Add office photos
i
Deloitte
CompareProud winner of ABECA 2024 - AmbitionBox Employee Choice Awards
Filter interviews by
Deloitte Vapt Engineer Interview Questions, Process, and Tips
Top Deloitte Vapt Engineer Interview Questions and Answers
- Q1. Can you explain different types of XSS
- Q2. Explain how is network VAPT conducted
- Q3. What is IDOR, DOM XSS, Nessus working?
Deloitte Vapt Engineer Interview Experiences
2 interviews found
Anonymous
Selected
I applied via Approached by Company and was interviewed in Jul 2023. There were 3 interview rounds.
(3 Questions)
- Q1. What are SAST and DAST?
- Ans.
SAST stands for Static Application Security Testing and DAST stands for Dynamic Application Security Testing.
SAST involves analyzing the application's source code or binary code for security vulnerabilities without executing the code.
DAST involves testing the application while it is running to identify security vulnerabilities by sending malicious input.
SAST is typically performed earlier in the development cycle while...
- Q2. What is Union-based SQL injection?
- Ans.
Union-based SQL injection is a type of attack that allows an attacker to extract information from a database by using the UNION SQL operator.
Union-based SQL injection involves injecting a malicious SQL query that uses the UNION operator to combine the results of the original query with the attacker's query.
The attacker can use the UNION operator to retrieve data from other tables in the database, potentially accessing ...
- Q3. What is IDOR, DOM XSS, Nessus working?
- Ans.
IDOR, DOM XSS, and Nessus are common security vulnerabilities and tools used in penetration testing.
IDOR stands for Insecure Direct Object Reference, where an attacker can access unauthorized data by manipulating object references.
DOM XSS (Cross-Site Scripting) is a type of XSS attack that occurs in the Document Object Model.
Nessus is a popular vulnerability scanner used in penetration testing to identify security vuln
(1 Question)
- Q1. Salary discussion and details about the previous company
Interview Preparation Tips
Skills evaluated in this interview
Selected
I applied via LinkedIn and was interviewed in Jan 2023. There were 2 interview rounds.
(3 Questions)
- Q1. What is XSS attack in security
- Ans.
XSS (Cross-Site Scripting) is a type of security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users.
XSS attacks can be used to steal sensitive information, such as login credentials or personal data.
Attackers can also use XSS to hijack user sessions, redirect users to malicious websites, or deface web pages.
There are three types of XSS attacks: stored, reflected, and DO...
- Q2. Can you explain different types of XSS
- Ans.
XSS stands for Cross-Site Scripting. It is a type of security vulnerability that allows attackers to inject malicious scripts into web pages.
Reflected XSS: The injected script is embedded in the URL and executed when the victim visits the manipulated link.
Stored XSS: The injected script is permanently stored on the target server and executed whenever the vulnerable page is accessed.
DOM-based XSS: The vulnerability aris...
- Q3. Explain how is network VAPT conducted
- Ans.
Network VAPT is conducted by identifying vulnerabilities in the network and testing its security measures.
The process involves identifying potential vulnerabilities in the network infrastructure
Penetration testing is conducted to simulate attacks and test the effectiveness of security measures
Vulnerability assessment is done to identify weaknesses in the network
The results are analyzed and recommendations are made to i...
Interview Preparation Tips
Study basics of web application security
Skills evaluated in this interview
Interview questions from similar companies
I applied via Naukri.com and was interviewed in Dec 2024. There were 2 interview rounds.
(2 Questions)
- Q1. How does Django apply migrations to the database?
- Ans.
Django applies migrations to the database using the 'manage.py migrate' command.
Django tracks changes to models and generates migration files accordingly.
The 'manage.py makemigrations' command creates migration files based on model changes.
The 'manage.py migrate' command applies the generated migration files to the database.
Migrations help keep the database schema in sync with the changes in Django models.
- Q2. What is hoisting in javascript?
- Ans.
Hoisting in JavaScript is the behavior where variable and function declarations are moved to the top of their containing scope during the compilation phase.
Variable declarations are hoisted to the top of their scope, but not their assignments.
Function declarations are fully hoisted, meaning they can be called before they are declared.
Hoisting can lead to unexpected behavior if not understood properly.
Create a full stack application in 3 days.
(2 Questions)
- Q1. Difference between inheritance and polymorphism
- Ans.
Inheritance is a way to create a new class using properties and methods of an existing class, while polymorphism allows objects of different classes to be treated as objects of a common superclass.
Inheritance allows a class to inherit properties and methods from another class.
Polymorphism allows objects of different classes to be treated as objects of a common superclass.
Inheritance promotes code reusability and reduce...
- Q2. Write a code to check anagram or not
- Ans.
Code to check if two strings are anagrams
Create a function that takes in two strings as input
Convert both strings to lowercase and remove any spaces
Sort both strings and compare if they are equal to determine if they are anagrams
Interview Preparation Tips
Asked basic java concepts
Skills evaluated in this interview
Tanmay Sharma
Few basics of java
Dsa question
(2 Questions)
- Q1. Java multithreading questions
- Q2. Spring boot questions.
Prithwindra Sarkar
I applied via Naukri.com and was interviewed in Sep 2024. There were 2 interview rounds.
(2 Questions)
- Q1. Tell me about yourself
- Ans.
I am a dedicated and detail-oriented Junior Engineer with a passion for problem-solving and continuous learning.
Graduated with a degree in Engineering from XYZ University
Completed internships at ABC Company, gaining hands-on experience in project management
Proficient in CAD software and technical drawing
- Q2. Diagram of water treatment
- Ans.
Water treatment involves a series of processes to remove impurities and make water safe for consumption.
Water treatment typically involves processes such as coagulation, sedimentation, filtration, and disinfection.
Coagulation involves adding chemicals to water to make particles clump together for easier removal.
Sedimentation allows the larger particles to settle at the bottom of a tank.
Filtration involves passing water...
(2 Questions)
- Q1. Personal details
- Q2. Why you want to join
- Ans.
I want to join because I am passionate about engineering and eager to learn and grow in a dynamic environment.
Passionate about engineering
Eager to learn and grow
Excited about working in a dynamic environment
Interview Preparation Tips
Selected
I applied via Naukri.com and was interviewed in Feb 2024. There were 3 interview rounds.
Code test on Codility
(2 Questions)
- Q1. How NodeJs handles concurrency
- Ans.
NodeJs handles concurrency using event-driven, non-blocking I/O model.
NodeJs uses event loop to handle multiple requests concurrently.
It utilizes asynchronous functions to avoid blocking the main thread.
NodeJs supports callbacks, promises, and async/await for managing asynchronous operations.
- Q2. Event Loop, Single Threaded
(1 Question)
- Q1. Your day to day activities, Roles and Responsibilities
Dsa questions like search sort
(1 Question)
- Q1. .net questions, web api
I was interviewed in Dec 2023.
(2 Questions)
- Q1. Lifecycle hooks of Angular
- Ans.
Angular lifecycle hooks are methods that allow you to tap into specific points in a component's lifecycle.
ngOnChanges: called when an input property changes
ngOnInit: called once the component is initialized
ngDoCheck: called during every change detection run
ngAfterContentInit: called after content (ng-content) has been projected into the component
ngAfterContentChecked: called after every check of the projected content
ng...
- Q2. SOLID principles
(1 Question)
- Q1. Questions on SQL
(1 Question)
- Q1. Introduction and basic questions
Skills evaluated in this interview
Deloitte Interview FAQs
Tell us how to improve this page.
Deloitte Interviews By Designations
- Deloitte Consultant Interview Questions
- Deloitte Analyst Interview Questions
- Deloitte Senior Consultant Interview Questions
- Deloitte Associate Analyst Interview Questions
- Deloitte Assistant Manager Interview Questions
- Deloitte Tax Consultant Interview Questions
- Deloitte Business Analyst Interview Questions
- Deloitte Business Technology Analyst Interview Questions
- Show more
Interview Questions for Popular Designations
- Validation Engineer Interview Questions
- Verification & Validation Engineer Interview Questions
- Post Silicon Validation Engineer Interview Questions
- Software Engineer Interview Questions
- Senior Software Engineer Interview Questions
- Senior Engineer Interview Questions
- Senior Validation Engineer Interview Questions
- Testing Validation Engineer Interview Questions
- Show more
Deloitte Vapt Engineer Interview Process
based on 2 interviews
Interview experience
Interview Questions from Similar Companies
Fast track your campus placements
|
Consultant
33k
salaries
|  ₹6.2 L/yr - ₹23 L/yr |
|
Senior Consultant
20.7k
salaries
| ₹11 L/yr - ₹42 L/yr |
|
Analyst
14k
salaries
| ₹3.7 L/yr - ₹12.4 L/yr |
|
Assistant Manager
10k
salaries
| ₹7.8 L/yr - ₹24 L/yr |
|
Manager
7k
salaries
| ₹15.8 L/yr - ₹52 L/yr |
Accenture
PwC
Ernst & Young
Cognizant
- Home >
- Interviews >
- Deloitte Interview Questions >
- Deloitte Vapt Engineer Interview Questions
