Application Attacks

Question 1

Vulnerability allows a normal user to gain extended capabilities on a system.

Answer 1

Privilege escalation

Question 2

One of the most common web app development errors. Malware that uses JS.

Answer 2

Cross-site scripting

Question 3

One user can get access to resources that would only be available to another user of the same level.

Answer 3

Horizontal Privilege escalation

Question 4

Type of cross-site scripting attack that allows someone to run scripts within the user input of the webpage. Sends credentials/session IDs/ cookies to the attacker. Script embedded in the URL and executes in the victim’s browser. Specific target.

Answer 4

Reflected (Non-persistent) XSS Attacks

Question 5

Attacker posts a message to a social network, includes a malicious payload, and everyone gets the payload. This is not a specific target.

Answer 5

Stored (persistent) XSS attack

Question 6

In this type of attack, the attacker puts their own code into an existing data stream.

Answer 6

Injection Attack

Question 7

Type of injection attack, commonly used to store info about authentication or devices and users.
Lightweight Directory Access Protocol

Answer 7

LDAP injection

Question 8

Injection of code into an application to have the application execute the code for us. Runs as part of the target process.

Answer 8

DLL Injection (Dynamic Link Library

Question 9

Attack that occurs when one section of memory is able to overwrite a different section of memory. A good type of this is one they can replicate and control.

Answer 9

Buffer Overflow Attack

Question 10

When a cybercriminal eavesdrops on a secure network communication, intercepts it, and then fraudulently delays or resends it to misdirect the receiver into doing what the hacker wants.

Answer 10

Replay attack

Question 11

Technique where an attacker captures a password hash and then passes it through authentication and lateral access to other networked systems.

Answer 11

Pass the Hash (PtH)

Question 12

Malicious act of taking control of a user’s web session.

Answer 12

Session hijacking (Sidejacking)

Question 13

The insertion of malicious data, which has not been validated, into a HTTP response header.

Answer 13

Header Manipulation

Question 14

One-click attack - session riding (sea surf). Takes advantage of the trust that a web application has for the user.Example, sending a link to the server with the URL parameters of a user’s login.

Answer 14

Cross-site request forgery

Question 15

Attacker finds a web app vulnerability, it sends request to a web server and the server performs the request on behalf of the attacker.

Answer 15

Server-side request forgery

Question 16

Attack that exploits a previously unknown hardware firmware, or software vulnerability. It has no signature.

Answer 16

Zero Day Attack

Question 17

Device drivers allow an OS to talk to hardware devices. Attackers may dive deep into device drivers and manipulate them so that they undermine the security on your computer.

Answer 17

Driver manipulation

Question 18

Filling the space between two objects. A middleman.

Answer 18

Shimming

Question 19

Also reference as Metamorphic malware. Every time it downloads is a unique version of the malware. So it won’t match any signature in your anti-virus.

Answer 19

Refactoring

Question 20

Combination of a on-path attack with a downgrade attack. Hard to execute but big winnings. Victim does not see anything unusual. The browser page communicates via HTTP instead of HTTPS.

Answer 20

SSL Stripping / HTTP downgrade