Certified Ethical Hacker (CEH v10) — Question 184

Firewalls are the software or hardware systems that are able to control and monitor the traffic coming in and out the target network based on pre-defined set of rules.
Which of the following types of firewalls can protect against SQL injection attacks?

Answer options

• A. Data-driven firewall
• B. Stateful firewall
• C. Packet firewall
• D. Web application firewall

Correct answer: D

Explanation

A Web application firewall is specifically designed to filter, monitor, and protect web applications from various threats, including SQL injection attacks. In contrast, a Data-driven firewall focuses on data integrity, a Stateful firewall tracks the state of active connections but may not specifically target application-layer attacks, and a Packet firewall primarily inspects packets at a lower level without understanding application protocols.