اضغط هنا للانضمام الى قروب فوجي للإختبارات على تيليقرام

اختبار شهادة Certified Ethical Hacker (CEH) V13

السؤال 328 من 358

كل الأسئلة

An ethical hacker is testing a database protected by a signature-based IDS. He manages to retrieve usernames via SQL injection without triggering an alert by subtly changing how spaces appear in his queries so that the SQL engine still parses them but the IDS signatures no longer match. Which evasion technique did he likely use?

الخيارات

  • A Utilizing char() encoding to turn hex/decimal values into characters
  • B Using URL encoding to replace characters with their ASCII hex codes
  • C Using logical expressions such as "OR 'john' = john" instead of "OR 1=1"
  • D Manipulating white spaces in SQL queries to bypass signature detection

النقاشات

لا توجد نقاشات منشورة لهذا السؤال حالياً.