SG 1 - Study Notecards Flashcards

1
Q

What is XSS?

A

Cross-site scripting - used to inject scripts into a web page displayed in a user’s browser

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is AES?

A

Advanced Encryption Standard

current NIST-approved encryption standard

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a threat actor?

A

An entity likely to cause damage or loss to an Org

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is DNS?

A

Domain Name System

used to resolve hostnames to IP addresses and vice versa, also obtains other info associated with a domain

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is a firewall?

A

System or software that allows blocking, rejecting, or allowing network traffic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is SQL

A

Structured Query Language

used to programmatically interact with relational databases

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are microservices?

A

application functions that are separated out from a larger application, often placed in virtualized environment like containers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is a subnet mask?

A

A 4 octet value indicating which part of an IP address is network and which is host

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is n-tier architecture?

A

Multiple tiers of systems /. functions used in application delivery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the OSI Model?

A

7 layer model describing functions of communications systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is TCP / IP ?

A

A 4-layer architecture of communications protocols

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is risk?

A

The measurable potential (probability) for loss or damage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is CIDR?

A

Classless Inter-Domain Routing

The number of bits covering the network protion of the IP address

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is an SIEM?

A

Security Info and Event Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is XML external entity injection?

A

Injecting XML into a web request to obtain info or run system programs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly