# OSI model layers and security threats — Quiz

### OSI model layers and security threats

#### 1. An attacker on a public Wi-Fi network intercepts a user's initial HTTP request and prevents the server's redirect to HTTPS, forcing all subsequent communication to remain in plaintext. Which OSI Layer 5 attack is this? (Choose one answer)

a) Session Hijacking

b) **SSL Stripping**

c) UDP Flooding

d) IP Spoofing

#### 2. Which mitigation technique is specifically designed to prevent IP Spoofing attacks by validating that source IP addresses belong to the network from which they originate? (Choose one answer)

a) SYN Cookies

b) Port Security

c) **BCP38 (RFC 2827) / Ingress Filtering**

d) Input Validation

#### 3. A security team discovers that a switch on their network is broadcasting traffic to all ports, allowing an attacker to capture data not intended for them. Which Layer 2 attack most likely caused this? (Choose one answer)

a) ARP Spoofing

b) **MAC Flooding**

c) ICMP Flooding

d) Cable Tapping

#### 4. An attacker injects the input `admin'--` into a website's login form and successfully gains access without a password. What is this an example of? (Choose one answer)

a) DNS Spoofing

b) **SQL Injection**

c) Phishing

d) Malicious File Upload

#### 5. Which of the following is the MOST critical defense for mitigating Phishing attacks, according to the text? (Choose one answer)

a) Implementing DNSSEC

b) **User Education**

c) Enabling HSTS

d) Using Prepared Statements


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://dti-techs.gitbook.io/practical-foundations-in-cybersecurity/4.-networking-fundamentals/osi-model-layers-and-security-threats/osi-model-layers-and-security-threats-quiz.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.