SDLC

Question 1

What is the order of the Waterfall-Model, SDLC phases?

Answer 1

Planning and Analysis
Software/Systems Design
Implementation
Testing
Integration
Deployment
Maintenance

Question 2

Which SDLC model uses time-boxing or small increments?

Answer 2

Agile

Question 3

What is a runtime error?

Answer 3

When the software encounters an error when running.

Question 4

What is a syntax error?

Answer 4

When the code has mistakes with its coding.

Question 5

What is structured exception handling (SEH)?

Answer 5

It allows you to have control over what the application should do when faced with a syntax or runtime error.

Question 6

Is fuzzing conducted during static or dynamic code analysis?

Answer 6

Dynamic

Question 7

What other situations you can use fuzzing?

Answer 7

You can also use fuzzing to stress test networks

Question 8

When you see a question on the test involving (dot dot slash), what is this answer of the question most likely to be?

https://www.jennyisaho/../../../etc

Answer 8

Directory traversal

Question 9

When an attacker is able to execute code or run commands on a victim computer, what is it called?

This is when your friend gets on your computer at work and runs something on your computer.

Answer 9

Arbitrary code execution

Question 10

What is arbitrary code execution called when its done remotely?

Answer 10

Remote code execution

This is considered to be one of the worst types of exploits in the security world. Any type of vulnerability that allows an RCE exploit is considered to be critical in the CVSS.

Question 11

What is a way programmers help prevent buffer overflow attacks?

Answer 11

Address space layout randomization

Question 12

What is cross-site scripting?

Answer 12

When an attacker embeds a malicious scripting command on a trusted website.

The victim is the user, not the server.

Question 13

What are the three types of CSS attacks?

Answer 13

Stored/Persistent
Reflected
DOM-based

Question 14

What is the stored/persistent attack?

Answer 14

Attempts to get data provided by the attacker to be saved on the web server. Later this malicious code is served to other users.

Question 15

What is the reflected attack?

Answer 15

Attempts to have a non-persistent effect activated by a victim by clicking a link on the site.

Question 16

What is the DOM (Document Object Model) based attack?

Answer 16

Attempts to exploit the victim’s web browser.

The DOM is a part of the users web browser.

Question 17

How do you stop CSS?

Answer 17

Output encoding and good input validation

Output encoding is to convert untrusted input into a safe form where the input is displayed as data to the user without executing as code in the browser.

The user can disable scripting languages in their browser and increasing the security settings for their cookie storage.

Question 18

What is Cross-Site Request Forgery (CSRF/XSRF)?

Answer 18

When the attacker forces a user to execute actions on a web server that they are authenticated on.

This exploits the trust the server has on the user. This is the attack where the user is authenticated to a bank and the attacker uses a forged request to make it look like it came from the user.

Question 19

How do you prevent CSRF?

Answer 19

Programmers can use:

Special tokens on web pages that contain forms such as CAPTCHA’s
Special encryption techniques
XML file scanning
Cookie verification.

Question 20

What does SQL do?

Answer 20

It’s how a web app to talks to a database

Question 21

How do you stop SQL injections?

Answer 21

Input Validation and least privilege

For the exam, any question that has 1=1 or 999=999 etc, will be an SQL injection.

Question 22

What are the most common injection vectors?

Answer 22

SQL, HTML, XML, LDAP

SQL being the most targeted by far

Question 23

What is XML vulnerable to?

Answer 23

XML data submitted w/o encryption or input validation is vulnerable to:

Spoofing
Request forgery
Code injection