Which of the following actions should you take to test the security of your Web application?

Use your browser to create unauthorized requests.

Use a simple and positive model at every layer.

Set the secure flag on session ID cookies.

Which of the following is an injection attack?

Broken authentication and session management

Why should you use CAPTCHA?

To protect authentication systems from automated or brute-force attacks

To create cryptographically random session IDs

To protect credentials by using encryption or cryptographic salt and hash

To ensure that authentication systems implement inactivity timeout functionality

Which of the following is an authentication system mandatory requirement?

User logout and session inactivity controls.

Form variables are used for managing session IDs.

Use a GOTCHA to prevent automated attacks.

Session IDs are only accepted from cookies and parameter variables.

Application Security I

Professional Development

•

13 Qs

Similar activities

SJDMNHS Google Classroom 2

Professional Development

•

10 Qs

แบบทดสอบบทที่3

Professional Development

•

10 Qs

Guess the Retro Computer 1

KG - Professional Development

•

13 Qs

Unit 1 lesson 1

University - Professional Development

•

15 Qs

CodeMonkey Platform Management & Resources

Professional Development

•

10 Qs

INTO Artificial Intelligence

University - Professional Development

•

10 Qs

Computer basics for beginners

Professional Development

•

15 Qs

GUESS THAT WORD IN CYBER!

Professional Development

•

10 Qs

Application Security I

Quiz

•

Computers

•

Professional Development

•

Practice Problem

•

Medium

Luis Torres

Used 2+ times

FREE Resource

13 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of the following scenarios is most likely to cause an injection attack?

A Web application does not validate a client’s access to a resource.

Unvalidated input can be distinguished from valid instructions.

Unvalidated input is embedded in an instruction stream.

A Web action performs an operation on behalf of the user without checking a shared secret.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

You should set a secure flag in a cookie to ensure that:

The cookie is a persistent cookie.

The cookie is not available to client script.

The cookie is sent over an encrypted channel.

The cookie is deleted when the user closes the browser.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which character is most likely to be used for an SQL injection attack?

Null

Less than sign(<)

Greater than sign(>)

Single quote (')

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of the following attacks occurs when a malicious user convinces a victim to send a request to a server with malicious input and the server echoes the input back to client?

Reflected XSS

Persistent XSS

Insecure direct object references

Failure to restrict URL access

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of the following is the best way to protect against injection attacks?

Input validation using an allow list

SQL queries based on user input

Memory size checks

Validate integer values before referencing arrays

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of the following input sources can be directly controlled by a malicious user?

Server configuration files

GET/POST parameters

Network ports

Server code

MULTIPLE CHOICE QUESTION

1 min • 1 pt

You have not yet applied some recent service packs and updates to your Web application. Which of the following threats is your Web server susceptible to?

Injection

Security misconfiguration

Insecure cryptographic storage

Cross-site request forgery

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

10 questions

UDC 2022

Quiz

•

Professional Development

10 questions

Mastering KineMaster

Quiz

•

Professional Development

10 questions

Git & Github

Quiz

•

Professional Development

11 questions

KOE034: Sensors and Instruments

Quiz

•

Professional Development

10 questions

Cloud computing 2

Quiz

•

Professional Development

14 questions

Linux Command Line Quiz

Quiz

•

Professional Development

10 questions

Weekly Quiz 1

Quiz

•

4th Grade - Professio...

11 questions

Fortnite

Quiz

•

5th Grade - Professio...

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

11 questions

How well do you know your Christmas Characters?

Lesson

•

3rd Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

20 questions

How the Grinch Stole Christmas

Quiz

•

5th Grade

Discover more resources for Computers

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

25 questions

Christmas Movies

Quiz

•

Professional Development

20 questions

Christmas Trivia

Quiz

•

Professional Development

15 questions

Fun Holiday Trivia

Quiz

•

Professional Development

25 questions

Name That Tune - Christmas

Quiz

•

Professional Development

29 questions

Christmas Song Emoji Pictionary

Quiz

•

Professional Development

9 questions

Holiday Movie Trivia

Lesson

•

Professional Development

34 questions

Winter Trivia

Quiz

•

Professional Development

Application Security I

13 questions

Which of the following scenarios is most likely to cause an injection attack?

You should set a secure flag in a cookie to ensure that:

Which character is most likely to be used for an SQL injection attack?

Which of the following attacks occurs when a malicious user convinces a victim to send a request to a server with malicious input and the server echoes the input back to client?

Which of the following is the best way to protect against injection attacks?

Which of the following input sources can be directly controlled by a malicious user?

You have not yet applied some recent service packs and updates to your Web application. Which of the following threats is your Web server susceptible to?

Which of the following actions should you take to test the security of your Web application?

Which of the following should you use to protect the connections between the physical tiers of your application?

Which of the following is an injection attack?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers