i
Cigniti Technologies
Filter interviews by
Clear (1)
I applied via Naukri.com and was interviewed in Jan 2023. There were 3 interview rounds.
Blind XSS is a type of XSS attack where the attacker does not receive the output of the injected script.
Blind XSS is also known as non-persistent XSS.
It is difficult to detect as the attacker does not receive any feedback.
One technique to find Blind XSS is to use a tool like Burp Suite to inject a payload and monitor the server response.
Another technique is to use a third-party service like XSS Hunter to track the payl...
My favorite vulnerability is SQL injection.
SQL injection is a type of attack where an attacker injects malicious SQL code into a database query.
It can be used to steal sensitive information, modify or delete data, or even take control of the entire database.
Preventing SQL injection involves using parameterized queries, input validation, and proper error handling.
Examples of high-profile SQL injection attacks include th...
CRLF stands for Carriage Return Line Feed. It is a sequence of characters used to represent a line break in text files.
CRLF consists of two ASCII control characters: CR (carriage return) and LF (line feed).
It is commonly used in HTTP headers to separate lines of text.
CRLF can be exploited by attackers to inject malicious code or perform attacks such as HTTP response splitting.
To prevent such attacks, input validation a...
There are numerous types of XSS attacks. Mitigation involves input validation and output encoding.
There are three main types of XSS attacks: stored, reflected, and DOM-based.
Mitigation involves input validation to ensure that user input is safe and output encoding to prevent malicious code from being executed.
Examples of input validation include limiting the length of input and restricting the types of characters that ...
SQLi is a type of injection attack where an attacker injects malicious SQL code into a vulnerable application to gain unauthorized access to sensitive data.
SQLi involves exploiting vulnerabilities in web applications that allow user input to be executed as SQL commands
Attackers can use SQLi to bypass authentication, access sensitive data, modify or delete data, and even take control of the entire database
Mitigation tec...
CSRF is a type of attack where a malicious website tricks a user into performing an action on a different website.
The attacker creates a website with a form that submits a request to the target website
The user visits the attacker's website and submits the form, unknowingly performing an action on the target website
The target website cannot distinguish between a legitimate request and the forged request from the attacke...
The best way to send CSRF token in client-server communication is through HTTP headers.
HTTP headers are the most secure way to send CSRF tokens.
The token should be sent in the 'X-CSRF-Token' header.
The header should be set to 'SameSite=Strict' to prevent cross-site request forgery attacks.
The token should be regenerated for each session to prevent replay attacks.
Options to take over a higher-privilege account with an existing lower-privilege account.
Use privilege escalation techniques to gain higher privileges
Exploit vulnerabilities in the system to gain access to higher-privilege accounts
Use social engineering to obtain login credentials for higher-privilege accounts
Use brute-force attacks to crack passwords for higher-privilege accounts
XSS or Cross-Site Scripting is a type of security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users.
Reflected XSS: The attacker injects a script that is reflected back to the user through a search query or form input.
Stored XSS: The attacker injects a script that is stored on the server and executed whenever the user visits the affected page.
DOM-based XSS: The attacker...
Top trending discussions
I applied via Naukri.com and was interviewed before Sep 2021. There were 3 interview rounds.
Entry level aptitude test
I applied via Naukri.com and was interviewed before Apr 2021. There were 2 interview rounds.
I applied via Company Website and was interviewed before Feb 2021. There were 3 interview rounds.
TNQT: TCS National Qualifier Test
I applied via Walk-in and was interviewed before Sep 2021. There were 4 interview rounds.
Reasoning and English
Just a minute round about favourite movie
I was interviewed in Jun 2016.
The current exchange rate varies depending on the currency pair and market conditions.
Exchange rates are constantly fluctuating based on supply and demand
Factors such as political events, economic data, and central bank decisions can impact exchange rates
For example, as of August 2021, the exchange rate for USD to EUR is approximately 0.85
The Indian rupee is expected to depreciate against the dollar in the long run.
The Indian economy is heavily dependent on imports, which puts pressure on the rupee.
The US economy is expected to grow faster than India's, which will strengthen the dollar.
Political and economic instability in India can also weaken the rupee.
However, global events such as trade wars and geopolitical tensions can also impact the exchange rat...
Negotiate with service providers for bulk discounts and limit data usage to essential business needs.
Negotiate with service providers for bulk discounts
Limit data usage to essential business needs
Consider implementing a BYOD (Bring Your Own Device) policy
Use mobile device management software to monitor and control usage
Encourage employees to use Wi-Fi instead of cellular data when possible
A consultant should possess strong analytical skills, effective communication, adaptability, and industry expertise.
Strong analytical skills to identify problems, analyze data, and provide effective solutions.
Effective communication to clearly convey ideas, build relationships, and present recommendations.
Adaptability to work in diverse environments, handle unexpected challenges, and adjust strategies accordingly.
Indus...
Consultant role requires a broader skill set and the ability to provide holistic solutions.
Consultants need to have a deep understanding of various business functions and how they interact.
They are expected to provide comprehensive solutions that address multiple aspects of a problem.
Finance, marketing, and HR are important components of a business, but a consultant needs to go beyond individual functions.
For example, ...
My major drawback as a consultant in my previous organization was my lack of experience in a specific industry.
Lack of industry-specific knowledge
Difficulty in understanding the unique challenges faced by clients
Limited network and connections in the industry
Less credibility due to lack of experience
Need for extensive research and learning before providing effective solutions
The company is a leading consulting firm specializing in providing strategic advice and solutions to businesses.
The company has been in operation for over 10 years.
They have a team of experienced consultants with expertise in various industries.
They offer services such as market research, financial analysis, and business strategy development.
Some of their notable clients include Fortune 500 companies and startups.
They ...
Key factors for creating a client solution
Understanding client's needs and goals
Identifying potential challenges and limitations
Developing a customized solution
Ensuring scalability and flexibility
Providing ongoing support and maintenance
Collaborating with the client throughout the process
Consulting offers diverse challenges, continuous learning, and the opportunity to make a significant impact.
Consulting provides exposure to various industries and business problems.
It offers the chance to work with talented professionals and learn from their expertise.
Consultants have the opportunity to solve complex problems and make a tangible difference.
The work is dynamic and ever-changing, ensuring continuous lear...
Wipro is an Indian multinational corporation that provides information technology, consulting and business process services.
Founded in 1945 by M.H. Hasham Premji
Headquartered in Bangalore, India
Employs over 190,000 people worldwide
Provides services in various industries including healthcare, finance, retail, and more
Has a strong focus on sustainability and social responsibility
Acquired Appirio, a cloud services company
Wipro Consulting is a global management consulting firm.
Offers services in strategy, operations, technology, and transformation.
Has a presence in over 50 countries.
Works with clients across various industries such as healthcare, financial services, and retail.
Part of Wipro Limited, a leading global information technology, consulting, and business process services company.
Wipro Business Consulting's strategy is to provide end-to-end consulting services to clients across various industries.
Offering a range of consulting services including strategy, operations, technology, and organization
Focusing on digital transformation and innovation
Collaborating with clients to develop customized solutions
Leveraging Wipro's global presence and expertise
Examples of clients include a leading US healthc...
Some of the top questions asked at the Cigniti Technologies Information Security Consultant interview -
based on 1 interview
Interview experience
Senior Test Engineer
609
salaries
| ₹0 L/yr - ₹0 L/yr |
Senior Engineer
513
salaries
| ₹0 L/yr - ₹0 L/yr |
Test Lead
389
salaries
| ₹0 L/yr - ₹0 L/yr |
Test Engineer
358
salaries
| ₹0 L/yr - ₹0 L/yr |
Engineer
262
salaries
| ₹0 L/yr - ₹0 L/yr |
TCS
Wipro
Infosys
HCLTech