Web Security Pt. 2

Question 1

What is SQLi?

Answer 1

SQL Injection

Question 2

What is SQLi caused by?

Answer 2

missing input validation and app-generates queries containing user-fed input

Question 3

What info does user() retreive?

Answer 3

root@localhost

Question 4

What info does database() retrieve?

Answer 4

‘nowasp’

Question 5

What info does @@version retrieve?

Answer 5

‘5.7.19’

Question 6

What info does @@hostname retrieve?

Answer 6

‘dbmachine’

Question 7

What info does @@datadir retrieve?

Answer 7

‘/usr/local/var/mysql/’

Question 8

When does In-band SQLi occur?

Answer 8

when we use the same channel to launch attacks and gather the results (error based, union based)

Question 9

When does out-of-band SQLi occur?

Answer 9

when the attacker has to use different channel to gather their results

Question 10

What does xp_cmdshell do?

Answer 10

allows the execution of commands

Question 11

What does UTL_TCP do?

Answer 11

enables SQL to topen a communication channel with external TCP/IP-based servers using tcp/ip

Question 12

What does XSS exploit?

Answer 12

the trust a user has for a website

Question 13

What does CSRF exploit?

Answer 13

the trust of a website towards a user

Question 14

What is cookie theft?

Answer 14

the attacker can access the victims cookies associated with the website using document.cookie

Question 15

What is keylogging?

Answer 15

the attacker can track a keyboard using addEventListener and then send all of the users keystrokes to the attacker

Question 16

What is phising?

Answer 16

the attacker fabricates a login form into the page using DOM manipulation