0
0
Cybersecurityknowledge~5 mins

Web vulnerability scanning in Cybersecurity - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualPracticeChallengeProjectRecallTime
Recall & Review
beginner
What is web vulnerability scanning?
Web vulnerability scanning is the automated process of checking websites or web applications for security weaknesses that attackers could exploit.
Click to reveal answer
beginner
Name two common types of vulnerabilities that web scanners look for.
Common vulnerabilities include SQL Injection, where attackers manipulate database queries, and Cross-Site Scripting (XSS), where attackers inject malicious scripts into web pages.
Click to reveal answer
beginner
Why is it important to regularly perform web vulnerability scanning?
Regular scanning helps find new security issues early, so they can be fixed before attackers exploit them, keeping websites and user data safe.
Click to reveal answer
intermediate
What is the difference between authenticated and unauthenticated scanning?
Authenticated scanning means the scanner logs in to the web application to check deeper areas, while unauthenticated scanning checks only public parts without logging in.
Click to reveal answer
intermediate
How can false positives affect web vulnerability scanning results?
False positives are when the scanner reports a problem that isn’t really a vulnerability, which can waste time and resources investigating non-issues.
Click to reveal answer
What does a web vulnerability scanner primarily do?
AImproves website design
BChecks websites for security weaknesses
CIncreases website speed
DCreates new web pages
Which vulnerability involves injecting malicious scripts into web pages?
ASQL Injection
BDenial of Service
CPhishing
DCross-Site Scripting (XSS)
What is a benefit of authenticated scanning over unauthenticated scanning?
AIt scans only public pages
BIt requires no login credentials
CIt can check protected areas of a website
DIt runs faster
Why should web vulnerability scanning be done regularly?
ATo find and fix new security issues early
BTo improve website graphics
CTo increase website traffic
DTo update website content
What is a false positive in web vulnerability scanning?
AA reported issue that is not actually a problem
BA vulnerability that is ignored
CA real security threat
DA successful attack
Explain what web vulnerability scanning is and why it is important.
Think about how scanning helps keep websites safe from attackers.
You got /3 concepts.
    Describe the difference between authenticated and unauthenticated web vulnerability scanning.
    Consider whether the scanner has access to protected parts of the website.
    You got /3 concepts.