- What is a CSRF attack? How does it use HTTP requests? And why do we call it the one-click attack?
- What is an XSS attack? And what is the connection between it and cookies/sessions? And what are the two main categories of XSS?
- What is SQL injection? and what is the attacker’s intention from it?
- Consider the below SQL command, where is the vulnerability? think about some ways an attacker can misuse it:
const { username, password } = req.body
let strQry = `SELECT Count(*) FROM Users WHERE username=${username} AND password=${password}`;
- What does End-to-End encryption means? Share an example of an well-known app using E2EE, how is that app using it?
Shinak Mohemed, Zhin abubaker, Barham Baper, Koshyar Abdurrahaman , Yousra Yaarob
-SQL Injection: An attacker can manipulate the username or password input fields to inject malicious SQL code. For example, by inputting ' OR '1'='1' as the password, the attacker could bypass authentication entirely because the query would evaluate to true, allowing them to log in without a valid password.
-Authentication Bypass: If the query returns any results, it indicates a successful login. An attacker can exploit this by guessing valid usernames and using a crafted password to log in without knowing the correct credentials.