Unit 3 - 2.4.11 Application Attacks Part 1

A method to guess passwords by asking the user directly

Injecting malicious code into an application

Capturing and reusing network packets to gain unauthorized access

Exploiting vulnerabilities in the directory structure of a website

By exploiting the Address Resolution Protocol (ARP)

By using malware to intercept packets

By tapping into the network like a phone tap

All of the above

Guessing passwords by hashing them

Sending hashed passwords to a server for authentication

Intercepting password hashes and using them to gain access

Storing password hashes securely

Exploiting vulnerabilities in the directory structure of a website

Gaining unauthorized access to system information

Moving up the ladder to gain more access than intended

Encrypting data sent to the client to prevent exploitation

By using strong authentication and access management

By keeping password hashes safe and secure

By implementing input validation and parameterized queries

All of the above