Chapter 11: Labs and Case Studies Case Study-1: Software Vulnerabilities and Attack Mitigation 1. Software Vulnerabilities and Attack Mitigation 2. How can security issues be incorporated within the planning phase of an SDLC? 3. What is horizontal privilege escalation? 4. What type of code exploit must malware make to install a rootkit with ring O privileges? 5. What type of overflow attack is most likely to lead to arbitrary/remote code execution? 6. What is TOCTTOU? 7. Which class of software vulnerability has been omitted from the following list: Improper error handling, dereferencing, insecure object reference, race condition, broken authentication, sensitive data exposure, insecure components, weak or default configurations, use of insecure functions. Case Study-2: Web Application Vulnerabilities and Attack Mitigation 1. What type of attack is being performed by the code shown below? http://www.target.foo/language.php?region=../../phpinfo.php 2. Which secure coding technique(s) can be used to mitigate the risk of reflected and stored XSS attacks? 3. What is a horizontal brute force attack? 4. Which secure coding best practice has been omitted from the following list? Input validation, output encoding, session management, authentication, data protection. Case Study-3: Application Assessment Output Analysis 1. What type of testing tries to prove that version updates have not reintroduced previously patched security issues? 2. Static code analysis can only be performed manually by other programmers and testers in a process of code review. a. True b. False 3. Which three types main types of dynamic analysis are available for software testing? 4. Which web application scanner has been omitted from the following list? OWASP Zed Attack Proxy, Burp Suite, Arachni