EC-Council
312-50V13 · Question #496
An ethical hacker is hired to evaluate the defenses of an organization's database system which is known to employ a signature-based IDS. The hacker knows that some SQL Injection evasion techniques may
Sign in or unlock 312-50V13 to reveal the answer and full explanation for question #496. The question stem and answer options stay visible for context.
Submitted by rachelw· Mar 6, 2026SQL Injection
Question
An ethical hacker is hired to evaluate the defenses of an organization's database system which is known to employ a signature-based IDS. The hacker knows that some SQL Injection evasion techniques may allow him to bypass the system's signatures. During the operation, he successfully retrieved a list of usernames from the database without triggering an alarm by employing an advanced evasion technique. Which of the following could he have used?
Options
- AUtilizing the char encoding function to convert hexadecimal and decimal values into characters
- BUsing the URL encoding method to replace characters with their ASCII codes in hexadecimal
- CImplementing sophisticated matches such as "OR `john' = john" in place of classical matches like
- DManipulating white spaces in SQL queries to bypass signature detection
Unlock 312-50V13 to see the answer
You've previewed enough free 312-50V13 questions. Unlock 312-50V13 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#SQL Injection evasion#Signature-based IDS bypass#CHAR encoding#Database hacking