In information security, these three core principles make up the CIA triad acronym.
What is Confidentiality, Integrity and Availability?
This Linux command displays the current network interface configurations.
What is ifconfig?
Combing through physical trash to find useful documents or credentials.
What is dumpster diving?
This random data is added to a password hash to defeat pre-computed rainbow table attacks.
What is salt?
This basic firewall rule blocks all traffic that does not explicitly match an allowed rule.
What is implicit deny?
This security property ensures that a sender cannot deny having sent a specific message.
What is Non-repudiation?
An open-source graphical tool used globally for packet capture and deep-packet analysis.
What is Wireshark?
Tailgating with an employee's explicit permission is known by this term.
What is piggybacking?
This digital document acts as a secure "wrapper" for a subject's public key.
What is a digital certificate?
A specialized firewall built to protect backend databases from code injection and DoS.
What is a Web Application Firewall (WAF)?
This access control model is strictly based on security clearance levels.
What is Mandatory Access Control (MAC)?
This command is used to perform hop-by-hop route discovery from a Linux host using UDP probes.
What is traceroute?
A voice-based phishing attack designed to steal credentials over the phone.
What is vishing?
A single hash function, symmetric cipher, or asymmetric cipher is known by this term.
What is a cryptographic primitive?
This HIDS feature audits critical system files to ensure they have not been modified.
What is File Integrity Monitoring (FIM)?
The administrative policy designed to protect an organization by defining rules for equipment use.
What is an Acceptable Use Policy (AUP)?
An OSINT aggregation tool used to gather emails, subdomains, and hostnames for a target domain.
What is theHarvester?
A targeted spear-phishing attack aimed specifically at high-level executives.
What is whaling?
This brute-force attack exploits mathematical collisions in cryptographic hash functions.
What is a birthday attack?
This Linux utility writes diagnostic input directly to local or remote syslog servers.
What is the logger command?
This multi-admin control requires "M" out of "N" administrators to be present for access.
What is an M-of-N control?
The practice of mapping wireless networks from outside a physical facility, sometimes via vehicle.
What is war driving?
A security alert or pop-up warning of a non-existent virus, pushing fake "fix" software.
What is a hoax?
A secure CA hierarchy design requires taking this specific CA server completely offline.
A secure CA hierarchy design requires taking this specific CA server completely offline.
This utility is used to search text files for matching strings or regular expressions.
What is grep?