Definitions
Acronyms
Questions
More Definitions
More Definitions
100

Phishing

Type of social engineering attack

100

AES

Advanced Encryption Standard

100

How can authority be used in a Phishing attack

An attacker pretends to be of a higher position then their victim and try to "order" them to do something.
100

Root Account

Account that has a high level access or privilege.

100

Brute Force

Type of password attack where the attacker tries every possible combination.

200

Scarcity

Social Engineering principle that plays on the limited amount of an item to try to get people to act quickly without thinking.

200

DDoS

Distrubuted Denial of Service

200

What is Synflood

Attacker sends lots of SYN packets to a server, to overwhelm the server
200

Port for SSH

22

200

Rainbow Table

Type of password attack where the attacker uses a has a has a hashing table.

300

Vishing

Phishing over the phone

300

DLL

Dynamic Link Libary

300

What is SIEM

Security Incident Management Systems, provides security alerts in real time

300

Open Ports

Ports that can be used by a computer to talk to a sever and potentialy get into the system.

300

Spraying

Type of password attack where the attacker tries a few times per account, then moves on.

400

Supply Chain Attack

Attack a target by going through a known vendor of their victim. Victim buys the tainted hardware or software.

400

IPSec

Internet Protocol Security

400

What is Behavior Analysis

Observe the network traffic for the abnormalities and known signatures of attacks.

400

Packet Capture

A collection of all network traffic, shows the sender, receiver, packet type etc.

400

Dictionary Attack

Password attack where the attacker tries passwords from a "database" of passwords.

500

Plaintext attack

Password attack where the attacker uses a list of common, plain text passwords
500

FTP

File Transfer Protocol, ports 20, 21

500

Why would Log Collection be important?

It helps to monitor what is happening on the network, NOC can see what is occurring on the network and monitor all connections

500

Whaling

Social engineering attack where the attacker targets someone with a lot of money.

500

Botnet

Attacker creates zombie computers from their victims and uses all the computers together to form an attack.

M
e
n
u