Assessment 2

Question 1

What does SQL stand for?

Answer 1

Structured Query Language

Question 2

What does SQL do?

Answer 2

To Query, operate, and Administer database systems.

Question 3

What is SQL Injection

Answer 3

A hacker uses SQL commands in a weak area (such as login) and gains access to the backend database. The bad actor could attempt to view, change or delete data from the back-end server. The hacker could also use their access to open a network connection from inside the network.

Question 4

Describe Compromised Availability of data.

Answer 4

It can change data from the database. This could result in changes to a connected web page, or application. Can delete data, and audit information for the purpose of harm or mischief

Question 5

What does XSS stand for?

Answer 5

Cross Site Scripting

Question 6

How does an XSS work?

Answer 6

XSS uses javascript stolen from a trusted site to get information about a single user’s personal web browser and break their privacy.

Question 7

What does DDoS do?

Answer 7

An attack with multiple sources sending false requests to a server. The goal is to overload the servers and make it inaccessible.

Question 8

What are the kinds of harm a DDoS uses to achieve its goals?

Answer 8

Eating system resources like memory and cpu. Consuming network bandwidth.

Question 9

What is a Botnet

Answer 9

A large number of computers, often controlled by malware, used too execute a DDoS attack.