All quizzes
Free quiz · 50 questions in the bank

Web-security quiz

Test your Web-security knowledge with a free interactive quiz — 50 questions with answers and explanations. No signup needed to play.

Question 1/12Score 0

What does the `Secure` cookie attribute do?

In this round
  1. What does the `Secure` cookie attribute do?
  2. What is "defense in depth"?
  3. What is "mixed content" on a web page, and why is it a security concern?
  4. What is the OWASP Top 10?
  5. Which is the single most effective defense against SQL injection?
  6. What is DOM-based XSS?
  7. A site is served on both `http://` and `https://`. What should be done?
  8. ``` const sql = `SELECT * FROM users WHERE email = '${req.body.email}'` db.query(sql) ``` What vulnerability does this code have, and how do you fix it?
  9. What security guarantees does HTTPS (HTTP over TLS) provide?
  10. Why is "don't roll your own crypto" almost universally good advice?
  11. What does "principle of least privilege" mean?
  12. What is a "salt" in password hashing, and why is it needed?
Gaps to close?
Read the curated Web-security notes — core concepts, patterns, interview prep.
Web-security notes

More quizzes

AccessibilityAlgorithmsAngularApache KafkaAWSBootstrap