General Terms

Question 1

Absolute file path?

Answer 1

The full file path, which starts from the root

Question 2

Access Controls?

Answer 2

Security controls that manage access, authorization, and accountability of information

Question 3

Active Packet sniffing?

Answer 3

A type of attack where data packets are manipulated in transit

Question 4

Address Resolution Protocol (ARP)?

Answer 4

A network protocol used to determine the MAC address of the next router or device on the path

Question 5

Advanced Persistent Threat (APT)?

Answer 5

An instance when a threat actor maintains unauthorized access to a system for an extended period of time

Question 6

Adversarial Artificial Intelligence (AI)?

Answer 6

A technique that manipulates artificial
intelligence (AI) and machine learning (ML) technology to conduct attacks more efficiently

Question 7

Adware?

Answer 7

A type of legitimate software that is sometimes used to display digital
advertisements in applications

Question 8

Algorithm?

Answer 8

A set of rules used to solve a problem.

Question 9

Analysis?

Answer 9

The investigation and validation of alerts

Question 10

Angler Phishing?

Answer 10

A technique where attackers impersonate customer service
representatives on social media

Question 11

Anomaly-based Analysis?

Answer 11

A detection method that identifies abnormal behavior

Question 12

Antivirus Software?

Answer 12

A software program used to prevent, detect, and eliminate
malware and viruses

Question 13

Application?

Answer 13

A program that performs a specific task

Question 14

Application Programming Interface (API) token?

Answer 14

A small block of encrypted code
that contains information about a user

Question 15

Argument (Linux) ?

Answer 15

Specific information needed by a command

Question 16

Argument (Python)?

Answer 16

The data brought into a function when it is called

Question 17

Array?

Answer 17

A data type that stores data in a comma-separated ordered list

Question 18

Assess?

Answer 18

The fifth step of the NIST RMF that means to determine if established controls
are implemented correctly

Question 19

Asset?

Answer 19

An item perceived as having value to an organization

Question 20

Asset Classification?

Answer 20

The practice of labeling assets based on sensitivity and
importance to an organization

Question 21

Asset Inventory?

Answer 21

A catalog of assets that need to be protected

Question 22

Asset Management?

Answer 22

The process of tracking assets and the risks that affect them

Question 23

Asymmetric encryption?

Answer 23

The use of a public and private key pair for encryption and
decryption of data

Question 24

Attack Surface?

Answer 24

All the potential vulnerabilities that a threat actor could exploit

Question 25

Attack Tree?

Answer 25

A diagram that maps threats to assets

Question 26

Attack Vectors?

Answer 26

The pathways attackers use to penetrate security defenses

Question 27

Authentication?

Answer 27

The process of verifying who someone is

Question 28

Authorization?

Answer 28

The concept of granting access to specific resources in a system

Question 29

Authorize?

Answer 29

The sixth step of the NIST RMF that refers to being accountable for the
security and privacy risks that might exist in an organization

Question 30

Automation?

Answer 30

The use of technology to reduce human and manual effort to perform
common and repetitive tasks

Question 31

Availability?

Answer 31

The idea that data is accessible to those who are authorized to access it

Question 32

Baiting?

Answer 32

A social engineering tactic that tempts people into compromising their
security

Question 33

Bandwidth?

Answer 33

The maximum data transmission capacity over a network, measured by
bits per second

Question 34

Baseline Configuration (baseline image)?

Answer 34

A documented set of specifications within
a system that is used as a basis for future builds, releases, and updates

Question 35

Bash?

Answer 35

The default shell in most Linux distributions

Question 36

Basic Auth?

Answer 36

The technology used to establish a user’s request to access a server

Question 37

Basic Input/Output System (BIOS)

Answer 37

A microchip that contains loading instructions for
the computer and is prevalent in older systems

Question 38

Biometrics?

Answer 38

The unique physical characteristics that can be used to verify a person’s
identity

Question 39

Bit?

Answer 39

The smallest unit of data measurement on a computer

Question 40

Boolean Data?

Answer 40

Data that can only be one of two values: either True or False

Question 41

Bootloader?

Answer 41

A software program that boots the operating system

Question 42

Botnet?

Answer 42

A collection of computers infected by malware that are under the control of a
single threat actor, known as the “bot-herder”

Question 43

Bracket Notation?

Answer 43

The indices placed in square brackets

Question 44

Broken Chain of Custody?

Answer 44

Inconsistencies in the collection and logging of evidence in
the chain of custody

Question 45

Brute force Attack?

Answer 45

The trial and error process of discovering private information

Question 46

Bug Bounty?

Answer 46

Programs that encourage freelance hackers to find and report
vulnerabilities

Question 47

Built-in Function?

Answer 47

A function that exists within Python and can be called directly

Question 48

Business Continuity?

Answer 48

An organization’s ability to maintain their everyday productivity
by establishing risk disaster recovery plans

Question 49

Business Continuity Plan (BCP)?

Answer 49

A document that outlines the procedures to sustain
business operations during and after a significant disruption

Question 50

Business Email Compromise (BEC)?

Answer 50

A type of phishing attack where a threat actor
impersonates a known source to obtain financial advantage

Question 51

Categorize?

Answer 51

The second step of the NIST RMF that is used to develop risk
management processes and tasks

Question 52

CentOS?

Answer 52

An open-source distribution that is closely related to Red Hat

Question 53

Central Processing Unit (CPU)?

Answer 53

A computer’s main processor, which is used to
perform general computing tasks on a computer

Question 54

Chain of Custody?

Answer 54

The process of documenting evidence possession and control
during an incident lifecycle

Question 55

Chronicle?

Answer 55

A cloud-native tool designed to retain, analyze, and search data

Question 56

Cipher?

Answer 56

An algorithm that encrypts information

Question 57

Cloud-based Firewalls?

Answer 57

Software firewalls that are hosted by the cloud service
provider

Question 58

Cloud Computing?

Answer 58

The practice of using remote servers, applications, and network
services that are hosted on the internet instead of on local physical devices

Question 59

Cloud Network?

Answer 59

A collection of servers or computers that stores resources and data in
remote data centers that can be accessed via the internet

Question 60

Cloud Security?

Answer 60

The process of ensuring that assets stored in the cloud are properly
configured and access to those assets is limited to authorized users

Question 61

Command?

Answer 61

An instruction telling the computer to do something

Question 62

Command and Control (C2)?

Answer 62

The techniques used by malicious actors to maintain
communications with compromised systems

Question 63

Command-line Interface (CLI)?

Answer 63

A text-based user interface that uses commands to
interact with the computer

Question 64

Comment?

Answer 64

A note programmers make about the intention behind their code

Question 65

Common Event Format (CEF)?

Answer 65

A log format that uses key-value pairs to structure
data and identify fields and their corresponding values

Question 66

Common Vulnerabilities and Exposures (CVE) list?

Answer 66

An openly accessible dictionary
of known vulnerabilities and exposures

Question 67

Common Vulnerability Scoring System (CVSS)?

Answer 67

A measurement system that scores
the severity of a vulnerability

Question 68

Compliance?

Answer 68

The process of adhering to internal standards and external regulations

Question 69

Computer Security Incident Response Teams (CSIRT)?

Answer 69

A specialized group of
security professionals that are trained in incident management and response

Question 70

Computer Virus?

Answer 70

Malicious code written to interfere with computer operations and
cause damage to data and software

Question 71

Conditional Statement?

Answer 71

A statement that evaluates code to determine if it meets a
specified set of conditions

Question 72

Confidentiality?

Answer 72

The idea that only authorized users can access specific assets or data

Question 73

Confidential Data?

Answer 73

Data that often has limits on the number of people who have
access to it

Question 74

Confidentiality, Integrity, Availability (CIA) Triad?

Answer 74

A model that helps inform how
organizations consider risk when setting up systems and security policies

Question 75

Configuration File?

Answer 75

A file used to configure the settings of an application

Question 76

Containment?

Answer 76

The act of limiting and preventing additional damage caused by an
incident

Question 77

Controlled Zone?

Answer 77

A subnet that protects the internal network from the uncontrolled
zone

Question 78

Cross-Site Scripting (XSS)

Answer 78

An injection attack that inserts code into a vulnerable
website or web application

Question 79

Crowdsourcing?

Answer 79

The practice of gathering information using public input and
collaboration

Question 80

Cryptographic Attack?

Answer 80

An attack that affects secure forms of communication
between a sender and intended recipient

Question 81

Cryptographic Key?

Answer 81

A mechanism that decrypts ciphertext

Question 82

Cryptography?

Answer 82

The process of transforming information into a form that unintended
readers can’t understand

Question 83

Cryptojacking?

Answer 83

A form of malware that installs software to illegally mine
cryptocurrencies

Question 84

CVE Numbering Authority (CNA)?

Answer 84

An organization that volunteers to analyze and
distribute information on eligible CVEs

Question 85

Cybersecurity (or security)?

Answer 85

The practice of ensuring confidentiality, integrity, and
availability of information by protecting networks, devices, people, and data from
unauthorized access or criminal exploitation

Question 86

Data?

Answer 86

Information that is translated, processed, or stored by a computer

Question 87

Data at Rest?

Answer 87

Data not currently being accessed

Question 88

Database?

Answer 88

An organized collection of information or data

Question 89

Data Controller?

Answer 89

A person that determines the procedure and purpose for processing
data

Question 90

Data Custodian?

Answer 90

Anyone or anything that’s responsible for the safe handling,
transport, and storage of information

Question 91

Data Exfiltration?

Answer 91

Unauthorized transmission of data from a system

Question 92

Data in Transit?

Answer 92

Data traveling from one point to another

Question 93

Data in use?

Answer 93

Data being accessed by one or more users

Question 94

Data Owner?

Answer 94

The person who decides who can access, edit, use, or destroy their
information

Question 95

Data Packet?

Answer 95

A basic unit of information that travels from one device to another within
a network

Question 96

Data Point?

Answer 96

A specific piece of information

Question 97

Data Processor?

Answer 97

A person that is responsible for processing data on behalf of the data
controller

Question 98

Data Protection Officer (DPO)?

Answer 98

An individual that is responsible for monitoring the
compliance of an organization’s data protection procedures

Question 99

Data Type?

Answer 99

A category for a particular type of data item

Question 100

Date and Time Data?

Answer 100

Data representing a date and/or time

Question 101

Debugger?

Answer 101

A software tool that helps to locate the source of an error and assess its
causes

Question 102

Debugging?

Answer 102

The practice of identifying and fixing errors in code

Question 103

Defense in Depth?

Answer 103

A layered approach to vulnerability management that reduces risk

Question 104

Denial of Service (DoS) Attack?

Answer 104

An attack that targets a network or server and floods
it with network traffic

Question 105

Detect?

Answer 105

A NIST core function related to identifying potential security incidents and
improving monitoring capabilities to increase the speed and efficiency of detections

Question 106

Detection?

Answer 106

The prompt discovery of security events

Question 107

Dictionary Data?

Answer 107

Data that consists of one or more key-value pairs

Question 108

Digital Certificate?

Answer 108

A file that verifies the identity of a public key holder

Question 109

Digital Forensics?

Answer 109

The practice of collecting and analyzing data to determine what has
happened after an attack

Question 110

Directory?

Answer 110

A file that organizes where other files are stored

Question 111

Disaster Recovery Plan?

Answer 111

A plan that allows an organization’s security team to outline
the steps needed to minimize the impact of a security incident

Question 112

Distributed Denial of Service (DDoS) attack?

Answer 112

A type of denial or service attack that
uses multiple devices or servers located in different locations to flood the target
network with unwanted traffic

Question 113

Distributions?

Answer 113

The different versions of Linux

Question 114

Documentation?

Answer 114

Any form of recorded content that is used for a specific purpose

Question 115

DOM-based XSS attack?

Answer 115

An instance when malicious script exists in the webpage a
browser loads

Question 116

Domain Name System (DNS)?

Answer 116

A networking protocol that translates internet domain
names into IP addresses

Question 117

Dropper?

Answer 117

A program or a file used to install a rootkit on a target computer

Question 118

Elevator Pitch?

Answer 118

A brief summary of your experience, skills, and background

Question 119

Encapsulation?

Answer 119

A process performed by a VPN service that protects your data by
wrapping sensitive data in other data packets

Question 120

Encryption?

Answer 120

The process of converting data from a readable format to an encoded
format

Question 121

Endpoint?

Answer 121

Any device connected on a network

Question 122

Endpoint Detection and Response (EDR)

Answer 122

An application that monitors an endpoint
for malicious activity

Question 123

Eradication?

Answer 123

The complete removal of the incident elements from all affected systems

Question 124

Escalation Policy?

Answer 124

A set of actions that outline who should be notified when an
incident alert occurs and how that incident should be handled

Question 125

Event?

Answer 125

An observable occurrence on a network, system, or device

Question 126

Exception?

Answer 126

An error that involves code that cannot be executed even though it is
syntactically correct

Question 127

Exclusive Operator?

Answer 127

An operator that does not include the value of comparison

Question 128

Exploit?

Answer 128

A way of taking advantage of a vulnerability

Question 129

Exposure?

Answer 129

A mistake that can be exploited by a threat

Question 130

External Threat?

Answer 130

Anything outside the organization that has the potential to harm
organizational assets

Question 131

False Negative?

Answer 131

A state where the presence of a threat is not detected

Question 132

False Positive?

Answer 132

An alert that incorrectly detects the presence of a threat

Question 133

Fileless Malware?

Answer 133

Malware that does not need to be installed by the user because it
uses legitimate programs that are already installed to infect a computer

Question 134

File Path?

Answer 134

The location of a file or directory

Question 135

Filesystem Hierarchy Standard (FHS)?

Answer 135

The component of the Linux OS that organizes
data

Question 136

Filtering?

Answer 136

Selecting data that match a certain condition

Question 137

Final Report?

Answer 137

Documentation that provides a comprehensive review of an incident

Question 138

Firewall?

Answer 138

A network security device that monitors traffic to or from a network

Question 139

Float Data?

Answer 139

Data consisting of a number with a decimal point

Question 140

Foreign Key?

Answer 140

A column in a table that is a primary key in another table

Question 141

Forward Proxy Server?

Answer 141

A server that regulates and restricts a person’s access to the
internet

Question 142

Function?

Answer 142

A section of code that can be reused in a program

Question 143

Global Variable?

Answer 143

A variable that is available through the entire program

Question 144

Graphical User Interface (GUI)?

Answer 144

A user interface that uses icons on the screen to
manage different tasks on the computer

Question 145

Hacker?

Answer 145

Any person or group who uses computers to gain unauthorized access to
data

Question 146

Hacktivist?

Answer 146

A person who uses hacking to achieve a political goal

Question 147

Hard Drive?

Answer 147

A hardware component used for long-term memory

Question 148

Hardware?

Answer 148

The physical components of a computer

Question 149

Hash Collision?

Answer 149

An instance when different inputs produce the same hash value

Question 150

Hash Function?

Answer 150

An algorithm that produces a code that can’t be decrypted

Question 151

Hash Table?

Answer 151

A data structure that’s used to store and reference hash values

Question 152

Health Insurance Portability and Accountability Act (HIPAA)?

Answer 152

A U.S. federal law
established to protect patients’ health information

Question 153

Honeypot?

Answer 153

A system or resource created as a decoy vulnerable to attacks with the
purpose of attracting potential intruders

Question 154

Host-based Intrusion Detection System (HIDS)?

Answer 154

An application that monitors the
activity of the host on which it’s installed

Question 155

Hub?

Answer 155

A network device that broadcasts information to every device on the network

Question 156

Hypertext Transfer Protocol (HTTP)?

Answer 156

An application layer protocol that provides a
method of communication between clients and website servers

Question 157

Hypertext Transfer Protocol Secure (HTTPS)?

Answer 157

A network protocol that provides a
secure method of communication between clients and website servers

Question 158

Identify?

Answer 158

A NIST core function related to management of cybersecurity risk and its
effect on an organization’s people and assets

Question 159

Identity and Access Management (IAM)?

Answer 159

A collection of processes and technologies
that helps organizations manage digital identities in their environment

Question 160

IEEE 802.11 (Wi-Fi)?

Answer 160

A set of standards that define communication for wireless LANs

Question 161

Immutable?

Answer 161

An object that cannot be changed after it is created and assigned a value

Question 162

Implement?

Answer 162

The fourth step of the NIST RMF that means to implement security and
privacy plans for an organization

Question 163

Improper Usage?

Answer 163

An incident type that occurs when an employee of an organization
violates the organization’s acceptable use policies

Question 164

Incident?

Answer 164

An occurrence that actually or imminently jeopardizes, without lawful
authority, the confidentiality, integrity, or availability of information or an information
system; or constitutes a violation or imminent threat of violation of law, security
policies, security procedures, or acceptable use policies

Question 165

Incident Escalation?

Answer 165

The process of identifying a potential security incident, triaging it,
and handing it off to a more experienced team member

Question 166

Incident Handler’s Journal?

Answer 166

A form of documentation used in incident response

Question 167

Incident Response?

Answer 167

An organization’s quick attempt to identify an attack, contain the
damage, and correct the effects of a security breach

Question 168

Incident Response Plan?

Answer 168

A document that outlines the procedures to take in each step
of incident response

Question 169

Inclusive Operator?

Answer 169

An operator that includes the value of comparison

Question 170

Indentation?

Answer 170

Space added at the beginning of a line of code

Question 171

Index?

Answer 171

A number assigned to every element in a sequence that indicates its position

Question 172

Indicators of attack (IoA) ?

Answer 172

The series of observed events that indicate a real-time
incident

Question 173

Indicators of compromise (IoC)?

Answer 173

Observable evidence that suggests signs of a
potential security incident

Question 174

Information Privacy?

Answer 174

The protection of unauthorized access and distribution of data

Question 175

Information Security (InfoSec)?

Answer 175

The practice of keeping data in all states away from
unauthorized users

Question 176

Injection Attack?

Answer 176

Malicious code inserted into a vulnerable application

Question 177

Input Validation?

Answer 177

Programming that validates inputs from users and other programs

Question 178

Integer Data?

Answer 178

Data consisting of a number that does not include a decimal point.

Question 179

Integrated Development Environment (IDE)?

Answer 179

A software application for writing code
that provides editing assistance and error correction tools

Question 180

Integrity?

Answer 180

The idea that the data is correct, authentic, and reliable

Question 181

Internal Hardware?

Answer 181

The components required to run the computer

Question 182

Internal Threat?

Answer 182

A current or former employee, external vendor, or trusted partner who
poses a security risk

Question 183

Internet Control Message Protocol (ICMP)?

Answer 183

An internet protocol used by devices to
tell each other about data transmission errors across the network

Question 184

Internet Control Message Protocol Flood (ICMP flood)?

Answer 184

A type of DoS attack
performed by an attacker repeatedly sending ICMP request packets to a network
server

Question 185

Internet Protocol (IP)?

Answer 185

A set of standards used for routing and addressing data
packets as they travel between devices on a network

Question 186

Internet Protocol (IP) Address?

Answer 186

A unique string of characters that identifies the
location of a device on the internet

Question 187

Interpreter?

Answer 187

A computer program that translates Python code into runnable
instructions line by line

Question 188

Intrusion Detection System (IDS)?

Answer 188

An application that monitors system activity and
alerts on possible intrusions

Question 189

Intrusion Prevention System (IPS)?

Answer 189

An application that monitors system activity for
intrusive activity and takes action to stop the activity

Question 190

IP Spoofing?

Answer 190

A network attack performed when an attacker changes the source IP of a
data packet to impersonate an authorized system and gain access to a network

Question 191

Iterative Statement?

Answer 191

Code that repeatedly executes a set of instructions

Question 192

Kali Linux?

Answer 192

An open-source distribution of Linux that is widely used in the security
industry

Question 193

Kernel?

Answer 193

The component of the Linux OS that manages processes and memory

Question 194

Key-value pair?

Answer 194

A set of data that represents two linked items: a key, and its
corresponding value

Question 195

Legacy Operating System?

Answer 195

An operating system that is outdated but still being used

Question 196

Lessons Learned Meeting?

Answer 196

A meeting that includes all involved parties after a major
incident

Question 197

Library?

Answer 197

A collection of modules that provide code users can access in their programs

Question 198

Linux?

Answer 198

An open-source operating system

Question 199

List Concatenation?

Answer 199

The concept of combining two lists into one by placing the
elements of the second list directly after the elements of the first list

Question 200

List Data?

Answer 200

Data structure that consists of a collection of data in sequential form

Question 201

Loader?

Answer 201

Malicious code that launches after a user initiates a dropper program

Question 202

Local Area Network (LAN)?

Answer 202

A network that spans small areas like an office building, a
school, or a home

Question 203

Local Variable?

Answer 203

A variable assigned within a function

Question 204

Log?

Answer 204

A record of events that occur within an organization’s systems

Question 205

Log Analysis?

Answer 205

The process of examining logs to identify events of interest

Question 206

Logging?

Answer 206

The recording of events occurring on computer systems and networks

Question 207

Logic Error?

Answer 207

An error that results when the logic used in code produces unintended
results

Question 208

Log Management?

Answer 208

The process of collecting, storing, analyzing, and disposing of log
data

Question 209

Loop Condition?

Answer 209

The part of a loop that determines when the loop terminates

Question 210

Loop Variable?

Answer 210

A variable that is used to control the iterations of a loop

Question 211

Malware?

Answer 211

Software designed to harm devices or networks

Question 212

Malware Infection?

Answer 212

An incident type that occurs when malicious software designed to
disrupt a system infiltrates an organization’s computers or network

Question 213

Media Access Control (MAC) Address?

Answer 213

A unique alphanumeric identifier that is
assigned to each physical device on a network

Question 214

Method?

Answer 214

A function that belongs to a specific data type

Question 215

Metrics?

Answer 215

Key technical attributes such as response time, availability, and failure rate,
which are used to assess the performance of a software application

Question 216

MITRE?

Answer 216

A collection of non-profit research and development centers

Question 217

Modem?

Answer 217

A device that connects your router to the internet and brings internet access
to the LAN

Question 218

Module?

Answer 218

A Python file that contains additional functions, variables, classes, and any
kind of runnable code

Question 219

Monitor?

Answer 219

The seventh step of the NIST RMF that means be aware of how systems are
operating

Question 220

Multi-factor Authentication (MFA)?

Answer 220

A security measure that requires a user to verify
their identity in two or more ways to access a system or network

Question 221

Nano?

Answer 221

A command-line file editor that is available by default in many Linux distributions

Question 222

National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF)?

Answer 222

A voluntary framework that consists of standards, guidelines, and best
practices to manage cybersecurity risk

Question 223

National Institute of Standards and Technology (NIST) Incident Response?

Answer 223

A framework for incident response consisting of four phases: Preparation;
Detection and Analysis; Containment, Eradication and Recovery, and Post-incident
activity