Security Tools Flashcards
Security Content Automation Protocol (SCAP)
a suite of specifications developed by the National Institute of Standards and Technology (NIST) to provide a standardized approach for automating the assessment, monitoring, and reporting of security vulnerabilities and configurations in information systems
Agent
a software component or application that is installed on a device (such as a server, workstation, or network device) to perform specific tasks related to monitoring, management, security, or data collection
Agentless
a method of monitoring, managing, or securing systems without the need to install a dedicated software agent on each device or endpoint. Instead of relying on agents to perform tasks such as data collection, vulnerability scanning, or configuration management, agentless solutions typically utilize other techniques, like network protocols or APIs, to interact with and gather information from devices
SIEM Security information and event manager
comprehensive solution for managing security data across an organization. It collects, analyzes, and correlates security events from various sources, providing a centralized view of the security posture of the organization
Anti-virus
a type of application designed to detect, prevent, and remove malware from computers and networks. It plays a critical role in cybersecurity by protecting systems from various forms of malicious software, including viruses, worms, trojans, ransomware, and spyware
Anti-malware
software specifically designed to detect, prevent, and remove various types of malicious software (malware), which includes viruses, worms, trojans, ransomware, spyware, adware, and more. A broader range of threats
Data Loss Prevention (DLP)
a cybersecurity solution that monitors and prevents the unauthorized sharing, transfer, or use of sensitive data. DLP can help organizations protect their data across on-premises systems, cloud-based locations, and endpoint devices
Simple Network Management Protocol (SNMP)
an Internet Standard protocol for collecting and organizing information about managed devices on IP networks and for modifying that information to change device behavior. Devices that typically support SNMP include cable modems, routers, network switches, servers, workstations, printers, and more
Netflow
is a network protocol developed by Cisco for collecting IP traffic information and monitoring network flow. By analyzing NetFlow data, you can get a picture of network traffic flow and volume