AZ-500 Exam QuestionsBrowse all questions from this exam
Go to Exam

AZ-500 Exam - Question 353

You have an Azure SQL Database server named SQL1.

For SQL1, you turn on Azure Defender for SQL to detect all threat detection types.

Which action will Azure Defender for SQL detect as a threat?

Show Answer
Correct Answer: B

Azure Defender for SQL is designed to detect various types of threats to your database. One such threat it can detect is SQL injection. This involves malicious users attempting to execute arbitrary SQL code on the database, often by manipulating input fields in a web application to gain unauthorized access or manipulate data. An example of this would be a user attempting to sign in with a SQL statement like 'SELECT * FROM table1', which could be an indicator of someone trying to exploit an SQL injection vulnerability.

Discussion

15 comments
Sign in to comment
SecurityAnalyst
Aug 31, 2021

# IN EXAM - 31/8/2021

WhalerTom
Dec 29, 2021

Correct answer. In exam Dec 21. 40 questions, 1 case study, no labs.

majstor86Option: B
Mar 4, 2023

B. A user attempts to sign in as SELECT * FROM table1 (Typical SQL injection)

stepman
Apr 27, 2023

I chose this. This was On exam 4/27 with the new exam experience. No Sim or lab.

Psychosikh
Apr 29, 2023

In exam 15/04/2023

zellckOption: B
May 7, 2023

B is the answer. https://learn.microsoft.com/en-us/azure/azure-sql/database/threat-detection-overview?view=azuresql#overview Advanced Threat Protection provides a new layer of security, which enables customers to detect and respond to potential threats as they occur by providing security alerts on anomalous activities. Users receive an alert upon suspicious database activities, potential vulnerabilities, and SQL injection attacks, as well as anomalous database access and queries patterns. Advanced Threat Protection integrates alerts with Microsoft Defender for Cloud, which include details of suspicious activity and recommend action on how to investigate and mitigate the threat. Advanced Threat Protection makes it simple to address potential threats to the database without the need to be a security expert or manage advanced security monitoring systems.

zellck
May 10, 2023

Gotten this in May 2023 exam.

ad7399Option: B
Nov 12, 2021

B is an attempt to brute force sql credentials. https://docs.microsoft.com/en-us/azure/azure-sql/managed-instance/threat-detection-configure

matetav
Dec 24, 2021

It is SQL injection not brute force!!!

Diallo18
Oct 18, 2022

In Exam 10/18/2022. One case study(6 ques), no lab.

F117A_StealthOption: B
Nov 12, 2022

B SQL Injection

Ivan80
Jan 30, 2024

In exam 1/28/24

Amit3
Sep 30, 2022

# In Exam 01-Oct-2022, correct answer.

TonytheTiger
Sep 20, 2021

## Exam Question - 17 Sept 2021 ##

kam117
Sep 27, 2021

## Exam Question - 24 Sept 2021 ##

Jco
Sep 30, 2021

#exam ques # 29 Sep

scottyboy23
Jul 15, 2024

on exam 20240715. correct

saira23
Jul 20, 2024

In Exam20/07/2024