While auditing a web application for vulnerabilities, Donald uses Burp proxy and modifies the get requests as below: http://www.example.com/GET/process.php./../../../../../../../../etc/password What is Donald trying to achieve?
A) Donald is modifying process.php file to extract /etc/password file
B) Donald is trying directory traversal to extract /etc/password file
C) Donald is trying SQL injection to extract the contents of /etc/password file
D) Donald is trying to upload /etc/password file to the web server root folder
Correct Answer:
Verified
Q276: Martin works as a professional Ethical Hacker
Q277: Stuart is a database penetration tester working
Q278: Which of the following acts provides federal
Q279: John is a penetration tester who wants
Q280: Joe works as an engagement team lead
Q282: Moses, a professional hacker, attempts to overwhelm
Q283: James is an attacker who wants to
Q284: During a DHCP handshake in an IPv4
Q285: SecGlobal Corporation hired Michael, a penetration tester.
Q286: As a part of the pen testing
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents