Web App Testing

Question 1

What are the 3 types of XSS attacks?

Answer 1

Stored, Reflected, Dom-Based

Question 2

Describe Stored XSS.

Answer 2

This is a type of web application vulnerability where an attacker injects malicious JavaScript code into a web application, and this code is stored on the server (in a database, file, or other persistent storage).

Question 3

Describe Reflected XSS.

Answer 3

This is a type of web application vulnerability where malicious JavaScript code is injected into a website via a user-supplied input (such as a URL, query parameter, or form input). This code is immediately reflected back by the server in the response, and is executed in the user’s browser when they visit the malicious URL.

Question 4

Describe Dom-Based XSS.

Answer 4

This is a type of Cross-Site Scripting (XSS) vulnerability where the attack is executed entirely on the client-side (in the user’s browser) rather than being reflected or stored on the server.

Question 5

What is SQL Injection?

Answer 5

This is a type of attack where an attacker exploits vulnerabilities in a web application’s input fields (such as forms, search bars, or URLs) to manipulate an SQL query.

Question 6

List the OWASP top 10.

Answer 6

1. Broken Access Control
2. Cryptographic Failures
3. Injection
4. Insecure Design
5. Security Misconfiguration
6. Vulnerable and Outdated Components
7. Identification and Authentication Failures
8. Software and Data Integrity Failures
9. Security Logging and Monitoring Failures
10. Server-Side Request Forgery (SSRF)

Question 7

List 5 types of SQL Injection.

Answer 7

1. In-Band SQL Injection (Error-Based, Union-Based)
2. Blind SQL Injection (Boolean-Based, Time-Based)
3. Out-of-Band SQL Injection
4. Second-Order SQL Injection
5. Tautology-Based SQL Injection