Home > CompTIA Security+ Certification > Quizzes > Secure Software Development
Secure Software Development
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 17% Most missed: “Planning and analysis”
Secure Software Development
Time left 00:00
25 Questions

1. SDLC Principles

2. SW Development Life Cycle (SDLC)

3. SDLC Principles - Defense in Depth

4. Deployment

5. Testing Methods - Dynamic Analysis

6. Testing Methods - Fuzzing (most common type of Dynamic Analysis)

7. Non-Operation Instruction (NOP)

8. Input Validation

9. Software Vulnerabilities and Exploits - Directory Traversal

10. SDLC Principles - Create Secure Defaults (developer)

11. SDK (software development kit)

12. Run-time Error

13. Injection attack

14. Development Operations (DevOps)

15. 3 Types of XSS attacks - Reflected (2 of 3)

16. Implementation

17. SDLC Principles - Fix Security Issues

18. SDLC Principles - Authenticity and Integrity

19. Testing Methods - System Testing White-box

20. Software Vulnerabilities and Exploits - Arbitrary Code Execution (ACE)

21. Web based Exploit Vulnerabilities - 2 Types (1 of 2) - XSS

22. SDLC Principles - Threat Modeling

23. Software Vulnerabilities and Exploits - Remote Code Execution (RCE)

24. Testing Methods - Structured Exception Handling (SEH)

25. SQL (Structured Query Language) Injection (isn't bad, its how we get access, but it can be bad if an attacker uses it)