Easy to average cyber security questions. Some questions are scenario-based, Questions like the difference between session fixation and session hijacking. 2) what are the tools used 3) Is HTTP a stateless or stateful protocol and why? 3) Different options on Burpsuite 4) What steps do you follow for security testing? 5) can you perform DDOS attack with Burpsuite and how? 6)Explain roles and responsibilities 7)Types of penetration testing 9) Why do we use Nmap? 10) XSS and Types 11) if a website allows forward and back ward navigation, what type of vulnerability it has?
