[&] In the context of SOAP web services, what is WSDL primarily used for?
- Describing the web service's operations and messages
- Encrypting data during transmission
- Authenticating users accessing the service
- Scheduling service downtime for maintenance

[&] Which character is commonly used to terminate a command in a shell, enabling command injection?
- Exclamation mark (!)
- Semicolon (;)
- Ampersand (&)
- Dollar sign ($)

[&] During a DNS lookup operation in a SOAP-based web service, what parameter is typically targeted for command injection?
- Port number
- Target host
- DNS server address
- Service action

[&] What is a primary reason command injection occurs in web services?
- Poor network infrastructure design
- Inadequate user authentication mechanisms
- Lack of encryption in transmission
- Lack of input validation or sanitization

[&] Which tool was used in the demonstration for sending requests to test for vulnerabilities?
- Metasploit
- Wireshark
- Nessus
- Burp Suite

[&] What does a successful command injection exploit allow an attacker to do?
- Perform buffer overflow attacks
- Execute system level commands on a server
- Redirect network traffic to a different server
- Access encrypted files without keys