Question
a.
Encryption and secure sockets layer (SSL)
b.
Input validation and least privilege restrictions on database access
c.
Firewalls and intrusion detection systems (IDS)
d.
Multi-factor authentication and access control lists (ACLs)
Posted under CompTIA PenTest+ Certification Exam PT0 002
Engage with the Community - Add Your Comment
Confused About the Answer? Ask for Details Here.
Know the Explanation? Add it Here.
Q. What are the two best ways to protect against SQL injection attacks?
Similar Questions
Discover Related MCQs
Q. Cross-Site Scripting (XSS) vulnerabilities can trick users into executing malicious code on a trusted website.
View solution
Q. What should cybersecurity analysts do when discovering potential XSS vulnerabilities?
View solution
Q. How do vulnerability scanners usually rank detected issues?
View solution
Q. What can false positive reports in vulnerability scans lead to?
View solution
Q. What is a measure used in the Common Vulnerability Scoring System (CVSS) to assess vulnerabilities?
View solution
Q. What should penetration testers be careful to watch for when interpreting vulnerability reports?
View solution
Q. What does Cross-Site Scripting (XSS) aim to achieve?
View solution
Q. What crucial information is typically included in vulnerability scan reports, in addition to details about vulnerabilities?
View solution
Q. What does the CVSS base score measure on a 10-point scale?
View solution
Q. Name two common sources of vulnerabilities.
View solution
Q. What type of attacks typically exploit application flaws?
View solution
Q. What is a common source of vulnerabilities in network devices?
View solution
Q. What should network administrators ensure to patch security issues in network devices?
View solution
Q. What causes vulnerabilities in SSL and TLS encryption?
View solution
Q. What should administrators do to protect against virtual machine escape attacks in virtualized infrastructure?
View solution
Q. What does the CVSS base score consider regarding the impact of a vulnerability?
View solution
Q. What is a suggested solution often provided in vulnerability scan reports?
View solution
Q. Tom is reviewing a vulnerability scan report and finds that one of the servers on his network suffers from an internal IP address disclosure vulnerability. What protocol is likely in use on this network that resulted in this vulnerability?
View solution
Q. Which one of the CVSS metrics would contain information about the type of user account an attacker must use to execute an attack?
View solution
Q. Which one of the following values for the CVSS attack complexity metric would indicate that the specified attack is simplest to exploit?
View solution
Suggested Topics
Are you eager to expand your knowledge beyond CompTIA PenTest+ Certification Exam PT0 002? We've curated a selection of related categories that you might find intriguing.
Click on the categories below to discover a wealth of MCQs and enrich your understanding of Computer Science. Happy exploring!
.png)
