Question
lab 5 1. Why is it critical to perform a penetration test on a web application and a web server prior to production implementation? 2.
lab 5
1. Why is it critical to perform a penetration test on a web application and a web server prior to production implementation?
2. What is a cross-site scripting attack? Explain in your own words.
3. What is a reflective cross-site scripting attack?
4. Based on the tests you performed in this lab, which web application attack is more likely to extract privacy data elements out of a database?
5. If you can monitor when SQL injections are performed on an SQL database, what would you recommend as a security countermeasure to monitor your production SQL databases?
6. Given that Apache and Internet Information Services (IIS) are the two most popular web application servers for Linux and Microsoft Windows platforms, what would you do to identify known software vulnerabilities and exploits?
7. What can you do to ensure that your organization incorporates penetration testing and web application testing as part of its implementation procedures?
8. What is the purpose of setting the DVWA security level to low before beginning the remaining lab steps?
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started