Cu3rv0x
Detecting Web Attacks

Detecting Web Attacks


LetsDefend

What is the name of the tool that OWASP has prepared to help scan web applications for vulnerabilities? A) Zap

Which area does OWASP focus on? A) Web Applications

What is the name of the vulnerable web application project that OWASP wrote using Node.js for security researchers to improve themselves? A) Juice_Shop

What does the OWASP Top 10 list, published every few years, reveal? A) Most critical security risks to web applications

What layer is HTTP on in the OSI model? A) Application

Which HTTP Request header contains browser and operating system information? A) User-Agent

What is the HTTP Response status code that indicates the request was successful? A) 200

Which HTTP Request Method ensures that the submitted parameters do not appear in the Request URL? A) POST

Which HTTP Request header contains session tokens? A) Cookie

What date did the exploitation phase of SQL Injection Attack start? A) 01/Mar/2022:08:35:14

What is the IP address of the attacker who performed the SQL Injection attack? A) 192.168.31.167

Was the SQL Injection attack successful? (Answer Format: Y/N) A) Y

What is the type of SQL Injection attack? (Classic, Blind, Out-of-band) A) Classic

Question: What is the start date of the XSS attack?

File Password: access A) 01/Mar/2022:08:53:20

What is the IP address of the attacker who performed the XSS attack? A) 192.168.31.183

Was the XSS attack successful? A) Y

What is the type of XSS attack? (Reflected, Stored, Dom based) A) Reflected

What is the date the command injection attack was initiated? A) 01/Mar/2022:09:03:33

What is the IP address of the attacker who performed the Command Injection attack? A) 192.168.31.156

Was the Command Injection attack successful? A) N

What is the IP address of the attacker who carried out the IDOR attack? A) 192.168.31.174

What is the date when the attack started? A) 01/Mar/2022:11:42:32

Was the attack successful? A) Y

Was the attack carried out by an automated tool? A) N

What is the attacker’s IP address? A) 192.168.31.174

What is the start date of the attack? A) 01/Mar/2022:11:58:35

Was the attack successful? A) N

© 2026 Cu3rv0x