Concepts
The ongoing effort to protect these networked systems and all of the data from unauthorized use or harm.
What is Cybersecurity?
A type of attack used to take control over a mobile device. ZeuS, an example of an exploit with these capabilities, it allows attackers quietly to capture 2-step verification SMS messages sent to users.
What is Man in the Mobile?
The recommended protocol that should be used to protect your wireless network.
What is WPA2?
A firewall that filters traffic based off of source and destination IP address, source and destination port, and what protocol is used?
What is a transport layer firewall?
A popular tool used to find all open ports on a device.
What is Nmap?
How you present yourself to others online.
What is your online identity?
A vulnerability that occurs when the output of an event depends on ordered or timed outputs.
What is a race condition?
The most important policy to follow when creating passwords for multiple accounts, a Password Manager can help with this.
What is 'Use unique passwords'?
A process of probing a computer, server or other network host for open ports. It can be used maliciously as a reconnaissance tool to identify the operating system and services running on a computer or host, or it can be used harmlessly by a network administrator to verify network security policies on the network.
What is Port Scanning?
A system that scans data against a database of rules or attack signatures, looking for malicious traffic. If a match is detected, the system will log the detection, and create an alert for a network administrator, but will not take direct action
What is an Intrusion Detection System?
A method of attacking in hopes of gaining advantage over adversaries, whether they are nations or competitors.
What is Cyberwarfare?
When an attacker requests personal information from a party in exchange for something, like a free gift.
What is Something for Something, or Quid pro quo?
A Windows feature that can encrypt data.
What is Encrypting File System (EFS)?
The third stage in the cyber kill chain.
What is delivery?
A technology designed for secure encrypted tunneling, it encrypts all traffic between two points.
What is a Virtual Private Network?
Attackers with little or no skill, often using existing tools or instructions found on the Internet to launch attacks.
Script Kiddies or Amateur Hackers?
The attacker tries several possible passwords in an attempt to guess the password. If the password is a 4-digit number, for example, the attacker would have to try every one of the 10000 combinations.
What is a brute-force attack, or a dictionary attack?
The only way to be certain that data or files are not recoverable.
What is physically destroying the storage device?
A technology that is used to gather information about data flowing through a network. It shows you who and what devices are in your network, as well as when and how users and devices accessed your network.
What is NetFlow?
A behavior-based detection tool that lures the attacker in by appealing to the attacker’s predicted pattern of malicious behavior.
What is a honeypot?
The three terms that make up the CIA triad
What is Confidentiality, Integrity, and Availability?
A method of increasing traffic to malicious sites that may host malware or perform social engineering. To force a malicious site to rank higher in search results, attackers take advantage of popular search terms.
What is SEO poisoning?
An open standard protocol that allows an end user’s credentials to access third party applications without exposing the user’s password. It allows you to login to twitch using facebook credentials.
What is Open Authorization (OAuth)?
A collection of repeatable queries (reports) against security event data sources that lead to incident detection and response. This should cover detecting a security breach, responding to a security breach, and should be updated afterwards with lessons learned.
What is a Security Playbook?
Software that collects and analyzes security alerts, logs and other real time and historical data from security devices on the network.
What is a Security Information and Event Management system?