Tech Mahindra Senior Security Engineer Interview Questions and Answers for Experienced

SQL Injection is a type of cyber attack where malicious SQL statements are inserted into an entry field to manipulate a database.

• Attackers use SQL Injection to gain unauthorized access to sensitive data

• It can be prevented by using parameterized queries and input validation

• Types include In-band, Inferential, and Out-of-band

• Examples of SQL Injection attacks include UNION-based and Error-based attacks

SQL Payload to extract sensitive data from a database

• Use UNION SELECT to combine data from different tables

• Use subqueries to extract specific data

• Use SQL injection to bypass authentication and access data

• Use ORDER BY to sort data in a specific way and extract specific data

• Use GROUP BY to group data and extract specific data

Broken authorization vulnerability can be extended by exploiting other vulnerabilities or by using stolen credentials.

• Exploiting other vulnerabilities such as SQL injection or cross-site scripting to gain unauthorized access

• Using stolen credentials to bypass authorization checks

• Exploiting misconfigured access controls to gain elevated privileges

• Using brute force attacks to guess valid credentials

• Exploiting session mana

Broken authentication & authorization is when an attacker gains access to a user's account or system without proper credentials.

• An attacker can exploit this by guessing or stealing a user's login credentials.

• They can also use brute force attacks to crack weak passwords.

• Another way is to exploit vulnerabilities in the authentication process, such as session hijacking or cookie theft.

• Once the attacker gains access, they ...read more

Implemented various security measures in API development and testing.

• Implemented authentication and authorization mechanisms such as OAuth2 and JWT.

• Implemented rate limiting and throttling to prevent DDoS attacks.

• Implemented input validation and output encoding to prevent injection attacks.

• Conducted API penetration testing to identify vulnerabilities and remediate them.

• Implemented encryption and decryption mechanisms t

I have tested various kinds of APIs including REST, SOAP, GraphQL, and more.

• I have experience testing REST APIs which use HTTP methods like GET, POST, PUT, DELETE.

• I have also tested SOAP APIs which use XML for data exchange.

• I have worked with GraphQL APIs which allow clients to specify the data they need.

• I am familiar with testing APIs that use authentication and authorization mechanisms.

• I have tested APIs that integra...read more

There are various types of vulnerabilities such as SQL injection, cross-site scripting, buffer overflow, etc.

• SQL injection: attackers inject malicious SQL code to gain unauthorized access to the database

• Cross-site scripting: attackers inject malicious scripts into a website to steal user data

• Buffer overflow: attackers exploit a program's buffer to execute malicious code

• Other types include CSRF, DoS, and privilege escal...read more

Broken Object Level Authorization (BOLA) is a vulnerability where an attacker can access unauthorized data by manipulating object references.

• BOLA occurs when an application fails to enforce proper access controls on object references.

• Attackers can exploit BOLA to access sensitive data or functionality by manipulating object references.

• Examples of BOLA include accessing other users' data, modifying data that should be r...read more

I have tested various types of mobile applications including social media, e-commerce, and banking apps.

• I have tested social media apps like Facebook, Twitter, and Instagram

• I have tested e-commerce apps like Amazon, Flipkart, and eBay

• I have tested banking apps like Chase, Bank of America, and Wells Fargo

SSL pinning can be bypassed by modifying the app's code or using a tool to intercept and modify the SSL traffic.

• Modify the app's code to disable SSL pinning

• Use a tool like Frida or Cydia Substrate to intercept and modify SSL traffic

• Use a man-in-the-middle attack to intercept and modify SSL traffic

• Use a custom SSL certificate to bypass SSL pinning

• Use a debugger to bypass SSL pinning

Frida is a dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.

• Frida allows you to inject JavaScript or native code into an application to perform dynamic analysis.

• It can be used to hook functions, intercept network traffic, and bypass SSL pinning.

• Frida supports both iOS and Android platforms.

• It can be used for both offensive and defensive security purposes.

nmap is a network exploration tool used to scan and map networks and identify open ports and services.

• nmap can be used to identify hosts and services on a network

• It can also be used to identify open ports and vulnerabilities

• nmap can be used to perform ping scans, TCP scans, and UDP scans

• It can also be used to perform OS detection and version detection

• nmap can be used with various options and flags to customize the scan

oX in nmap is used to specify the IP protocol number to use for scanning.

• oX is followed by the protocol number (e.g. oX1 for ICMP protocol)

• It can be used with other nmap options like -sS or -sU

• It is useful for scanning non-standard protocols