IT Security/Threats/Application Attacks

< IT Security < Threats

This lesson covers application attacks.

Objectives and Skills

Objectives and skills for the application attacks portion of Security+ certification include:[1]

Explain types of application attacks.
  • Cross-site scripting
  • SQL injection
  • LDAP injection
  • XML injection
  • Directory traversal/command injection
  • Buffer overflow
  • Integer overflow
  • Zero-day
  • Cookies and attachments
  • LSO (Locally Shared Objects)
  • Flash Cookies
  • Malicious add-ons
  • Session hijacking
  • Header manipulation
  • Arbitrary code execution / remote code execution

Multimedia

  1. Watch YouTube: Cross-Site Scripting - CompTIA Security+ SY0-401: 3.5.
  2. Watch YouTube: SQL Injection, XML Injection, and LDAP Injection - CompTIA Security+ SY0-401: 3.5.
  3. Watch YouTube: Directory Traversal and Command Injection - CompTIA Security+ SY0-401: 3.5.
  4. Watch YouTube: Buffer Overflows and Integer Overflows - CompTIA Security+ SY0-401: 3.5.
  5. Watch YouTube: Zero-Day Attacks - CompTIA Security+ SY0-401: 3.5.
  6. Watch YouTube: Cookies, Header Manipulation, and Session Hijacking - CompTIA Security+ SY0-401: 3.5.
  7. Watch YouTube: Locally Shared Objects and Flash Cookies - CompTIA Security+ SY0-401: 3.5.
  8. Watch YouTube: Malicious Add-ons and Attachments - CompTIA Security+ SY0-401: 3.5.
  9. Watch YouTube: Arbitrary and Remote Code Execution - CompTIA Security+ SY0-401: 3.5.

References

  1. CompTIA: Security+ Certification Exam Objectives - Exam SY0-401
This article is issued from Wikiversity - version of the Sunday, December 13, 2015. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.