OWASP Quiz

OWASP Quiz

Assessment

Quiz

Other

Professional Development

Hard

Created by

Red Security

Used 44+ times

FREE Resource

Student preview

quiz-placeholder

10 questions

Show all answers

1.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following are the best ways to prevent unvalidated redirect and forwards vulnerabilities? (Choose two.)

Use an allow list, such as table indirection.

Use client-side validation.

Allow only relative redirects.

Use session-based indirection.

2.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following are the best ways to protect a Web application from unvalidated redirects and forwards? (Choose two.)

Validate the referrer header

Use extended validation certificates

Validate all input from the client

Disallow requests to unauthorized file types

3.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following can result in insecure cryptography? (Choose two.)

Unsalted hash

Unused services

Default accounts

Failure to rotate keys

4.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following are the best ways to mitigate the threat of an insecure direct object reference attack? (Choose two.)

Use session-based indirection.

Use POST parameters instead of GET parameters.

Perform an access check each time a resource identifier arrives as input.

Send successful logins to a well-known location instead of automatic redirection.

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A session-based system authenticates a user to a Web site to provide access to restricted resources. To increase security in this scenario, an authentication token should meet which of the following requirements? (Choose two.)

It should identify returning users to the site.

It should be used as a replacement for a user's credentials.

It should always use a persistent cookie.

It should always use a non-persistent cookie.

6.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following are authentication system mandatory requirements? (Choose three.)

Strong passwords are required.

Use a GOTCHA to prevent automated attacks.

User logout and session inactivity are required.

Session IDs are only accepted from cookies and parameter variables.

Credentials are always protected with encryption or cryptographic salting and hashing.

7.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following functionalities should you include in an authentication and session management system?

Logout functionality

Inactivity timeout functionality

Escaping functionality

Forwarding system functionality

Create a free account and access millions of resources

Create resources
Host any resource
Get auto-graded reports
or continue with
Microsoft
Apple
Others
By signing up, you agree to our Terms of Service & Privacy Policy
Already have an account?

Popular Resources on Wayground

Hallway & Bathroom Expectations

11 questions

Hallway & Bathroom Expectations

quiz

Quiz

6th - 8th Grade

PBIS-HGMS

20 questions

PBIS-HGMS

quiz

Quiz

6th - 8th Grade

"LAST STOP ON MARKET STREET" Vocabulary Quiz

10 questions

"LAST STOP ON MARKET STREET" Vocabulary Quiz

quiz

Quiz

3rd Grade

Fractions to Decimals and Decimals to Fractions

19 questions

Fractions to Decimals and Decimals to Fractions

quiz

Quiz

6th Grade

Logic and Venn Diagrams

16 questions

Logic and Venn Diagrams

quiz

Quiz

12th Grade

Compare and Order Decimals

15 questions

Compare and Order Decimals

quiz

Quiz

4th - 5th Grade

Simplifying Fractions

20 questions

Simplifying Fractions

quiz

Quiz

6th Grade

Multiplication facts 1-12

20 questions

Multiplication facts 1-12

quiz

Quiz

2nd - 3rd Grade

Format and Documentation
Format direct quotations
Changing speed and direction
Correlative
Understanding functions
Play excerpts
Working with larger numbers
Solving mathematical and/or real-world problems involving volume of cylinders
Identify art from different cultures
Source analysis

© 2025 Quizizz Inc. (DBA Wayground)