GIAC Certified Web Application Defender - GWEB Exam Questions [2026]

QUESTION NO: 1
How does the use of third-party security services like Cloudflare or Akamai benefit web application security?
Response:

A. They provide outsourced content management systems B. They offer distributed denial of service (DDoS) protection C. They replace the need for web application firewalls D. They offer free hosting services

Correct Answer: B

QUESTION NO: 2
Which of the following best describes the HTTP protocol in the context of web applications?
Response:

A. A proprietary protocol that requires special licensing fees to use in web applications. B. A protocol that encrypts its messages to ensure secure communication between client and server. C. A stateless protocol where each request from a client to a server is treated as an independent transaction. D. A stateful protocol that retains information about each user across multiple requests.

Correct Answer: C

QUESTION NO: 3
What are common security measures for securing web server configurations?
(Choose two)
Response:

A. Allowing HTTP requests without validation B. Enabling directory listing C. Using TLS/SSL to encrypt communication D. Restricting access to administrative interfaces

Correct Answer: C,D

QUESTION NO: 4
AJAX applications often handle data dynamically; which of the following is an essential security measure to prevent unauthorized data exposure?
Response:

A. Utilizing web sockets for all communications B. Ensuring data confidentiality with encryption C. Applying the same-origin policy strictly D. Enabling CORS for all domains

Correct Answer: C

QUESTION NO: 5
What are common practices for preventing cross-origin attacks in web applications?
(Choose two)
Response:

A. Using SameSite cookies B. Allowing all domains in CORS configuration C. Allowing cross-origin access without authentication D. Applying strict validation on cross-origin requests

Correct Answer: A,D

QUESTION NO: 6
During an incident response, what is the main purpose of the containment phase?
Response:

A. To limit the extent of the incident B. To eradicate all traces of the incident C. To recover normal operations D. To identify the cause of the incident

Correct Answer: A

QUESTION NO: 7
What are the key components of an HTTP request?
(Choose two)
Response:

A. Response body B. URL scheme C. Headers D. Request line

Correct Answer: C,D

QUESTION NO: 8
What are common threats to web services security, and how can they be mitigated?
(Choose two)
Response:

A. Cross-Site Scripting (XSS), mitigated by input validation B. SQL injection, mitigated by allowing direct database access C. XML External Entity (XXE) attacks, mitigated by disabling external entity processing D. Buffer overflows, mitigated by reducing the number of web service endpoints

Correct Answer: A,C

QUESTION NO: 9
What is the impact of a successful CSRF attack?
Response:

A. Disabling user input forms B. Slowing down the server's performance C. Gaining read access to the server logs D. Modifying user permissions without their consent

Correct Answer: D

QUESTION NO: 10
What is the principle of least privilege in the context of web application access control?
Response:

A. Users should have access only to the resources they need to perform their tasks B. All users should have access to sensitive information C. Access should be based on the number of years with the company D. Users should have admin access to all systems for efficiency

Correct Answer: A

QUESTION NO: 11
Which of the following is the best approach to validate user input?
Response:

A. Client-side validation only B. Both client-side and server-side validation C. No input validation D. Server-side validation only

Correct Answer: B