Command Line
This is the default shell type on most Linux distributions.
What is bash (Bourne Again Shell)?
This operating system version will go end of life in October 2025. At one point this OS had over 1.4 billion users and comprised most of the workstation market share in the world.
What is Windows 10?
The symbol ~ represents this file path on Linux.
The home directory for the current user.
Although installed on and most commonly associated with Windows, this authentication and authorization software can also work with Linux and Mac computers.
What is Active Directory?
Known as volatile memory, this type of memory disappears when powered off. Incident Responders should capture this type of memory first before performing an incident investigation or powering off a compromised server.
What is Random Access Memory (RAM)?
This is the default shell type on most MacOS distributions.
What is Zsh (Z shell)?
Kali Linux is based on this Linux distribution.
What is Debian?
This Linux folder is adequately named for storing temporarily files that are frequently deleted, making it a common place for attackers to put their malicious files.
What is /tmp?
This is a native Endpoint Detection and Response software on a popular OS.
What is Microsoft Defender for Endpoint?
Systems with this hardware component are often targeted in crypto-mining attacks.
What is a GPU (Graphics Processing Unit)?
This reconnaissance tactic can be performed with the command "net users /domain".
What is enumeration?
This operating system is only supported for the last three versions. A new version of the operating system is released every fall.
What is MacOS?
A user's bash history is stored at this file path.
What is /home/user/.bash_history?
This application communicates with the operating system network stack to assign the originating port on your computer when connecting to a website.
What is a web browser?
The Spectre and Meltdown vulnerabilities affected this computer hardware component, allowing attackers to steal data from the computer memory.
What is the CPU (Computer Processing Unit)?
This command line language is recognized by its use of cmdlets, a command created out of an Action-Verb.
What is PowerShell?
This is a paid, commercial, enterprise distribution of Linux that was based on the previously open source distribution of CentOS.
What is Red Hat Enterprise Linux (RHEL)?
This file path is the default index directory for Apache web server on Linux.
What is /var/www/html?
This user-friendly firewall configuration tool, developed for Ubuntu, simplifies managing iptables with easy-to-use commands like allow, deny, and enable.
What is Unified FireWall (UFW)?
This parent company only permits virtualization of their operating system on hardware created by the parent company. Running the parent company's OS on non-parent company hardware is strictly prohibited.
Who is Apple?
A reference to this outdated command line language is found in the byte-to-ASCII translation at the beginning of .exe files.
What is MS-DOS?
This controversial feature in Windows 11 routinely takes screenshots of your desktop and archives the information for future retrieval. Critics call the features a "treasure trove" for attackers.
What is Windows Recall?
The user's shell type and access is stored in this file on most Linux distributions. This file details if a user is allowed to log on to the system interactively, and if the user is authorized for a shell on the system.
What is /etc/passwd?
This ticket type in Kerberos is abused in a Golden Ticket attack in order to provide an attacker complete access to any service within the domain.
What is a Ticket Granting Ticket (TGT)?
Often installed directly onto the motherboard, this is a security chip solely designed to enhance computer security by securely storing cryptographic keys and other sensitive information.
What is a Trusted Platform Module (TPM)?