Golgappa.net | Golgappa.org | BagIndia.net | BodyIndia.Com | CabIndia.net | CarsBikes.net | CarsBikes.org | CashIndia.net | ConsumerIndia.net | CookingIndia.net | DataIndia.net | DealIndia.net | EmailIndia.net | FirstTablet.com | FirstTourist.com | ForsaleIndia.net | IndiaBody.Com | IndiaCab.net | IndiaCash.net | IndiaModel.net | KidForum.net | OfficeIndia.net | PaysIndia.com | RestaurantIndia.net | RestaurantsIndia.net | SaleForum.net | SellForum.net | SoldIndia.com | StarIndia.net | TomatoCab.com | TomatoCabs.com | TownIndia.com
Interested to Buy Any Domain ? << Click Here >> for more details...

  1. Categories >> Software >> Security >> Computer Security
  2. Suggest New Category

If you were going to break into a database-based website, how would you do it?

Question Posted / chaitanya


If you were going to break into a database-based website, how would you do it?..

Answer / chaitanya

learning to break into your own systems so that you can pen test them yourself. While the exact methods are different for each type of database server and programming language, the easiest attack vector to test for first is an SQL injection technique. For example, if the input fields are not sterilized, just entering a specific set of symbols into a form field may be enough to get back data. Alternatively, depending again on how the site is written, using a specially crafted URL may be enough to get back data as well. Footprinting the server ahead of time can help in this task if it isn’t one you built yourself.

Is This Answer Correct ?    4 Yes 1 No

Post New Answer

More Computer Security Interview Questions

You are an employee for a tech department in a non-management position. A high-level executive demands that you break protocol and allow him to use his home laptop at work. What do you do?

1 Answers  

 What are salted hashes?

1 Answers  

 You see a user logging in as root to perform basic functions. Is this a problem?

1 Answers  

What is meant by computer application?

0 Answers  

A phonetic password generator picks two segments randomly for each six-letter password. The form of each segment is CVC (consonant, vowel, consonant), where V= < a, e, i, o, u > and C = (V.) ̅ What is the total password population? What is the probability of an adversary guessing a password correctly?

0 Answers  

What is dora process in DHCP and how it works?

0 Answers  

 How would you lock down a mobile device?

1 Answers  

 What is the difference between Information Protection and Information Assurance?

1 Answers  

What is data protection in transit vs data protection at rest?

1 Answers  

You are remoted in to a headless system in a remote area. You have no physical access to the hardware and you need to perform an OS installation. What do you do?

1 Answers  

What is worse in Firewall Detection, a false negative or a false positive? And why?

1 Answers  

 What’s the difference between a White Box test and a Black Box test?

2 Answers  

For more Computer Security Interview Questions Click Here
Categories
  • Computer Security Interview Questions Computer Security (58)
  • Mobile Security Interview Questions Mobile Security (9)
  • Hacking Interview Questions Hacking (33)
  • Security AllOther Interview Questions Security AllOther (4)