Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
6 Cards in this Set
- Front
- Back
How can a URL be used as a weapon against a web server? |
By manipulating the URL, an attacker can gain access to various parts of the web server architecture. |
|
Parts of a URL: eg. http://www.example.com/add.aso?ItemID=123&price=999 |
http is the protocol www is the subdomain example.com is the host name add.asp? is the path itemID=123&price=999 is the parameters |
|
3 most popular web servers in use today? |
Apache, nginx, & IIS |
|
Typical web servers are comprised of 5 parts. What are they? |
Client, firewall, web server, application, and database |
|
What are some ways that a compromised web server can be used to perform an attack? |
A defaced website can contain malicious content and/or links to inappropriate sites. A compromised web server can be used to push malware to anyone visiting the webpage. Compromised data can be used to commit fraudulent activities, which can lead to lawsuits and loss of business. |
|
What os OWASP's number 1 threat, as of 2020? |
Code injection, such as SQL, LDAP, OS, and NOSQL |