root@cybersec-academy:~/quizzes/web-security

> Web Security Quiz

_ Test your knowledge of OWASP Top 10 and web vulnerabilities

> Initializing Web Security Quiz...
> Topics: OWASP Top 10, XSS, SQLi, CSRF, WAFs
> 20 questions | Time: ~15 minutes

1. Which of these is NOT part of the OWASP Top 10?

2. What is the most effective defense against XSS attacks?

3. Which SQL injection technique uses database error messages?

4. What does CSRF stand for?

5. Which HTTP header helps prevent clickjacking attacks?

6. What is the primary purpose of a Web Application Firewall (WAF)?

7. Which of these is a secure coding practice?

8. What does CORS stand for?

9. Which tool is specifically designed for testing web applications?

10. What is the purpose of Content Security Policy (CSP)?