12) Application Security

Question 1

Which software development vulnerability is stopped by proper bounds checking?

Answer 1

Buffer overflows

Question 2

___ is a web-related technology used to develop web pages while ___ refers to an attack where malicious code is embedded into the web page.

Answer 2

CSS & XSS

Question 3

CSS is a web-related technology used to develop web pages while XSS refers to an attack where malicious code is embedded into the web page. What does CSS stand for?

Answer 3

Cascading Style Sheets

Question 4

CSS is a web-related technology used to develop web pages while XSS refers to an attack where malicious code is embedded into the web page. What does XSS stand for?

Answer 4

Cross-site scripting

Question 5

A database is vulnerable to SQL injection attacks through direct attempts to the database server or through applications software, including web applications. What is the most effective way of mitigating these attacks?

Answer 5

Validating user inputs

Question 6

A type of software development problem that occurs when we do not properly account for the size of the data input into our applications.

Answer 6

Buffer overflows/overruns

Question 7

A type of software development vulnerability that occurs when multiple processes or multiple threads within a process control or share access to a particular resource, and the correct handling of that resource depends on the proper ordering or timing of transactions.

Answer 7

Race conditions

Question 8

A type of attack that can occur when we fail to validate the input to our applications or that steps to filter out unexpected or undesirable content.

Answer 8

Input validation attack

Question 9

A type of attack that can occur when we fail to use strong authentication mechanisms for our applications.

Answer 9

Authentication attack

Question 10

A type of attack that can occur when we fail to use authorization best practices for our applications.

Answer 10

Authorization attack

Question 11

A type of attack that can occur when we fail to properly design our security mechanisms when implementing cryptographic controls in our applications.

Answer 11

Cryptographic attack

Question 12

A type of attack that takes advantage of weaknesses in the software loaded on client machines, or one that uses social engineering techniques to trick us into going along with the attack.

Answer 12

Client-side attack

Question 13

An attack carried out by placing code in the form of a scripting language into a web page, or other media, that is interpreted by a client browser.

Answer 13

XSS

Question 14

XSS is an attack carried out by placing code in the form of a scripting language into a web page, or other media, that is interpreted by a client browser. What does XSS stand for?

Answer 14

Cross-site scripting

Question 15

In this type of attack, the attacker places a link on a web page in such a way that it will be automatically executed, in order to initiate a particular activity on another web page or application where the user is currently authenticated.

Answer 15

XSRF

Question 16

XSRF is an attack where the attacker places a link on a web page in such a way that it will be automatically executed, in order to initiate a particular activity on another web page or application where the user is currently authenticated. What does XSRF stand for?

Answer 16

Cross-site request forgery

Question 17

An attack that takes advantage of the graphical display capabilities of our browser to trick us into clicking on something we might not otherwise

Answer 17

Clickjacking

Question 18

A type of attack on the web server that can target vulnerabilities such as lack of input validation, improper or inadequate permissions, or extraneous files left on the server from the development process.

Answer 18

Server-side attack

Question 19

A type of tool that analyzes web pages or web-based application and searches for common flaws such as XSS or SQL injection flaws, and improperly set permissions, extraneous files, outdated software versions, and many more such items.

Answer 19

Web application analysis tool

Question 20

A web server analysis tool that performs checks for many common server-side vulnerabilities, and creates an index of all the files and directories it can see on the target web server.

Answer 20

Nikto/Wikto

Question 21

A well-known web analysis tool that offers a free and a professional version; the pro version includes advanced tools for conducting more in-depth attacks.

Answer 21

Burp Suite

Question 22

A type of tool that works by bombarding our applications with all manner of data and inputs from a wide variety of sources, in the hope that we can cause the application to fail or to perform in unexpected ways.

Answer 22

Fuzzer

Question 23

A tool developed by Microsoft to find flaws in file-handling source code.

Answer 23

MiniFuzz File Fuzzer

Question 24

A tool developed by Microsoft to examine source code for general good practices.

Answer 24

BinScope Binary Analyzer

Question 25

A tool developed by Microsoft for testing certain pattern-matching expression for potential vulnerabilities.

Answer 25

SDL Regex Fuzzer

Question 26

Which software development vulnerability occurs when multiple processes control or share a particular resource, and the correct handling of that resource depends on the proper ordering or timing of transactions?

Answer 26

Race conditions

Question 27

Which of the following is NOT a major category of database security issues?

a) Unauthenticated access
b) Arbitrary code execution
c) Privilege escalation
d) Protocol issues
e) Improper indexing

Answer 27

e) Improper indexing

Question 28

Which type of tool bombards out application with inputs from a wide variety of sources in an attempt to cause the application to fail or behave unexpectedly?

Answer 28

Fuzzers

Question 29

Which tool performs checks for many common server-side vulnerabilities, and creates an index of all the fields and directories it can see on the target Web server?

Answer 29

Nikto/Wikto

Question 30

Which Microsoft fuzzing tool examines source code for general good practices?

Answer 30

BinScope Binary Analyzer