Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.

Exam SY0-601 topic 1 question 99 discussion

Actual exam question from CompTIA's SY0-601
Question #: 99
Topic #: 1
[All SY0-601 Questions]

A security analyst is investigating suspicious traffic on the web server located at IP address 10.10.1.1. A search of the WAF logs reveals the following output:

Which of the following is MOST likely occurring?

  • A. XSS attack
  • B. SQLi attack
  • C. Replay attack
  • D. XSRF attack
Show Suggested Answer Hide Answer
Suggested Answer: B ūüó≥ÔłŹ

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
comeragh
Highly Voted 1 year, 6 months ago
Selected Answer: B
SQLi - the giveaway is 1=1
upvoted 33 times
xxxdolorxxx
1 year, 1 month ago
You are correct.
upvoted 3 times
...
...
rodwave
Highly Voted 1 year, 3 months ago
Selected Answer: B
Answer: SQLi attack SQL injection, also known as SQLI, is a common attack vector that uses malicious SQL code for backend database manipulation to access information that was not intended to be displayed. The giveaway here is the 1=1 in the query which is essentially creating a condition that will automatically be true. ====================== Helpful Info: XSS (Cross-Site Scripting) attacks -a type of injection, in which malicious scripts are injected into otherwise benign and trusted websites. Replay Attack - a kind of man-in-the-middle attack in which an attacker sniffs messages being sent on a channel to intercept them and resend them under the cloak of authentic messages. CSRF (Cross Sit Request Forgery)- attacks that target functionality that causes a state change on the server, such as changing the victim's email address or password, or purchasing something.
upvoted 22 times
...
[Removed]
Most Recent 3 months, 2 weeks ago
Almost anytime there is 1=1 in any example, its SQLi. Buddy took it recently and said there were a lot of them on his exams. Don't miss the free points.
upvoted 2 times
...
Protract8593
7 months, 1 week ago
Selected Answer: B
In the provided logs, the presence of characters like -- and +OR+1=1-- in the requested URL indicates that the web server is likely vulnerable to SQL injection (SQLi) attacks. SQL injection is a type of web application vulnerability where an attacker can inject malicious SQL code into the input fields of a web application to manipulate the underlying database and potentially gain unauthorized access or extract sensitive information.
upvoted 2 times
...
ApplebeesWaiter1122
8 months, 1 week ago
Selected Answer: B
From Dion's material: If you see a 1=1 it is most likely a SQL injection
upvoted 3 times
...
MasterControlProgram
11 months, 2 weeks ago
Selected Answer: B
The most likely attack occurring based on the provided information is a "SQLi attack" (SQL Injection attack). The second log entry indicates that the attacker is attempting to exploit a SQL injection vulnerability by appending a payload to the "category" parameter of the contact form. The payload "OR 1=1--" is a common technique used to bypass authentication or gain unauthorized access by modifying the SQL query to always return true. The double-dash "--" indicates the start of a comment in SQL, which helps the payload to avoid syntax errors.
upvoted 1 times
...
DALLASCOWBOYS
1 year, 1 month ago
SQLi. Key is the 1=1 is the dead giveaway for the SQL injection attack
upvoted 3 times
...
hieptran
1 year, 1 month ago
Selected Answer: B
B - Typical SQL Injection payload
upvoted 1 times
...
Queenica
1 year, 3 months ago
I selected SQL Injection. However every SQL Statement Query starts with SELECT which is missing. Confused with the wording of the question.
upvoted 1 times
...
RonWonkers
1 year, 5 months ago
Selected Answer: B
1=1 so its SQLi
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...