Network Protocols & Attacks
Cyber Attacks & Threats
Cryptography & Identity
Protocols & Defenses
Testing & Malware
100

This protocol operates on UDP port 123 to keep system clocks in lockstep.

What is Network Time Protocol (NTP)?

100

An attack that exploits a software vulnerability before the developer can release a patch.

What is a Zero-day?

100

A random number whose principal characteristic is that it is never reused within the same scope.

What is a Nonce?

100

Its core function is to aggregate traffic data and logs from switches, firewalls, and scanners.

What is Security Information and Event Management (SIEM)?

100

A program operated by a vendor where rewards are given for discovering and reporting vulnerabilities.

What is a Bug Bounty?

200

A Layer 2 loop-prevention protocol designed to stop devastating broadcast storms.

What is Spanning Tree Protocol (STP)?

200

A type of malicious software that encrypts data to extort money from the victim.

What is Ransomware?

200

A concept in which an expanding list of transactional records is secured using cryptography.

What is Blockchain?

200

This system captures traffic via a packet sniffer, referred to as a sensor, to detect intrusions.

What is a Network-based IDS (NIDS)?

200

A vulnerability scan that is provided with a user account with log-on rights to various hosts.

What is a Credentialed Scan?

300

This attack overwhelms a target by withholding the final ACK packet in the TCP handshake.

What is a SYN flood attack?

300

Entering a secure area without authorization by following close behind an authorized person.

What is Tailgating?

300

This utility is used to generate private keys, CSRs, and identity certificates.

What is OpenSSL?

300

This protocol is widely used to query and update X.500 format directories, but operates in plaintext.

What is Lightweight Directory Access Protocol (LDAP)?

300

This specific type of malware performs monitoring by silently recording user keystrokes.

What is a Keylogger?

400

This utility uses a packet crafter like Ettercap to intercept local Layer 2 traffic.

What is ARP poisoning?

400

A threat actor learning a password or PIN by directly watching the user type it.

What is Shoulder Surfing?

400

A certificate extension field structured to represent different types of identifiers, including domains.

What is Subject Alternative Name (SAN)?

400

A widely used framework for network device management and monitoring.

What is Simple Network Management Protocol (SNMP)?

400

A rogue access point that uses a similar name (SSID) to a legitimate one to trick users.

What is an Evil Twin?

500

The standard public IP translation service used to map LAN traffic to the WAN edge.

What is a NAT gateway?

500

Acquiring a spelling variation of a company's trading name or trademark to trick users.

What is Domain Hijacking?

500

This type of encryption is principally used to securely share privacy-sensitive data sets.

This type of encryption is principally used to securely share privacy-sensitive data sets.

500

This common VPN protocol suite operates at the network layer (Layer 3) of the OSI model.

What is Internet Protocol Security (IPSec)?

500

An attack where the adversary has stolen a database of password hashes like the SAM or NTDS.DIT file.

What is an Offline Attack?