Search Header Logo

Web Security Quiz

Authored by Christian Peña

Information Technology (IT)

University

Used 2+ times

Web Security Quiz
AI

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

    Content View

    Student View

20 questions

Show all answers

1.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the term used for injecting JavaScript into a user's web browser through page elements like comment sections, search results, and URLs?

Cross-Site Request Forgery

SQL Injection

Cross-Site Scripting

Phishing

2.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What vulnerability do attackers exploit to steal Gmail contact lists, trigger one-click purchases on Amazon, and change router configuration?

Phishing

Cross-Site Request Forgery

SQL Injection

Cross-Site Scripting

3.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What design philosophy, recommends using GET requests only to fetch web pages or other resources?

SOAP

REST

GraphQL

RPC

4.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of anti-CSRF cookies in protecting against CSRF attacks?

To validate HTTP requests made from JavaScript

To ensure that GET requests originate from the same domain

To force reauthentication for sensitive actions

To strip cookies on requests generated from external domains

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What attribute is specified when setting cookies to strip cookies on requests generated from external domains?

SameSite

Secure

Path

HttpOnly

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of setting the SameSite attribute to Lax for cookies?

To prevent cookies from being accessed by JavaScript

To force reauthentication for sensitive actions

To alow sending of cookies from some cross site requests

To ensure cookies are sent only with requests initiated from within the same site

7.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the benefit of requiring reauthentication for sensitive actions on a website?

To improve user experience

To alow seamless linking into the site

To add an additional layer of protection against CSRF attacks

To protect against cross-site scripting attacks

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Google

Continue with Google

Email

Continue with Email

Classlink

Continue with Classlink

Clever

Continue with Clever

or continue with

Microsoft

Microsoft

Apple

Apple

Others

Others

Already have an account?