CEHPC 무료 덤프문제 온라인 액세스

What is the main purpose of a "SQL injection" attack?

• A.Exploiting a database by manipulating SQL commands.
• B.Accessing an organization's network.
• C.Intercepting web traffic.

Is it important to perform penetration testing for companies?

• A.Yes, in order to protect information and systems.
• B.Yes, in order to sell the information.
• C.No, because hackers do not exist.

What tool would you use to search for hidden directories or files?

• A.Dirb
• B.Shodan
• C.Ping

What is active reconnaissance?

• A.Observes the target without performing any direct actions.
• B.Gathers information by directly interacting with the target.
• C.Recognizes the target but does nothing.

What is a Stored Cross-Site Scripting Attack (Stored XSS)?

• A.The malicious code is permanently stored on the server.
• B.The source code of the page, this can be html or javascript.
• C.In this type of attack, the malicious code is sent to the web server via an HTTP request. The server then processes the request and returns a response that includes the malicious code.