1.3 Given a scenario, analyze potential indicators associated with application attacks

Question 1

What is privilege escalation?

Answer 1

Privilege escalation is a security vulnerability that allows an attacker to gain higher levels of access or permissions in a system or application.

Question 2

What term describes the process of gaining higher levels of access or permissions in a system or application?

Answer 2

Privilege escalation

Question 3

What is cross-site scripting (XSS)?

Answer 3

Cross-site scripting (XSS) is a type of security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users.

Question 4

What term describes a vulnerability that allows attackers to inject malicious scripts into web pages?

Answer 4

Cross-site scripting (XSS)

Question 5

What is SQL injection?

Answer 5

SQL injection is a type of attack where malicious SQL queries are inserted into input fields of web applications.

Question 6

What term describes the insertion of malicious SQL queries into web application input fields?

Answer 6

SQL injection

Question 7

What is a DLL injection?

Answer 7

DLL injection is a technique used by attackers to insert malicious code into running processes by loading a dynamic-link library (DLL) into the address space.

Question 8

What term describes the technique of inserting malicious code into running processes by loading a dynamic-link library?

Answer 8

DLL injection

Question 9

What is LDAP injection?

Answer 9

LDAP injection is a type of attack where attackers manipulate LDAP queries sent to directory services.

Question 10

What term describes the manipulation of LDAP queries to gain unauthorized access or control?

Answer 10

LDAP injection

Question 11

What is XML injection?

Answer 11

XML injection is a type of attack where attackers manipulate XML input data to exploit vulnerabilities in XML parsers or processors.

Question 12

What term describes the manipulation of XML input data to exploit vulnerabilities?

Answer 12

XML injection

Question 13

What is pointer/object dereference?

Answer 13

Pointer/Object dereference is a software vulnerability where a program attempts to access memory locations that have been freed or corrupted.

Question 14

What term describes the vulnerability where a program tries to access memory locations that have been freed or corrupted?

Answer 14

Pointer/Object dereference

Question 15

What is directory traversal?

Answer 15

Directory traversal is a type of attack where attackers exploit insufficient input validation to access files or directories outside of the intended structure.

Question 16

What term describes the attack where attackers access files or directories outside the intended structure?

Answer 16

Directory traversal

Question 17

What is a buffer overflow?

Answer 17

A buffer overflow is a type of software vulnerability where a program writes data beyond the boundaries of a buffer.

Question 18

What term describes the vulnerability where a program writes data beyond the boundaries of a buffer?

Answer 18

Buffer overflow

Question 19

What are race conditions?

Answer 19

Race conditions are software vulnerabilities that occur when the outcome of a program depends on the timing or sequence of events.

Question 20

What term describes vulnerabilities where the outcome of a program depends on the timing of events?

Answer 20

Race conditions

Question 21

What is error handling?

Answer 21

Error handling is the process of detecting, reporting, and responding to errors or exceptions that occur during program execution.

Question 22

What term describes the process of detecting and responding to errors during program execution?

Answer 22

Error handling

Question 23

What is improper input handling?

Answer 23

Improper input handling is a software vulnerability where applications fail to properly validate, sanitize, or encode user inputs.

Question 24

What term describes the vulnerability where applications fail to properly validate user inputs?

Answer 24

Improper input handling

Question 25

What is a replay attack?

Answer 25

A replay attack is a type of attack where attackers capture and replay valid data transmissions or authentication messages.

Question 26

What term describes the attack where valid data transmissions are captured and replayed to gain unauthorized access?

Answer 26

Replay attack

Question 27

What is an integer overflow?

Answer 27

An integer overflow is a software vulnerability where arithmetic operations on integers result in a value that exceeds the maximum representable value.

Question 28

What term describes the vulnerability where arithmetic operations result in values exceeding the maximum representable value?

Answer 28

Integer overflow

Question 29

What are server-side request forgeries?

Answer 29

Server-side request forgeries are a type of attack where attackers trick a server into making unauthorized requests on behalf of authenticated users.

Question 30

What term describes the attack where servers are tricked into making unauthorized requests on behalf of authenticated users?

Answer 30

Server-side request forgeries

Question 31

What are cross-site request forgeries?

Answer 31

Cross-site request forgeries are a type of attack where attackers trick users into making unintended HTTP requests to web applications.

Question 32

What term describes the attack where users are tricked into making unintended requests to web applications?

Answer 32

Cross-site request forgeries

Question 33

What are API attacks?

Answer 33

API attacks are malicious activities targeting application programming interfaces (APIs) to exploit vulnerabilities.

Question 34

What term describes malicious activities targeting application programming interfaces?

Answer 34

API attacks

Question 35

What is resource exhaustion?

Answer 35

Resource exhaustion is a type of attack where attackers consume system resources to disrupt service availability.

Question 36

What term describes the attack where system resources are consumed to disrupt service availability?

Answer 36

Resource exhaustion

Question 37

What is a memory leak?

Answer 37

A memory leak is a software defect where a program fails to release memory that is no longer needed.

Question 38

What term describes the software defect where memory is not released after it’s no longer needed?

Answer 38

Memory leak

Question 39

What is SSL stripping?

Answer 39

SSL stripping is a type of attack where HTTPS connections are downgraded to HTTP, exposing sensitive information.

Question 40

What term describes the attack where HTTPS connections are downgraded to HTTP, exposing sensitive information?

Answer 40

SSL stripping

Question 41

What is driver manipulation via shimming?

Answer 41

Driver manipulation via shimming is a technique used by attackers to intercept and modify system calls made by device drivers.

Question 42

What term describes the technique of intercepting and modifying system calls made by device drivers?

Answer 42

Driver manipulation via shimming

Question 43

What is driver manipulation via refactoring?

Answer 43

Driver manipulation via refactoring is a technique used by attackers to modify the code of device drivers to introduce vulnerabilities.

Question 44

What term describes the technique of modifying device driver code to introduce vulnerabilities or malicious functionality?

Answer 44

Driver manipulation via refactoring

Question 45

What is pass the hash?

Answer 45

Pass the hash is a type of attack where hashed credentials are captured and reused to authenticate to other systems.

Question 46

What term describes the attack where hashed credentials are captured and reused to authenticate to other systems?

Answer 46

Pass the hash