OSCP Web Application Attacks

Question 1

What type of SQL injection allows an attacker to retrieve data by asking the database true/false questions?

Accepted Answer

Boolean-based blind SQL injection

Answer

Boolean-based blind SQL injection infers data one bit at a time by submitting queries that return different responses based on whether the condition is true or false.

Question 2

Which SQLmap flag is used to attempt to read files from the target server's filesystem?

Accepted Answer

--file-read

Answer

The --file-read flag in SQLmap attempts to read a file from the database server's filesystem using database functions like LOAD_FILE() in MySQL.

Question 3

What is a Local File Inclusion (LFI) vulnerability in web applications?

Accepted Answer

An application that allows reading local server files by manipulating file path parameters

Answer

LFI occurs when an application includes files based on user-supplied input without proper validation, allowing an attacker to read sensitive server files using path traversal.

Question 4

What is the purpose of using Burp Suite's Intruder module during OSCP web application testing?

Accepted Answer

Automated attacks like brute-forcing, fuzzing, and parameter manipulation

Answer

Burp Suite Intruder automates customized attacks against web applications, including credential brute-forcing, parameter fuzzing, and injection payload delivery.

Question 5

Which HTTP method, if enabled on a web server, can allow an attacker to upload malicious files?

Accepted Answer

PUT

Answer

The HTTP PUT method is designed to upload files to a web server; if improperly enabled, it allows attackers to upload web shells or malicious scripts.

OSCP Practice Test

OSCP Practice Test

OSCP Web Application Attacks