Certified Ethical Hacker (CEH v13) — Question 159

An ethical hacker is testing the security of a website's database system against SQL Injection attacks. They discover that the IDS has a strong signature detection mechanism to detect typical SQL injection patterns. Which evasion technique can be most effectively used to bypass the IDS signature detection while performing a SQL Injection attack?

Answer options

• A. Employ IP fragmentation to obscure the attack payload
• B. Implement case variation by altering the case of SQL statements
• C. Leverage string concatenation to break identifiable keywords
• D. Use Hex encoding to represent the SQL query string

Correct answer: D

Explanation

The correct answer is D, as Hex encoding allows the attacker to obfuscate the payload, making it less recognizable to the IDS signatures. Options A and B might not effectively bypass the detection, as IP fragmentation and case variation are often analyzed by modern IDS systems. Option C, while it can be useful, does not provide the same level of evasion as Hex encoding does.