SG 1 - Study Notecards Flashcards
What is XSS?
Cross-site scripting - used to inject scripts into a web page displayed in a user’s browser
What is AES?
Advanced Encryption Standard
current NIST-approved encryption standard
What is a threat actor?
An entity likely to cause damage or loss to an Org
What is DNS?
Domain Name System
used to resolve hostnames to IP addresses and vice versa, also obtains other info associated with a domain
What is a firewall?
System or software that allows blocking, rejecting, or allowing network traffic
What is SQL
Structured Query Language
used to programmatically interact with relational databases
What are microservices?
application functions that are separated out from a larger application, often placed in virtualized environment like containers
What is a subnet mask?
A 4 octet value indicating which part of an IP address is network and which is host
What is n-tier architecture?
Multiple tiers of systems /. functions used in application delivery
What is the OSI Model?
7 layer model describing functions of communications systems
What is TCP / IP ?
A 4-layer architecture of communications protocols
What is risk?
The measurable potential (probability) for loss or damage
What is CIDR?
Classless Inter-Domain Routing
The number of bits covering the network protion of the IP address
What is an SIEM?
Security Info and Event Management
What is XML external entity injection?
Injecting XML into a web request to obtain info or run system programs