Refer to the exhibit. At which stage of the threat kill chain is an attacker, based on these URIs of inbound web requests from known malicious Internet scanners?
Its recon, he is trying to exploit multiples vulnerabilities which can exploit or not, after that the weaponization comes and the delivery can start, so this is a Recon.
Based on the URIs of inbound web requests from known malicious Internet scanners, the attacker is likely in the reconnaissance stage of the threat kill chain.
The URIs "/invoker/JMXInvokerServlet" and "/CFIDE/adminapi" are commonly targeted by attackers during reconnaissance to identify potential vulnerabilities in web servers and applications. These URIs suggest that the attacker is attempting to identify systems that are running vulnerable versions of Apache Struts and ColdFusion, respectively.
/?a=<script>alert%28%22XSS%22%29%3B</script>&b=UNION+SELECT+ALL+FROM+information_schema+AND+%27+or+SLEEP%285%29+or%27&c=../../../../etc/passwd
C or A not sure.
This section is not available anymore. Please use the main Exam Page.350-201 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
corruptbits
10 months agojaciro11
2 years agojay_c_an
2 years, 1 month agojay_c_an
2 years, 1 month agoDrVoIP
2 years, 2 months agoTOLU1985
2 years, 7 months agoTOLU1985
2 years, 7 months ago