While reviewing logs, Chris sees an Apache web log that includes the following entry: https://www.example.com/viewer.php?filename=../../../etc/passwd%00.png What type of attack has Chris most likely uncovered, and what file will it return?

This is a directory traversal attack. The characteristic /../../ is the first indicator you should pay attention to. The %00 is a null byte, meaning that many applications will stop reading when they encounter it. You might not know that detail as you take the exam, but you should know that attackers would look for the passwd file, not a PNG of a password!