Threats, Attacks and Vulnerabilities
When malware creates a damage on a specific date and time or when specific conditions are met
What is a logic bomb attack?
A hardware device or a software solution that inspects and then permits or denies network communications(traffic).
What is a firewall?
It is an area at the edge of a network, straddling the internet and the LAN. It is commonly used for public-facing servers and appliances, such as web server for a public-facing website.
What is a DMZ
a process that verifies the identity of the subject by comparing one or more factors against a database of valid identities.
What is Authentication
an encryption method that rely on a shared secret key. communication parties possess a copy of the shared key and use it to encrypt and decrypt messages.
Symmetric algorithm
Gathering publicly available information on social media or public reports.
"Cyber stalk"
OSINT (Open source intelligence)
A tool that allows you to hide data inside other files. Commonly video and picture files are used to hide data.
what is a steganography tool?
It conserve IP addresses and to mask the source IP addresses of computers. Without it all users going to the internet would require their own public IP address, which isn’t feasible because of the shortage of public IP addresses.
What is NAT?
uses a ticket system for authentication. It offers a single sign-on solution for users and provides protection for logon credentials.
Kerberos
Encryption method that relies on a public key and a private key. Communicating parties possess a copy of the public key but only one party possesses the private key.
Asymmetric algorithm
access to a system on a network and be able to gain control.
what is a Pivot point
An open-source security scanner tool that you can use it to scan hosts for vulnerabilities, scan for open ports, or fingerprint remote hosts to find out which operating systems they run.
What is nmap?
computer or network that is not connected to the internet or connected to any other devices that are connected to the internet. Also it offer maximum security for the most sensitive workloads.
What are the Air gap
A system that centralizes authentication for remote
connections. It is typically used when an organization has more than one remote access server.
RADIUS
A mathematical algorithm that maps data of arbitrary size to a random value of a fixed size. The purpose is to be a one-way function, infeasible to invert.
What is Hashing?
an event that occurs when a process produces an unexpected result due to timing.
What is a race condition attack?
When data is removed from a corporate device without authorization.
What is Data Exfiltration?
are placed in front of services or servers. they ensure that requests for the website are evenly balanced between all the web servers.
Load balancers
An access control model that uses roles or groups, which are typically identified by job functions. Instead of assigning permissions directly to users, user accounts are placed in roles and administrators assign privileges to the roles.
RBAC
Random data that is used as an additional input to a one-way function that hashes data. It helps preventing against dictionary attacks.
What is Salting?
When the tester has no knowledge of the target system and is not provided with any additional information about the organization, architecture. The tester relies heavily on public-facing resources and information.
What is black black box testing?
It centralizes your event and access logs and other activities. It also correlates events to give you a big picture of what happened. It generates alerts based on triggers in near real time.
What does SIEM do?
enables you to segment networks logically but devices are connected to the same switches and use the same routers and firewalls.
VLAN?
a ration of unauthenticated valid users to valid authentications.
What is FRR? (False Rejection Rate)
Algorithms to provide proof that a message originated from a particular sender and to ensure that the message was not modified while in transit between the sender and the recipient. These algorithms rely on a combination of public key cryptography and hashing functions.
Digital Signature.