Terminology

Question 1

Pen Testing (Penetration testing)

Answer 1

A penetration test, also known as a pen test, is a simulated cyber attack against your computer system to check for exploitable vulnerabilities.

Question 2

Sequel Injection (SQL)

Answer 2

SQL injection is a code injection technique that might destroy your database. SQL injection is one of the most common web hacking techniques.

Question 3

CIA Triad

Answer 3

Confidentiality, Integrity, Availability

Question 4

Information Security

Answer 4

The state of being protected against the unauthorized use of information, especially electronic data, or the measures taken to achieve this.

Question 5

Cyber Security

Answer 5

Cyber security is the practice of defending computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks.

Question 6

APT (Advanced Persistent Threats)

Answer 6

An advanced persistent threat (APT) is a sophisticated, sustained cyberattack in which an intruder establishes an undetected presence in a network in order to steal sensitive data over a prolonged period of time.

Question 7

Attribution

Answer 7

Cyber-threat attribution is the identification of attacker responsible for a cyber-attack. It is a challenging task as attacker uses different obfuscation and deception techniques to hide its identity.

Question 8

Surface Map / Attack Surface

Answer 8

Attack surface mapping is a cybersecurity technique that helps identify an organization’s attack surface. It is a process that spots the different points of vulnerability in a system and provides recommendations for reducing the attack surface. Attack surface mapping can be done manually or with automated tools.

Question 9

Social Engineering

Answer 9

Social engineering is the term used for a broad range of malicious activities accomplished through human interactions. It uses psychological manipulation to trick users into making security mistakes or giving away sensitive information.

Question 10

Firewall

Answer 10

A Firewall is a network security device that monitors and filters incoming and outgoing network traffic based on an organization’s previously established security policies. At its most basic, a firewall is essentially the barrier that sits between a private internal network and the public Internet.

Question 11

Zero Day Attack

Answer 11

The term “Zero-Day” is used when security teams are unaware of their software vulnerability, and they’ve had “0” days to work on a security patch or an update to fix the issue. “Zero-Day” is commonly associated with the terms Vulnerability, Exploit, and Threat.

Question 12

Playbook

Answer 12

A cyber response playbook is a plan that outlines the steps you will take in the event of a security incident. Most organizations keep their incident response plans very simple and then augment specific types of incidents with cyber response playbooks.

Question 13

Personal Identifying Information (PII)

Answer 13

Personally Identifiable Information; Any representation of information that permits the identity of an individual to whom the information applies to be reasonably inferred by either direct or indirect means.

Question 14

Defence in Depth

Answer 14

A defense-in-depth strategy, aka a security-in-depth strategy, refers to a cybersecurity approach that uses multiple layers of security for holistic protection. A layered defense helps security organizations reduce vulnerabilities, contain threats, and mitigate risk.

Question 15

Zero-Trust

Answer 15

Zero trust network access (ZTNA) is a product or service that creates an identity- and context-based, logical access boundary around an application or set of applications. The applications are hidden from discovery, and access is restricted via a trust broker to a set of named entities.

Question 16

CVE Rating

Answer 16

CVE is a glossary that classifies vulnerabilities. The glossary analyzes vulnerabilities and then uses the Common Vulnerability Scoring System (CVSS) to evaluate the threat level of a vulnerability. A CVE score is often used for prioritizing the security of vulnerabilities 1 - 10

Question 17

Out of Bounds Error

Answer 17

Tries to access something outside of the bounds of the container

Question 18

Bug Bounties

Answer 18

A bug bounty program, also called a vulnerability rewards program (VRP), is a crowdsourcing initiative that rewards individuals for discovering and reporting software bugs.

Question 19

Cyber security Scope

Answer 19

A frame within to search or detect - in scope or out of scope

Question 20

Least privileged principle

Answer 20

The principle of least privilege (PoLP) is an information security concept which maintains that a user or entity should only have access to the specific data, resources and applications needed to complete a required task.

Question 21

IAAA

Answer 21

identification, authentication, authorisation, and accountability (Auditing)

Question 22

GRC

Answer 22

Governance, Risk, and Compliance

Question 23

Legacy System

Answer 23

A legacy system is outdated computing software or hardware that is still in use, but its older technology won’t allow it to interact with newer systems.

Question 24

API

Answer 24

Application program Interface

Question 25

VPN

Answer 25

Virtual Private Network, routes all of your internet activity through a secure, encrypted connection, which prevents others from seeing what you’re doing online and from where you’re doing it. Basically, a VPN provides an extra layer of security and privacy for all of your online activities.

Question 26

Fuzzing

Answer 26

Fuzz testing or fuzzing is an automated software testing method that injects invalid, malformed, or unexpected inputs into a system to reveal software defects and vulnerabilities. A fuzzing tool injects these inputs into the system and then monitors for exceptions such as crashes or information leakage.

Question 27

Life and Limb Data

Answer 27

Data that may effect real world decision around safety ie weather data for boaties etc

Question 28

Encryption

Answer 28

In cryptography, encryption is the process of encoding information. This process converts the original representation of the information, known as plaintext, into an alternative form known as ciphertext.

Question 29

Cipher text

Answer 29

Ciphertext is encrypted text transformed from plaintext using an encryption algorithm. Ciphertext can’t be read until it has been converted into plaintext (decrypted) with a key. The decryption cipher is an algorithm that transforms the ciphertext back into plaintext.

Question 30

Symmetric encryption

Answer 30

Symmetric encryption uses a unique key that must be shared between the people who need to receive the message

Question 31

Asymmetric encryption

Answer 31

Asymmetric encryption uses a pair of public keys and a private key to encrypt and decrypt messages when they are communicated

Question 32

encoding vs encryption

Answer 32

Encoding is for maintaining data usability and can be reversed by employing the same algorithm that encoded the content, i.e. no key is used. Encryption is for maintaining data confidentiality and requires the use of a key (kept secret) in order to return to plaintext.

Question 33

non-repudiation

Answer 33

you said it, you cant deny it - no question

Question 34

Plaintext

Answer 34

unencrypted text

Question 35

cipher text

Answer 35

encrypted text

Question 36

Hashing

Answer 36

A way of verifying a message has been sent and not tampered with. Hashing is the process of transforming any given key or a string of characters into another value. This is usually represented by a shorter, fixed-length value or key that represents and makes it easier to find or employ the original string.

Question 37

PBKDF2

Answer 37

“In cryptography, PBKDF1 and PBKDF2 (Password-Based Key Derivation Function 1 and 2) are key derivation functions with a sliding computational cost, used to reduce vulnerability to brute-force attacks.[1]

PBKDF2 is part of RSA Laboratories’ Public-Key Cryptography Standards (PKCS) series, specifically PKCS #5 v2.0, also published as Internet Engineering Task Force’s RFC 2898. It supersedes PBKDF1, which could only produce derived keys up to 160 bits long.[2] RFC 8018 (PKCS #5 v2.1), published in 2017, recommends PBKDF2 for password hashing.”

Question 38

NIST

Answer 38

National Institute of Standards and Technology at the U.S. Department of Commerce. The NIST Cybersecurity Framework helps businesses of all sizes better understand, manage, and reduce their cybersecurity risk and protect their networks and data.

Question 39

Homomorphic encryption

Answer 39

Homomorphic encryption is the conversion of data into ciphertext that can be analyzed and worked with as if it were still in its original form. Homomorphic encryption enables complex mathematical operations to be performed on encrypted data without compromising the encryption.”

Question 40

Diffie Hellman

Answer 40

Key exchange is a method of digital encryption that securely exchanges cryptographic keys between two parties over a public channel without their conversation being transmitted over the internet. The two parties use symmetric cryptography to encrypt and decrypt their messages.

Question 41

ECC

Answer 41

Elliptical curve cryptography (ECC) is a public key encryption technique based on elliptic curve theory that can be used to create faster, smaller and more efficient cryptographic keys.

Question 42

enp0s3

Answer 42

We will use the enp0s3 device to clarify the predictable interface naming scheme in Linux. The “en” stands for Ethernet, “p0” is a bus number of the Ethernet card and “s3” is a slot number. The two-character prefix “en” identifies the type of the interface

Question 43

LLM

Answer 43

Large Language Models - When talking about AI such as ChatGPT

Question 44

IEEE 802.11

Answer 44

is a standard that was developed by the Institute of Electrical and Electronic Engineers (IEEE). It is the original wireless specification. Extensions of the 802.11 standard were given the same number with a letter suffix. 802.11 Provides up to 2Mbps transmission in the 2.4GHz band.

Question 45

wiFITE

Answer 45

Wifite is a tool to audit WEP or WPA encrypted wireless networks. It uses aircrack-ng, pyrit, reaver, tshark tools to perform the audit. This tool is customizable to be automated with only a few arguments and can be trusted to run without supervision.

Question 46

Dwell Time

Answer 46

How long an attacker has been in or around a system

Question 47

Page Rank

Answer 47

The PageRank algorithm measures the importance of each node within the graph, based on the number incoming relationships and the importance of the corresponding source nodes. The underlying assumption roughly speaking is that a page is only as important as the pages that link to it.

Question 48

Key Exhaustion

Answer 48

Using social engineering to exhaust a user into authenticating a key eg multiple hits on a 2 factor identification resulting in the user just saying yes

Question 49

Block Algorithms

Answer 49

A block cipher uses a symmetric key and algorithm to encrypt and decrypt a block of data. A block cipher requires an initialization vector (IV) that is added to the input plaintext in order to increase the keyspace of the cipher and make it more difficult to use brute force to break the key.

Question 50

Stream Algorithms

Answer 50

A stream cipher is a method of encrypting text (to produce ciphertext) in which a cryptographic key and algorithm are applied to each binary digit in a data stream, one bit at a time. The main alternative method to stream cipher is, in fact, the block cipher, where a key and algorithm are applied to blocks of data rather than individual bits in a stream.

Question 51

Private key

Answer 51

A cryptographic key that is used with an asymmetric (public key) cryptographic algorithm. For digital signatures, the private key is uniquely associated with the owner and is not made public. The private key is used to compute a digital signature that may be verified by the corresponding public key.

Question 52

Public key

Answer 52

In cryptography, a public key is a large numerical value that is used to encrypt data. The key can be generated by a software program, but more often, it is provided by a trusted, designated authority and made available to everyone through a publicly accessible repository or directory.

Question 53

3 states of data encryption

Answer 53

Data at rest (usb etc), Data in use (literally being used), Data in transit (moving between systems)

Question 54

Man in the middle attack (MITM)

Answer 54

A man in the middle (MITM) attack is a general term for when a perpetrator positions himself in a conversation between a user and an application—either to eavesdrop or to impersonate one of the parties, making it appear as if a normal exchange of information is underway.

Question 55

attack vs defence

Answer 55

Defensive Security is typically more proactive, as it is focused on preventing attacks from occurring in the first place. Offensive Security is often focused on testing the security of a specific system or network. Defensive Security is focused on protecting an entire organization’s assets and infrastructure.

Question 56

low hanging fruit

Answer 56

In simple terms, low-hanging fruit refers to anything that can be easily accessed or exploited by cyber criminals. The term comes from the analogy of picking up fruit that is easily accessible. In the context of cyber security, it refers to the easy targets within an organisation’s network.

Question 57

script kiddie

Answer 57

Fool/newbie - industry term - limited knowledge but dangerous capability because of lack of understanding

Question 58

Framework

Answer 58

Cyber security frameworks are sets of documents describing guidelines, standards, and best practices designed for cyber security risk management. The frameworks exist to reduce an organization’s exposure to weaknesses and vulnerabilities that hackers and other cyber criminals may exploit.

Question 59

Australian ISM

Answer 59

The Australian Cyber Security Centre (ACSC) produces the Information Security Manual (ISM). The purpose of the ISM is to outline a cyber security framework that organisations can apply, using their risk management framework, to protect their systems and data from cyber threats.

Question 60

ASD Essential 8

Answer 60

Framework brought out by AUS govt

Question 61

Payment Card Industry Data Security Standard (PCI DSS)

Answer 61

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that ALL companies that accept, process, store or transmit credit card information maintain a secure environment

Question 62

Sarbanes-Oxley Act (SOX)

Answer 62

The Sarbanes-Oxley Act of 2002 is a federal law that established sweeping auditing and financial regulations for public companies. Lawmakers created the legislation to help protect shareholders, employees and the public from accounting errors and fraudulent financial practices.

Question 63

Passkey

Answer 63

A passkey is a cryptographic entity that’s not visible to you, and it’s used in place of a password. A passkey consists of a key pair, which—compared to a password—profoundly improves security. One key is public, registered with the website or app you’re using.

Question 64

Yubikey

Answer 64

The YubiKey is an easy to use extra layer of security for your online accounts. A single YubiKey has multiple functions for securing your login to email, online services, apps, computers, and even physical spaces. key to trust. Login with your login credentials and the YubiKey to prevent account takeovers virtually.

Question 65

MFA/2FA

Answer 65

2FA is a multi-factor authentication method that requires exactly two authentication factors. MFA, compared with 2FA, has an additional dimension of authentication, requiring at least two or more authentication factors — two, three, or even more. Note that 2FA is MFA, but MFA cannot be considered a 2FA.

Question 66

OSI model

Answer 66

The OSI Model (Open Systems Interconnection Model) is a conceptual framework used to describe the functions of a networking system. The OSI model characterizes computing functions into a universal set of rules and requirements in order to support interoperability between different products and software.

Question 67

TCP/IP

Answer 67

The TCP/IP model is a part of the Internet Protocol Suite. This model acts as a communication protocol for computer networks and connects hosts on the Internet. It is a concise version of the OSI Model and comprises four layers in its structure.

Question 68

Burp Suite

Answer 68

Burp Suite is an integrated platform and graphical tool for performing security testing of web applications, it supports the entire testing process, from initial mapping and analysis of an application’s attack surface, through to finding and exploiting security vulnerabilities.

Question 69

False Acceptance Rate (FAR)

Answer 69

The percentage of identification instances in which unauthorised persons are incorrectly accepted. False Rejection Rate (FRR): the percentage of identification instances in which authorised persons are incorrectly rejected.

Question 70

False Rejection Rate (FRR)

Answer 70

Proportion of verification transactions with truthful claims of identity that are incorrectly denied.

Question 71

Cross-Over Error Rate (CER)

Answer 71

Metric for comparing biometric systems. The point where FAR & FRR are equal

Question 72

Federated Identity

Answer 72

• The means of linking a person’s electronic identity and attributes, stored across multiple distinct identity management systems
• Means of linking a user’s identity with their privileges in a manner that can be used across business boundaries
• Allows a user to have a single identity that they can use across different businesses Examples: Google, Facebook, Microsoft

Question 73

Single sign on (SSO)

Answer 73

• Allows a user to authenticate one time and then access resources in the environment without needing to reauthenticate.
• Different from password synchronisation
• Vulnerability – if an attacker uncovers a user’s credentials, they will have access to all that user’s resources
• May also be a single point of failure

Question 74

Single point of failure

Answer 74

SPOF is a potential risk posed by a flaw in the design, implementation or configuration of a circuit or system. SPOF refers to one fault or malfunction that can cause an entire system to stop operating.

Question 75

Account types

Answer 75

• User Accounts
• Shared and Generic Accounts/Credentials (Lack of accountability - cant see who used it)
• Guest Accounts
• Service Accounts
• Privileged Accounts

Question 76

Root

Answer 76

Admin (account)

Question 77

DAC (Discretionary Access Control)

Answer 77

Allow the system-user to have access to given
information systems as well as data and its within their discretion to decide how to handle the privileges assigned to them including sharing the same with another entity.

Question 78

MAC Authorisation (Mandatory Access Control)

Answer 78

A set of Security attributes are assigned to both Subjects and
objects. Every time a subject tries to access an object, the Operating system kernels perform checks to determine whether to grant or deny access given the prevailing authorisation rules. Before access is granted, an authorisation check is done to verify if the subject has the necessary clearance to access the system or data.

Question 79

RBAC (Role-Based Access Control)

Answer 79

RBAC differs from access control lists (ACLs), used in traditional discretionary access-control systems, in that permissions are granted according to someone’s role in the organisation rather than based on the data objects they intend to access.
This kind of authorisation works best in mature organisations like Banks where roles are clearly defined and as such, the same are easily translated into the systems.
In a role-based access control system in a bank, for example, an operation might be to ‘create a customer’ record or to ‘fill in a blood group’ record in a hospital application.

Question 80

Access control lists (ACLs)

Answer 80

An access control list (ACL) contains rules that grant or deny access to certain digital environments. There are two types of ACLs: Filesystem ACLs - filter access to files and/or directories. Filesystem ACLs tell operating systems which users can access the system, and what privileges the users are allowed.

Question 81

ABAC (Attribute-Based Access Control)

Answer 81

Unlike role-based access control (RBAC), which employs predefined roles that carry a specific set of privileges associated with them and to which subjects are assigned, the key difference with ABAC is the concept of policies that express a complex Boolean rule set that can evaluate many different attributes.

Question 82

Boolean Rule Sets

Answer 82

In mathematics, a Boolean function is a function whose arguments and result assume values from a two-element set (usually {true, false}, {0,1} or {-1,1}). Alternative names are switching function, used especially in older computer science literature, and truth function (or logical function), used in logic.

Question 83

IAM in AWS

Answer 83

AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. With IAM, you can centrally manage permissions that control which AWS resources users can access. You use IAM to control who is authenticated (signed in) and authorized (has permissions) to use resources.

Question 84

Data Integrity

Answer 84

Assures that data contained within information systems are free
from unauthorised modification/changes/alteration.

Question 85

System Integrity

Answer 85

On the other hand ensures that the systems which are used for
processing the above-referenced data are free from any form of unauthorised modification/changes/alteration. This is mainly focused on the aspects around configurations of the system.

Question 86

MD5

Answer 86

MD5 (Message Digest Method 5) is a cryptographic hash algorithm used to generate a 128-bit digest from a string of any length. It represents the digests as 32 digit hexadecimal numbers. Ronald Rivest designed this algorithm in 1991 to provide the means for digital signature verification

Question 87

Avalanche effect

Answer 87

Avalanche effect, in physics, a sudden increase in the flow of an electrical current through a nonconducting or semiconducting solid when a sufficiently strong electrical force is applied.

Question 88

Rainbow tables

Answer 88

A rainbow table acts as a database that contains the pre-computed hashed output for most or all possible passwords. Rainbow tables take a considerable amount of time to generate and are not always complete: they may not include all possible password/hash combinations.

Question 89

SHA1

Answer 89

In cryptography, SHA-1 (Secure Hash Algorithm 1) is a hash function which takes an input and produces a 160-bit (20-byte) hash value known as a message digest – typically rendered as 40 hexadecimal digits.

Question 90

Collision attack

Answer 90

Tries to find two input strings of a hash function that have the same
output

Question 91

The main difference between Encryption, Hashing, and encoding?

Answer 91

Encryption: Secure encoding of data used to protect the confidentiality of data.
Hashing: A one-way summary of data that cannot be reversed and is used to validate the integrity of data.
Encoding: Reversible transformation of data format, used to preserve the usability of data.

Question 92

Which practical situations would encryption be more suitable as opposed to hashing and vice versa?

Answer 92

While encryption is primarily used to protect data in transit, hashing is used for protecting data in storage. Encryption can be used to protect passwords in transit while hashing is used to protect passwords in storage. Data that has been decrypted can be decoded, but data that has been hashed cannot.

Question 93

Latent space

Answer 93

The latent space is simply a representation of compressed data in which similar data points are closer together in space. Latent space is useful for learning data features and for finding simpler representations of data for analysis.

Question 94

Entropy

Answer 94

A measure of the amount of uncertainty an attacker faces to determine the value of a secret.

Question 95

Singularity

Answer 95

In technology, the singularity describes a hypothetical future where technology growth is out of control and irreversible. These intelligent and powerful technologies will radically and unpredictably transform our reality.

Question 96

AGI

Answer 96

Artificial general intelligence (AGI) is the representation of generalized human cognitive abilities in software so that, faced with an unfamiliar task, the AGI system could find a solution.

Question 97

Immutable

Answer 97

Data that can only be written, not modified or deleted

Question 98

Blockchain

Answer 98

Blockchain is a decentralized ledger system that’s duplicated and distributed across a whole network of computer systems. It allows information access to all designated nodes or members who can record, share, and view encrypted transactional data on their blockchain.

Question 99

Sentient

Answer 99

Sentient means “conscious” and our goal is to provide a higher level of consciousness that is directly related to your network security, risk, and overall security posture. We do this through our holistic approach to security audits and consulting.

Question 100

DAO

Answer 100

DAO, which is the popular and convenient acronym for Decentralized Autonomous Organization, is formed by a group of people who decide to abide by certain rules to meet common goals. However, what makes DAOs different from other systems is that these rules are written into codes of the organization.