing!

Professional Development

•

18 Qs

JDBC_Objective_Exam_2

Professional Development

•

15 Qs

Computer Fundamentals 2

10th Grade - Professional Development

•

15 Qs

Quiz on Computer Fundamentals

Professional Development

•

20 Qs

ULANGAN 1 TLJ KELAS XII

KG - Professional Development

•

20 Qs

KSK1014 - Pemasangan Sistem Komputer

University - Professional Development

•

21 Qs

2k16_Embedded_Module_3

Professional Development

•

20 Qs

Web Application Security Testing-PreTest

Quiz

•

Computers

•

Professional Development

•

Practice Problem

•

Hard

Omantel Ohi

Used 174+ times

FREE Resource

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following threats is most likely to be caused by poor input validation?

Enabling of IPSec

Insecure direct object reference

Insufficient transport layer protection

Insecure cryptographic storage

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What happens when an application takes user inputted data and sends it to a web browser without proper validation and escaping?

Security Mis-configuration

Cross Site Scripting

Insecure Direct Object Reference

Broken Authentication and Session Management

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

An attack technique that forces a user’s session credential or session ID to an explicit value

Brute Force Attack

Session Hijacking

Session Fixation

Dictionary Attack

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What threat arises from not flagging HTTP cookies with tokens as secure?

Session Hijacking

Insecure Cryptographic Storage

Access Control Violation

Session Replay

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

How does malicious input flow in a DOM-based XSS?

From Server to Client

From Client to Server

From Attacker to Server

From Victim to Server

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which attack can execute scripts in the user’s browser and is capable of hijacking user sessions, defacing websites or redirecting the user to malicious sites

SQL injection

Cross Site Scripting

Malware Uploading

Man in the Middle

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What flaw can lead to exposure of resources or functionality to unintended actors?

Session Fixation

Improper authentication

Insecure Cryptographic Storage

Invalidated redirects and forwards

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

22 questions

Comment protéger ses données personnelles ?

Quiz

•

Professional Development

15 questions

AWS Identity and Access Management (IAM) Quiz

Quiz

•

Professional Development

15 questions

Sec+ CH.2 Review Test

Quiz

•

Professional Development

20 questions

MS-900 Cloud Concepts 1

Quiz

•

Professional Development

20 questions

Mobile and Operating Systems

Quiz

•

Professional Development

17 questions

PHP MySQL

Quiz

•

7th Grade - Professio...

20 questions

TUGAS 2 PROTOCOL DAN IP ADDRESS

Quiz

•

Professional Development

18 questions

ENTERPRISE COMPUTING WITH ADVANCED JAVA

Quiz

•

Professional Development

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

11 questions

How well do you know your Christmas Characters?

Lesson

•

3rd Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

20 questions

How the Grinch Stole Christmas

Quiz

•

5th Grade

Discover more resources for Computers

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

25 questions

Christmas Movies

Quiz

•

Professional Development

20 questions

Christmas Trivia

Quiz

•

Professional Development

15 questions

Fun Holiday Trivia

Quiz

•

Professional Development

25 questions

Name That Tune - Christmas

Quiz

•

Professional Development

29 questions

Christmas Song Emoji Pictionary

Quiz

•

Professional Development

9 questions

Holiday Movie Trivia

Lesson

•

Professional Development

34 questions

Winter Trivia

Quiz

•

Professional Development

Web Application Security Testing-PreTest

20 questions

Which of the following threats is most likely to be caused by poor input validation?

What happens when an application takes user inputted data and sends it to a web browser without proper validation and escaping?

An attack technique that forces a user’s session credential or session ID to an explicit value

What threat arises from not flagging HTTP cookies with tokens as secure?

How does malicious input flow in a DOM-based XSS?

Which attack can execute scripts in the user’s browser and is capable of hijacking user sessions, defacing websites or redirecting the user to malicious sites

What flaw can lead to exposure of resources or functionality to unintended actors?

Role-Based Access control helps prevent this OWASP Top 10 weakness

What is the type of flaw that occurs when un trusted user entered data is sent to the interpreter as part of a query or command?

For every link or form which invoke state-changing functions with an unpredictable token for each user what attack can be prevented?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers