Tag: security

Questions Related to security

Which of the following is an attack technique that forces a web site to echo client-supplied data, which execute in a user’s web browser
technology security

  1. XSS

  2. Reflection Attack

  3. Mirror Attack

  4. XSLT

Show answer
Correct Option: A

Which of the following is an attack technique used to exploit "dynamic file include" mechanisms in web applications
technology security

  1. Dynamic File Attack

  2. Remote File Inclusion

  3. Dynamic Data Attack

  4. Data Dynamics

Show answer
Correct Option: B

What is Static Analysis
technology security

  1. Static Code Analysis is the analysis of software code by actually executing the binaries resulting from this code

  2. Static Code Analysis is the analysis of software code without actually executing the binaries resulting from this code

  3. Static Code Analysis is the analysis of executables resulting from this code

  4. None of the above

Show answer
Correct Option: B

The process of addressing a security vulnerability by blocking an attack vector that could exploit it is known as
technology security

  1. Anti Patching

  2. Anti Attack

  3. Virtual Patching

  4. Patch Attack

Show answer
Correct Option: C

AppSensor is a popular
technology security

  1. Web Applictation Firewall

  2. Application Based Intrusion Detection

  3. Database Monitoring

  4. Virtual Private Lan

Show answer
Correct Option: B

ModSecurity is a popular
technology security

  1. Web Applictation Firewall

  2. Application Based Intrusion Detection

  3. Database Monitoring

  4. Virtual Private Lan

Show answer
Correct Option: A

Any attack which is based on information gained from physical implementation of a crypto system,rather than brute force or algorithm weakness is known as
technology security

  1. Back Attack

  2. Unknown Attack

  3. Reverse Attack

  4. Side Channel Attack

Show answer
Correct Option: D

Which of the following is not a function of Database Activity Monitor
technology security

  1. Previlged User Monitoring

  2. Application Activity Monitoring

  3. Cyberattack Protection

  4. Database Recovery

Show answer
Correct Option: D

Which of the following is a valid method of classifying computer security threats
technology security

  1. DREAD

  2. FEAR

  3. SAFE

  4. DEAF

Show answer
Correct Option: A

Which of the following is a valid threat modelling methodology
technology security

  1. STRIDE

  2. PRIDE

  3. BRIDE

  4. RIDE

Show answer
Correct Option: A