Palo Alto Networks

Free 312-96 Exam Braindumps (page: 2)

Pass your Certified Application Security Engineer (CASE) JAVA exam with these free Actual Questions and Answers

Viewing Page 1 of 12 pages.

Download PDF version with 49 Questions

QUESTION: 1

Sam, an application security engineer working in INFRA INC., was conducting a secure code review on an application developed in Java. He found that the developer has used a piece of code as shown in the following screenshot. Identify the security mistakes that the developer has coded?

He is attempting to use client-side validation
He is attempting to use whitelist input validation approach
He is attempting to use regular expression for validation
He is attempting to use blacklist input validation approach

Answer(s): D

Reveal Solution Next Question

QUESTION: 2

Identify the type of attack depicted in the following figure.

SQL Injection Attacks
Session Fixation Attack
Parameter Tampering Attack
Denial-of-Service Attack

Answer(s): C

Reveal Solution Next Question

QUESTION: 3

According to secure logging practices, programmers should ensure that logging processes are not disrupted by:

Catching incorrect exceptions
Multiple catching of incorrect exceptions
Re-throwing incorrect exceptions
Throwing incorrect exceptions

Answer(s): D

Reveal Solution Next Question

QUESTION: 4

Which of the threat classification model is used to classify threats during threat modeling process?

RED
STRIDE
DREAD
SMART

Answer(s): B

Reveal Solution Next Question

Viewing page 2 of 12
Viewing questions 1 - 4 out of 49 questions

Post your Comments and Discuss EC-Council 312-96 exam with other Community members:

Comments:

Name: