- Study guides, Class notes & Summaries

D385: Logging and Security Issues Exam Questions and Answers 100% Pass

D385 WGU Exam Questions and Answers 100% Pass

What is Defensive Programming? correct answers - assume mistakes will happen and guard against them - assertions are the most common way of doing this - code checks itself as it runs - always check, validate, and sanitize data Which attribute provides a dictionary of breakpoint instances? correct answers - bplist - maintains a (file, line) tuple of breakpoints Which function can be used to return all set breakpoints? correct answers - get_all_breaks( ) - returns a string with all set ...

D385 Pre –Assessment Questions With 100% Verified Solutions Which method is used for a SQL injection attack? - exploiting query parameters - passing safe query parameters - using SQL composition - utilizing literal parameters - ANSWER - exploiting query parameters Consider the following assertion statement: def authorizeAdmin(usr): assert isinstance(usr, list) and usr != [], "No user found" assert 'admin' in usr, "No admin found." print(...

Which Python function is prone to a potential code injection attack? - eval() How do you prevent log injection? - validate() What are two common defensive coding techniques? - Check functional preconditions and postconditions What is checking functional preconditions and post conditions best practice for? - Defensive Coding What happens when an attacker exploits a cross-site scripting vulnerability? - Access to the User's data A user masquerades as (or pretends to be) another ...

Attack Surface - - the sum of all potential entry points Common examples of attacks that take advantage of systems with insufficient input validation? - - SQLi - RCE - host header attack - denial of service Defense in Depth - - each layer of security is dual-purpose 1) resists an attack 2) acts as a backup when other layers fail Most common symmetric encryption algorithm? - - AES Most common hashing algorithm? -

What hash function should you use for most general purpose cryptographic hashing? - SHA-256 What hash function should you consider using for high security environments, though it may have less support? - SHA3-256 What hash function should you use for very large messages? - BLAKE2 What two hash functions should you avoid, as they're now considered unsecure? - MD5 and SHA1 What is the difference between hash functions and checksum functions? - Hash functions have stronger collision ...

Which Python function is prone to a potential code injection attack? - eval() How do you prevent log injection? - validate() What are two common defensive coding techniques? - Check functional preconditions and postconditions What is checking functional preconditions and post conditions best practice for? - Defensive Coding What happens when an attacker exploits a cross-site scripting vulnerability? - Access to the User's data A user masquerades as (or pretends t

D385: Software Security and Testing 3 Questions and Answers Verified 100% Correct

WGU D385: Software Security and Testing Questions and Answers Verified 100% Correct| 2024/2025 Version