Computer Hacking Forensic Investigator (CHFI) — Question 94

%3cscript%3ealert("XXXXXXXX")%3c/script%3e is a script obtained from a Cross-Site Scripting attack. What type of encoding has the attacker employed?

Answer options

• A. Double encoding
• B. Hex encoding
• C. Unicode
• D. Base64

Correct answer: B

Explanation

The correct answer is B, as the script uses hexadecimal encoding where characters are represented by their hex values (e.g., %3c for <). The other options do not apply here: double encoding involves encoding already encoded characters, Unicode is a character encoding standard that does not represent this specific format, and Base64 is a different encoding method altogether.