Scripting Languages
Place this character before a variable in Bash to retrieve its value.
What is $?
Protocol designed as a secure alternative to unsecured remote shell protocols.
What is SSH?
Security framework that controls access to computer resources, enforces policies, and audits usage.
What is AAA?
CLI-based tool often utilized to collect and analyze network traffic.
What is tshark?
It propagated by using EternalBlue, an exploit developed by the United States National Security Agency (NSA) for Windows systems.
What is WannaCry?
IDLE is an integrated development environment for this hacker-friendly scripting language.
What is Python?
The <anonymousAuthentication> element specifies the settings for anonymous access.
What is FTP?
Monitors incoming and outgoing network traffic and decides whether to allow or block specific traffic based on a defined set of security rules.
What is a Firewall?
A powerful tool that logs everything happening on your PC from the moment it starts up to shutdown.
What is Event Viewer?
Stop-Service -Name Spooler -Force or Set-Service -Name Spooler -StartupType Disabled, can be used to mitigate this vulnerability.
What is PrintNightmare?
It uses Invoke-WebRequest cmdlet to fetch a web page.
What is PowerShell?
When the inputs aren't sanitized it can be injected.
What is SQL?
Often utilizes real-time encryption to send information over a secure tunnel connection. May create or require a TUN/TAP interface.
What is a VPN?
This file is used in Windows computers to store user passwords.
What is SAM?
Gathered the fully qualified domain names (FQDNs) for targeted Exchange servers in the victim's environment.
What is HAFNIUM?
This notation is abbreviated PCRE.
What is a Perl Compatible Regular Expression?
"/etc/exports" is the main configuration file that controls which file systems are exported to remote hosts and specifies options.
What is NFS?
Feature that was introduced on Cisco routers around 1996 that provides the ability to collect IP network traffic as it enters or exits an interface.
What is Netflow?
Identifying and extracting files from network application protocols through the use of network stream reassembly software.
What is File Carving?
Known for attempted to adjust its token privileges to have the SeDebugPrivilege.
What is Ryuk?
"%0 | %0" in this language results in a fork bomb.
What is Windows Batch?
Service disclosed as part of Microsoft Security Bulletin MS17-010.
What is SMB?
Hash algorithm that creates a 160-bit or 20-byte message digest.
What is SHA-1?
Information about all executed binaries that have been executed in the system since it was rebooted and it tracks its size and the last modified date.
What is ShimCache?
Has been observed adding the downloaded payload to the HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run key to maintain persistence.
What is Emotet?