Chapter 1.3 - Application Attacks

Question 1

Privilege Escalation

Answer 1

Gaining higher-level access to a system
More capabilities

Question 2

Cross-Site Scripting (XSS)

Answer 2

Type of injection, in which malicious scripts are injected into otherwise benign and trusted websites

Question 3

Non-persistent (Reflected) Cross-Site Scripting Attack

Answer 3

The injected malicious script is “reflected” off the web server as a response that includes some or all of the input sent to the server as part of the request

Question 4

Persistent (Stored) Cross-Site Scripting Attack

Answer 4

Posting a message to a social network that includes a malicious payload
Posted and propagated to others

Question 5

Code Injection

Answer 5

Adding your own information into a data stream

Question 6

Structured Query Language (SQL) Injection

Answer 6

Inserting an SQL query into regular input or form fields in order to get credentials such as a username or password

Question 7

Extensible Markup Language (XML) Injection

Answer 7

Modify requests and sending data and storing it in a different location

Question 8

Lightweight Directory Access Protocol (LDAP) Injection

Answer 8

Modify requests and gaining directory information you normally would not have access to

Question 9

Dynamic-Link Library Injection

Answer 9

Inject a DLL into an application and have that application run the code for us

Question 10

Buffer Overflows

Answer 10

Overwriting a buffer memory and have it spill over into other memory areas

Question 11

Replay Attacks

Answer 11

Data transfer is maliciously repeated or delayed
NOT an On-path attack

Question 12

Cross-Site Request Forgery

Answer 12

Malicious exploit of a website or web application where unauthorized commands are submitted from a user that the web application trusts

Question 13

Pointer/ Object Dereference

Answer 13

Programming technique that references a portion of memory

Question 14

Directory Traversal/ Path Traversal

Answer 14

Reading files from a web server that are outside the website’s file directory

Question 15

Race Conditions

Answer 15

Two commands happening at the same time without being planned for

Question 16

Error Handling

Answer 16

Giving just enough information when an error is made so an attacker exploit the system

Question 17

Improper Input Handling

Answer 17

Finding input that can be malicious so an attack can be executed

Question 18

Session Replays

Answer 18

Reproduction of a user’s interactions on a website or web application exactly how the user actually experienced it

Question 19

Integer Overflow

Answer 19

When you attempt to store inside an integer variable a value that is larger than the maximum value the variable can hold

Question 20

Server-Side Request Forgery

Answer 20

Attacker abuses the functionality of a server causing it to access or manipulate information in the realm of that server that would otherwise not be directly accessible to the attacker

Question 21

Application Programming Interface (API) Attacks

Answer 21

The malicious usage or attempted usage of an API from automated threats such as access violations, bot attacks or abuse

Question 22

Resource Exhaustion

Answer 22

Happens when a system or system user uses up all the available resources that the system has, leading it to be completely drained
Specialized DoS attack
Zip Bomb

Question 23

Memory Leak

Answer 23

When unused memory is not properly released, begins to grow in size, eventually uses all available memory, and the system crashes

Question 24

Secure Sockets Layer (SSL) Stripping

Answer 24

Combines on-path attack with a downgrade attack
Type of cyberattack in which an attacker downgrades a website from secure HTTPS to an insecure HTTP connection

Question 25

Driver Manipulation

Answer 25

The alteration of system drivers to achieve a malicious outcome

Question 26

Shimming

Answer 26

Filling in the space between two objects (middleman)
Inserting a layer between an application and the operating system to modify the behavior of the application

Question 27

Refactoring

Answer 27

Appears different each time malware is downloaded
Add loops, points string codes, etc.
Can intelligently redesign itself

Question 28

Pass the Hash (PtH)

Answer 28

Type of cybersecurity attack in which an attacker steals a “hashed” user credential and uses it to create a new user session on the same network

Question 29

Time-of-check to Time-of-use Attack (TOCTOU)

Answer 29

Race condition that occurs when a resource is checked for a particular value, such as whether a file exists or not, and that value then changes before the resource is used, invalidating the results of the check