Question 84 of 270 from exam CAS-003: CompTIA CASP+

Prev Question Next Question

Question

A security analyst sees some suspicious entries in a log file from a web server website, which has a form that allows customers to leave feedback on the company's products.

The analyst believes a malicious actor is scanning the web form.

To know which security controls to put in place, the analyst first needs to determine the type of activity occurring to design a control.

Given the log below:

Timestamp |SourcelP | CustName | PreferredContact | ProdName | Comments
Monday 10.14.3455 | aaaaa Phone Widget ‘None left
10:00:04

Monday 10.14.3455 | bbbbb Phone Widget ‘None left
10:00:04

Monday 10.14.3455 | cece Phone Widget etc/passwd
10:00:05

Monday 10.14.3455 | ddddd Phone Widget ‘None left
10:01:03

Monday 10.14.3455 | eceee Phone Widget ‘None left
10:01:04

Monday 10.14.3455 | aE Phone Widget 1-1
10:01:05

Monday 172.16.34.20 | Toe Phone Widget30_—_‘| Love the
10:03:05 Widget!
Monday 10.14.3455 | geses Phone Widget <script
10:04:01

Monday 10.14.3455 | hhhh Phone Widget weet cookie
10:05:05

Monday 10.14.3455 | iii Phone Widget ‘None left
10:05:05

Monday 10.1434.55 | iii Phone Widget ‘None left

10:05:06

Which of the following is the MOST likely type of activity occurring?

Answers

A. SQL injection

B. XSS scanning

C. Fuzzing

D. Brute forcing.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Prev Question Next Question