Select a correct answer on how to protest a website from becoming the victim of CSRF attack.

Use only post method while sending sensitive data to web server

Insert sequence tokens in to the forms and URLs used in transactions.

Don’t set up external verification mechanism.

Restrict checking user authentication.

Which is not considered as a weak authentication?

Not allowing users to use the previous password.

Allowing single words like names as password.

Allowing multiple login attempt for invalid login.

What is session hijacking?

It is an attackers steals a web session through session ID of victim

A well-managed session ID is called session hijacking.

Storing the sensitive information in the cookies is called session hijacking.

Displaying the session ID in the browser is called session hijacking

LO1 SR

Quiz

•

Computers

•

University

•

Practice Problem

•

Hard

Reem Ballaith

Used 2+ times

FREE Resource

10 questions

Show all answers

1.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Encrypting data with SSL will not guarantee the safety of a website, because:

This only protects data between the website and user, not the Web application itself.

This approach ignores the security of the software on the network or Web server.

This only protects data transmitted through port 443.

The encryption used by SSL is not strong.

2.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is another term for DAST?

White box testing.

Black box testing.

Glass box testing.

Gray box testing.

3.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What type of attack target a website’s method of validating the identity of a user?

Authorization.

Authentication

Identity attack.

client-side attack.

4.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which HTTP method sends data to the server?

GET

POST

PUT

SEND

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A hacker enters the following script into the search box or an entry form: <Script>’t
Worked”</Script>. The hacker then clicks the search button and a pop-up window appears stating It Worked. What you conclude from this?

The site is susceptible to buffer overflow

The site is susceptible to SQL injection

The site is susceptible to parameter tampering

The site is susceptible to XSS

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In electronic authentication, which of the following controls is effective against cross-site scripting (XSS) vulnerabilities?

Sanitize inputs to make them non executable.

Insert random data into any linked uniform resource locator

Insert random data into a hidden field

Use a per-session shared secret

7.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

CSRF stands for

Cross State Request Forgery.

Cross Site Reply Forgery.

Cross Site Request Forgery.

Cross State Reply Forgery.

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

15 questions

GAME QUIZ!!

Quiz

•

University

10 questions

Algorithm analysis: divide & conquer theory

Quiz

•

University

13 questions

Five Nights At Freddy's: Security Breach Quiz

Quiz

•

KG - Professional Dev...

15 questions

Firewall and Network Security

Quiz

•

University

10 questions

Information systems concepts

Quiz

•

University

13 questions

L1 - Computer Networks

Quiz

•

University

15 questions

DBC CHAPTER 3 - REVISION

Quiz

•

University

15 questions

4.6.4 Logic Gates

Quiz

•

10th Grade - Professi...

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

15 questions

4:3 Model Multiplication of Decimals by Whole Numbers

Quiz

•

5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

The Best Christmas Pageant Ever Chapters 1 & 2

Quiz

•

4th Grade

12 questions

Unit 4 Review Day

Quiz

•

3rd Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

Discover more resources for Computers

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

7 questions

Different Types of Energy

Interactive video

•

4th Grade - University

20 questions

Slopes and Slope-Intercept Form

Quiz

•

8th Grade - University

7 questions

Force and Motion

Interactive video

•

4th Grade - University

7 questions

Biomolecules (Updated)

Interactive video

•

11th Grade - University

20 questions

Winter/Holiday Trivia

Quiz

•

KG - University

10 questions

WINTER WIN Time - ELA - 12/9/2025

Quiz

•

KG - University

7 questions

Human Impact on Resources

Interactive video

•

4th Grade - University

LO1 SR

10 questions

Encrypting data with SSL will not guarantee the safety of a website, because:

What is another term for DAST?

What type of attack target a website’s method of validating the identity of a user?

Which HTTP method sends data to the server?

A hacker enters the following script into the search box or an entry form: <Script>’tWorked”</Script>. The hacker then clicks the search button and a pop-up window appears stating It Worked. What you conclude from this?

In electronic authentication, which of the following controls is effective against cross-site scripting (XSS) vulnerabilities?

CSRF stands for

Select a correct answer on how to protest a website from becoming the victim of CSRF attack.

Which is not considered as a weak authentication?

What is session hijacking?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

A hacker enters the following script into the search box or an entry form: <Script>’t
Worked”</Script>. The hacker then clicks the search button and a pop-up window appears stating It Worked. What you conclude from this?