nerdexam
GIAC

GCIH · Question #681

An attacker has tricked a user into executing content he placed on a social networking site. The malicious content executes in the victim's browser and allows the attacker to determine if machines beh

The correct answer is A. Cross Site Scripting. An attacker injecting malicious scripts into a trusted site that execute in another user's browser to probe internal network resources is a classic Cross-Site Scripting (XSS) attack.

Web Application Attacks & Post-Exploitation

Question

An attacker has tricked a user into executing content he placed on a social networking site. The malicious content executes in the victim's browser and allows the attacker to determine if machines behind the user's firewall are up and running. What type of attack is this?

Options

  • ACross Site Scripting
  • BSQL Injection
  • CAccount Harvesting
  • DSession Hijacking

How the community answered

(57 responses)
  • A
    74% (42)
  • B
    5% (3)
  • C
    7% (4)
  • D
    14% (8)

Why each option

An attacker injecting malicious scripts into a trusted site that execute in another user's browser to probe internal network resources is a classic Cross-Site Scripting (XSS) attack.

ACross Site ScriptingCorrect

Cross-Site Scripting occurs when an attacker injects client-side scripts into content served by a trusted site, causing the victim's browser to execute them. Because the script runs in the victim's browser context, it can make requests to internal RFC 1918 addresses behind the victim's firewall, effectively using the browser as a proxy to map internal hosts - a technique known as intranet port scanning via XSS.

BSQL Injection

SQL Injection targets server-side database queries by manipulating input; it does not execute code in the victim's browser or probe internal networks on the attacker's behalf.

CAccount Harvesting

Account Harvesting refers to enumeration techniques used to identify valid user accounts, not script execution in a victim's browser.

DSession Hijacking

Session Hijacking involves stealing or forging authentication tokens to impersonate a user, which is distinct from injecting executable content into a web page.

Concept tested: Cross-Site Scripting (XSS) browser-based network probing

Source: https://owasp.org/www-community/attacks/xss/

Topics

#cross-site scripting#browser exploitation#firewall bypass#social engineering

Community Discussion

No community discussion yet for this question.

Full GCIH Practice