M-Z Flashcards

Question

Micro HDMI:

Answer 1

Micro HDMI: One of the standard power, data and display connector types used in mobile devices

Answer 2

Microsoft Install Package(.msi) and MSI files: Microsoft Install Package is a file extension used to guide a program called Windows Installer in the installation, maintenance, and removal of programs of the windows operating systems. MSI files are a combination of of databases that contain installation instructions in different tables along with all the files

Answer 3

Microsoft Terminal Services Client: A client program used to create RDP connections to remote computers

Answer 4

Micro USB: One of the standard power, data and display connector types used in mobile devices

Answer 5

Mini HDMI: One of the standard power, data and display connector types used in mobile devices

Answer 6

Mini USB: One of the standard power, data and display connector types used in mobile devices

Answer 7

Mobile applications: Software that is distributed on mobile OS devices

Answer 8

Mobile device management: A system used to apply and enforce rules about how the device has to be configured and used

Answer 9

Modify: An umbrella permission that includes read and execute and write

Answer 10

Modulation: A way of varying the voltage of a constant electrical charge moving across a standard copper network cable

Answer 11

Monitor mode: It allows to scan across channels to see all wireless traffic being sent by APs and clients

Answer 12

Motherboard: The body or circulatory system of the computer that connects all the pieces together

Answer 13

Mounting: Making a file or hard disk accessible to the computer

Answer 14

Multicast: A way of addressing groups of hosts all at once

Answer 15

Multicast frame: If the least significant bit in the first octet of a destination address is set to one, it means you're dealing with a multicast frame. A multicast frame is similarly set to all devices on the local network signal, and it will be accepted or discarded by each device depending on criteria aside from their own hardware MAC address

Answer 16

Multifactor authentication (MFA): A system where users are authenticated by presenting multiple pieces of information or objects

Answer 17

Multilingual user interface: Interface that offers and support different languages

Answer 18

Multiplexing: It means that nodes on the network have the ability to direct traffic toward many different receiving services

Answer 19

MX record: It stands for mail exchange and this resource record is used in order to deliver email to the correct server

Answer 20

Name resolution: This process of using DNS to turn a domain name into an IP address

Answer 21

NAS device: A network attached storage device that has hard drives to automatically create backups and store data

Answer 22

Network: The interconnection of computers

Answer 23

Network Address Translation (NAT): A mitigation tool that lets organizations use one public IP address and many private IP addresses within the network

Answer 24

Network Address Translation (NAT): A mitigation tool that lets organizations use one public IP address and many private IP addresses within the network

Answer 25

Network file system: A protocol that enables files to be shared over a network

Answer 26

Network hardening: Is the process of securing a network by reducing its potential vulnerabilities through configuration changes, and taking specific steps

Answer 27

Networking: Managing, building and designing networks

Answer 28

Networking protocols: A set of rules for how we transfer data in a network

Answer 29

Network layer: It's the layer that allows different networks to communicate with each other through devices known as routers. It is responsible for getting data delivered across a collection of networks

Answer 30

Network port: The physical connector to be able to connect a device to the network. This may be attached directly to a device on a computer network, or could also be located on a wall or on a patch panel

Answer 31

Network separation (network segmentation): A good security principle for an IT support specialists to implement. It permits more flexible management of the network, and provides some security benefits. This is the concept of using VLANs to create virtual networks for different device classes or types

Answer 32

Network software hardening: Includes things like firewalls, proxies, and VPNs

Answer 33

Network stack: A set of hardware or software that provides the infrastructure for a computer

Answer 34

Network switch: It is a level 2 or data link device that can connect to many devices so they can communicate. It can inspect the contents of the Ethernet protocol data being sent around the network, determine which system the data is intended for and then only send that data to that one system

Answer 35

Network time protocol (NTP): A network protocol used to synchronize the time between the authenticator token and the authentication server

Answer 36

Next header field: Defines what kind of header is immediately after this current one

Answer 37

Next hop: The IP address of the next router that should receive data intended for the destination networking question or this could just state the network is directly connected and that there aren't any additional hops needed. Defined as part of the routing table

Answer 38

NIST: National Institute of Standards and Technology

Answer 39

Node: Any device connected to a network. On most networks, each node will typically act as a server or a client

Answer 40

Non-metered connection: A connection where your data usage is not tracked or limited, instead you are charged a flat fee for unlimited and unrestricted usage. A Wi-Fi connection is an example of a non-metered connection

Answer 41

Non-routable address space: They are ranges of IPs set aside for use by anyone that cannot be routed to

Answer 42

Normalization: It's the process of taking log data in different formats and converting it into a standardized format that's consistent with a defined log structure

Answer 43

Northbridge: interconnects stuff like RAM and video cards

Answer 44

NS record: It indicates other name servers that may also be responsible for a particular zone

Answer 45

NTP: Network Time Protocol, keeping clocks synchronized on machines connected to a network

Answer 46

NTP servers: Used to keep all computers on a network synchronized in time

Answer 47

NVMe (NVM Express): interface standard which allows greater throughput of data and increased efficiency

Answer 48

OAuth: An open standard that allows users to grant third-party websites and applications access to their information without sharing account credentials

Answer 49

Octet: Any number that can be represented by 8 bits

Answer 50

One-time password (OTP): A short-lived token, typically a number that's entered along with a username and password

Answer 51

One-time password (OTP) tokens: Another very common method for handling multifactor

Answer 52

One-way cryptographic hash: The method used by AD to store passwords

Answer 53

OpenID: An open standard that allows participating sites known as Relying Parties to allow authentication of users utilizing a third party authentication service

Answer 54

OpenLDAP (lightweight directory access protocol): An open source and free directory service

Answer 55

Open source: This means the developers will let other developers share, modify, and distribute their software for free

Answer 56

Open SSH: The most popular program to use SSH within Linux

Answer 57

Operating system: The whole package that manages our computers resources and lets us interact with it

Answer 58

Optical Network Terminator: Converts data from protocols the fiber network can understand to those that are more traditional twisted pair copper networks can understand

Answer 59

Options field: It is sometimes used for more complicated flow control protocols

Answer 60

Organizationally Unique Identifier (OUI): The first three octets of a MAC address

Answer 61

Organizational units (OU): A hierarchical model of objects and containers that can contain objects or more organizational units

Answer 62

Organizational units (OUs): Folders that let us group related objects into units like people or groups to distinguish between individual user accounts and groups that accounts can belong to

Answer 63

OSI model: A model used to define how network devices communicate. This model has seven layers that stack on top of each other: Physical, Data Link, Network, Transport, Session, Presentation, and Application

Answer 64

OTA update: A type of update that is installed by the mobile device itself

Answer 65

Overclocking: it increases the rate of your CPU clock cycles in order to perform more tasks

Answer 66

Packaged archives: The core or source software files that are compressed into one file

Answer 67

Packaged managers: An application that makes package installation and removal easier

Answer 68

Packet sniffing (packet capture): the process of intercepting network packets in their entirety for analysis

Answer 69

Padding field: A series of zeros used to ensure the header is the correct total size

Answer 70

Pairing: When a wireless peripheral connects to a mobile device, and the two devices exchange information, sometimes including a PIN or password, so that they can remember each other

Answer 71

Pairwise Transient Key (PTK): It is generated using the PMK, AP nonce, Client nonce, AP MAC address, and Client MAC address

Answer 72

Parameter: A value that is associated with a command

Answer 73

Parent directory & child directories: A parent directory is a directory that houses all subsequent child directories

Answer 74

Parent group: Groups that are principal groups and contain other groups

Answer 75

Partition: A logical division of a hard disk that is treated as a separate unit by operating systems and file systems

Answer 76

Partition table: How the disk is partitioned on an OS

Answer 77

Password attacks: Utilize software like password crackers that try and guess your password

Answer 78

Password salt: Additional randomized data that's added into the hashing function to generate the hash that's unique to the password and salt combination

Answer 79

Patch panel: A device containing many physical network ports

Answer 80

Paths: A main directory that branches off and holds other directories and files

Answer 81

Payload: The actual data being transported, which is everything that isn't a header

Answer 82

Payload length field: 16-bit field that defines how long the data payload section of the datagram is

Answer 83

PBKDF2 (Password Based Key Derivation Function 2): Password Based Key Derivation Function 2

Answer 84

PC: Personal computer, which technically means a computer that one person uses

Answer 85

PCI DSS: Payment Card Industry Data Security Standard

Answer 86

PCI Express: Peripheral Component Interconnect Express

Answer 87

PDA (Personal Digital Assistant): Allows computing to go mobile

Answer 88

Penetration testing: The practice of attempting to break into a system or network to verify the systems in place

Answer 89

Peripherals: the external devices which we connect to our computer that add functionality, like: a mouse, a keyboard, and a monitor

Answer 90

Permission denied: An error message you might find when accessing a protected file

Answer 91

Personal package archives: A software repository for uploading source packages to be built and published

Answer 92

PGP (Pretty Good Privacy) encryption: An encryption application that allows authentication of data along with privacy from third parties relying upon asymmetric encryption to achieve this

Answer 93

Phishing attack: It usually occurs when a malicious email is sent to a victim disguised as something legitimate

Answer 94

PHPLDAPadmin: A tool to manage OpenLDAP

Answer 95

Physical layer: It represents the physical devices that interconnect computers

Answer 96

Physical tokens: They take a few different forms, such as a USB device with a secret token on it, a standalone device which generates a token, or even a simple key used with a traditional lock

Answer 97

PIN authentication method: It uses PINs that are eight-digits long, but the last digit is a checksum that's computed from the first seven digits

Answer 98

Ping flood: It sends tons of ping packets to a system. If a computer can't keep up with this, then it's prone to being overwhelmed and taken down

Answer 99

Pin Grid Array (PGA): CPU socket where the pins are located on the processor itself

Answer 100

PKI system: A system that defines the creation, storage and distribution of digital certificates

Answer 101

Platform as a service: A subset of cloud computing where a platform is provided for customers to run their services

Answer 102

Platform key: It's the public key corresponding to the private key used to sign the boot files

Answer 103

Platform services: A platform for developers to completely build and deploy software applications, without having to deal with OS maintenance, server hardware, networking or other services that are needed to use the platform tools

Answer 104

Plink (PuTTY Link): A tool built into the command line after PuTTY is installed that is used to make remote SSH connections

Answer 105

Pointer resource record: It resolves an IP to a name

Answer 106

Point-To-Point VPN: Establishes a VPN tunnel between two sites but VPN tunneling logic is handled by network devices at either side, so that users don't all have to establish their own connections

Answer 107

Policies: Settings that are reapplied every few minutes, and aren?t meant to be changed even by the local administrators

Answer 108

Port: It is a 16-bit number that's used to direct traffic to specific services running on a networked computer

Answer 109

Portable Executable (PE) format: Windows unique version of .exe

Answer 110

Port forwarding: A technique where specific destination ports can be configured to always be delivered to specific nodes

Answer 111

Port mirroring: Allows the switch to take all packets from a specified port, port range, or the entire VLAN and mirror the packets to a specified switch port

Answer 112

Port preservation: A technique where the source port chosen by a client, is the same port used by the router

Answer 113

Ports: Connection points that we can connect devices to that extend the functionality of our computer

Answer 114

POST (Power On Self Test): It figures out what hardware is on the computer

Answer 115

Post-fail analysis: Investigating how a compromise happened after the breach is detected

Answer 116

Post mortem: A way for you to document any problems you discovered along the when recovering data, and the ways you fixed them so you can make sure they don't happen again

Answer 117

Powershell: A shell (program that interprets text commands) for Windows

Answer 118

Power supply: Converts electricity from our wall outlet onto a format that our computer can use

Answer 119

Power user: Above average computer users

Answer 120

Preamble: The first part of an Ethernet frame, it is 8 bytes or 64 bits long and can itself be split into two sections

Answer 121

Precedence: When computers are processing the Group Policy Objects that apply to them, all of these policies will be applied in a specific order based on a set of precedents rules

Answer 122

Presentation layer: It is responsible for making sure that the unencapsulated application layer data is actually able to be understood by the application in question

Answer 123

Pre-shared key: It's the Wi-Fi password you share with people when they come over and want to use your wireless network

Answer 124

Preventative measures: Any procedures or systems in place that will proactively minimize the impact of a disaster

Answer 125

Primary account: The initial account you made during setup

Answer 126

Principle of least privilege: Helps to ensure that sensitive data is only accessed by people who are authorized to access it

Answer 127

Privacy policies: Oversees the access and use of sensitive data

Answer 128

Private cloud: When a company owns the services and the rest of the cloud infrastructure, whether on-site or in a remote data center

Answer 129

Processes: Help the computer run programs

Answer 130

Process Explorer: A utility Microsoft created to let IT support specialists and system administrators look at running processes

Answer 131

Process ID: Unique identifier for processes on your computer

Answer 132

Process management: The capacity to manage the many programs in a system - when to run them, the order they run in, how many resources they take up, how long they run, et cetera

Answer 133

Process monitoring: A way of monitoring what processes are happening during installation

Answer 134

Process scheduler: The part of the kernel that makes multitasking possible

Answer 135

Procurement: Hardware is purchased or reused for an employee

Answer 136

Production: The parts of the infrastructure where certain services are executed and serve to its users production

Answer 137

Programming: Coding in a programming language

Answer 138

Programming language: Special languages that software developers use to write instructions for computers to execute

Answer 139

Programs: Basic instructions that tell the computer what to do, The applications that we can run

Answer 140

Promiscuous mode: A type of computer networking operational mode in which all network data packets can be accessed and viewed by all network adapters operating in this mode

Answer 141

Prompt: A prompt shows you which directory you?re currently in

Answer 142

Protocol: A defined set of standards that computers must follow in order to communicate properly is called a protocol

Answer 143

Protocol field: A protocol field is an 8-bit field that contains data about what transport layer protocol is being used

Answer 144

Proxy: Can be useful to protect client devices and their traffic. They also provide secure remote access without using a VPN

Answer 145

Proxy server: An intermediary between a company's network and the Internet, receiving network traffic and relaying that information to the company network

Answer 146

Proxy service: A server that acts on behalf of a client in order to access another service

Answer 147

Pseudo-random: Something that isn't truly random

Answer 148

PSH flag: One of the TCP control flags. PSH is short for push. This flag means that the transmitting device wants the receiving device to push currently- buffered data to the application on the receiving end as soon as possible

Answer 149

Public cloud: The cloud services provided by a third party

Answer 150

Public cloud: The cloud services provided by a third party

Answer 151

Public DNS servers: Name servers specifically set up so that anyone can use them for free

Answer 152

Public key authentication: A key pair is generated by the user who wants to authenticate

Answer 153

Public key signatures: Digital signature generated by composing the message and combining it with the private key

Answer 154

Punch cards: A sequence of cards with holes in them to automatically perform calculations instead of manually entering them by hand

Answer 155

Quad A (AAAA) record: It is very similar to an A record except that it returns in IPv6 address instead of an IPv4 address

Answer 156

Qwiklabs: An online platform which provides training in cloud services

Answer 157

RA (Registration Authority): It is responsible for verifying the identities of any entities requesting certificates to be signed and stored with the CA

Answer 158

RAID (redundant array of independent disks): A method of taking multiple physical disks and combining them into one large virtual disk

Answer 159

Rainbow table attacks: To trade computational power for disk space by pre-computing the hashes and storing them in a table

Answer 160

Rainbow tables: A pre-computed table of all possible password values and their corresponding hashes

Answer 161

RAM: Random Access Memory

Answer 162

Random numbers: A very important concept in encryption because it avoids some kind of pattern that an adversary can discover through close observation and analysis of encrypted messages over time

Answer 163

Ransomware: A type of attack that holds your data or system hostage until you pay some sort of ransom

Answer 164

RC4 (Rivest Cipher 4): Asymmetric stream cipher that gained widespread adoption because of its simplicity and speed

Answer 165

Read and execute permission: Permissions that grant you access to read the file that exists and execute it if its runnable

Answer 166

Read permission: Permissions that grant you access to read the file that exists

Answer 167

Read-write replicas: Domain controllers in the Active Directory network that each have a complete copy of the AD database and are able to make changes to it

Answer 168

Receiving address: The MAC address of the access point that should receive the frame

Answer 169

Recoverability: How complicated and time-consuming the recovery effort will be

Answer 170

Recursive name servers: Servers that perform full DNS resolution requests

Answer 171

Re-flash: A way to preserve end-user data on a device that you plan on resetting

Answer 172

Regions: A geographical location containing a number of data centers

Answer 173

Registers: An accessible location for storing the data that our CPU works with

Answer 174

Registrar: An organization responsible for assigning individual domain names to other organizations or individuals

Answer 175

Regular expression: A pattern matching language that describes words, phrases, or more complicated patterns; regular expressions are used to help you do advanced pattern based selection

Answer 176

Reimaging: The process of reimaging involves wiping and reinstalling an operating system using a disk image which is a copy of an operating system

Answer 177

Relative path: It is a path from your current directory

Answer 178

Remote attestation: The idea of a system authenticating its software and hardware configuration to a remote system

Answer 179

Remote Authentication Dial-in User Service (RADIUS): A protocol that provides AAA services for users on a network

Answer 180

Remote connection: The ability to connect an authorized person to a computer or network remotely; allows us to manage multiple machines from anywhere in the world

Answer 181

Remote Desktop Protocol (RDP): A secure network communication protocol developed by Microsoft that allows a user to connect to another device remotely

Answer 182

Remote wipe: A factory reset that you can trigger from your central MDM rather than having to do it in person on the device

Answer 183

Replication: the store directory data is copied and distributed across a number of physically distributed servers but still appears as one unified data store for querying and administering

Answer 184

Replication failure: A reason that a GPO might fail to apply as expected

Answer 185

Repository: A server that acts like a central storage location for packages

Answer 186

Reproduction case: Recreating an error to test a solution to make sure the problem is gone after a fix has been applied

Answer 187

Reset: When an SysAdmin restores or resets the password of a user

Answer 188

Resource monitoring: The most common way to quickly take a peek at how system resources are doing

Answer 189

Restart: A command that will let the machine reboot to complete a domain join

Answer 190

Restoration procedures: A recovery process and process needs to be tested regularly that is documented and accessible so that anyone with the right access can restore operation when needed

Answer 191

Resultant set of policy (RSOP): The policy that forms when all of the group policies have been grouped together for a specific machine and apply precedence rules to them

Answer 192

Retirement: Hardware becomes unusable or no longer needed, and it needs to be properly removed from the fleet

Answer 193

Return merchandise authorization (RMA): The process of receiving returned merchandise and authorizing a refund

Answer 194

Reverse lookup zone files: They let DNS resolvers ask for an IP, and get the FQDN associated with it returned

Answer 195

Reverse proxy: A service that might appear to be a single server to external clients, but actually represents many servers living behind it

Answer 196

RGB model: RGB or red, green, and blue model is the basic model of representing colors

Answer 197

Risk: The possibility of suffering a loss in the event of an attack on the system

Answer 198

Risk assessment: Allows you to prioritize certain aspects of the organization that are more at risk if there?s an unforeseen event

Answer 199

Risk mitigation: Understanding the risks your systems face, take measures to reduce those risks, and monitor them

Answer 200

Rogue Access Point (AP) Attack: An access point that is installed on the network without the network administrator's knowledge

Answer 201

Rogue DHCP server attack: An attacker can hand out DHCP leases with whatever information they want by deploying a rogue DHCP server on your network, setting a gateway address or DNS server, that's actually a machine within their control

Answer 202

Role-based access control (RBAC): The process of changing a persons group that they are a part of when they have changed roles within a company to limit or change their access to resources

Answer 203

Rollback: Reverting to the previous state before you made changes

Answer 204

ROM chip (Read Only Memory): A read-only memory chip where the BIOS is stored

Answer 205

Root cause: The main factor that's causing a range of issues

Answer 206

Root certificate authority: They are self signed because they are the start of the chain of trust, so there's no higher authority that can sign on their behalf

Answer 207

Root directory: A parent directory for all other directories in a file system

Answer 208

Rootkit: A collection of software or tools that an admin would use

Answer 209

Root user: It is the first user that gets automatically created when we install a Linux OS and has all the privileges on the OS. Also called the super user. There's technically only one superuser or root account, but anyone that's granted access to use their powers can be called a superuser too

Answer 210

Round robin: It is a concept that involves iterating over a list of items one by one in an orderly fashion

Answer 211

Router: A device that knows how to forward data between independent networks

Answer 212

Routing protocols: Special protocols the routers use to speak to each other in order to share what information they might have

Answer 213

RPM: Revolutions per minute

Answer 214

RSA: One of the first practical asymmetric cryptography systems to be developed, named for the initials of the three co-inventors: Ron Rivest, Adi Shamir and Leonard Adleman

Answer 215

RSOP report: The process of troubleshooting group policy and comparing what you expect to be applied to a computer and the resultant set of policy report

Answer 216

RST flag: One of the TCP control flags. RST is short for reset. This flag means that one of the sides in a TCP connection hasn't been able to properly recover from a series of missing or malformed segments

Answer 217

SACL?s: System Access Control List

Answer 218

Safe operating temperature: The temperature range in which rechargeable batteries must be kept in order to avoid demanage

Answer 219

SATA: The most popular serial ATA drive, which uses one cable for data transfers

Answer 220

Scalability: The measure of a system?s ability to increase or decrease in performance and cost in response to varying loads in system processing demands

Answer 221

Screen lock: A security feature that helps prevent unwanted access by creating an action you have to do to gain entry

Answer 222

Script: It is run by an interpreter, which interprets the code into CPU instructions just in time to run them

Answer 223

Scripting: Coding in a scripting language

Answer 224

Scripts: Mainly used to perform a single or limited range task

Answer 225

SD devices: Mass storage devices like hard drives

Answer 226

SDRAM: It stands for Synchronous DRAM, this type of RAM is synchronized to our systems' clock speed allowing quicker processing of data

Answer 227

Secondary or stand-by machine: A machine that is the same as a production machine, but won't receive any traffic from actual users until enabled

Answer 228

Secure boot protocol: It uses public key cryptography to secure the encrypted elements of the boot process

Answer 229

Secure channel: It is provided by IPsec, which provides confidentiality, integrity, and authentication of data being passed

Answer 230

Secure copy: A command you can use in Linux to copy files between computers on a network

Answer 231

Secure element: It's a tamper resistant chip often embedded in the microprocessor or integrated into the mainboard of a mobile device

Answer 232

Secure Shell (SSH): A secure network protocol that uses encryption to allow access to a network service over unsecured networks

Answer 233

Security: It's all about determining risks or exposure understanding the likelihood of attacks; and designing defenses around these risks to minimize the impact of an attack

Answer 234

Security account manager (SAM): A database in windows that stores user names and password

Answer 235

Security filtering: A tool to make group policies apply more selectively

Answer 236

Security group: One of the two categories that groups in Active Directories can be part of, they can contain user accounts, computer accounts or other security groups

Answer 237

Security information and event management systems (SIEMS): Form of centralized logging for security administration purposes

Answer 238

Security keys: Small embedded cryptoprocessors, that have secure storage of asymmetric keys and additional slots to run embedded code

Answer 239

Security patch: A piece of software that is meant to fix up a security hole

Answer 240

Security principal: Any entity that can be authenticated by the system, such as a user account, a computer account, or a thread or process that runs in the security context of a user or computer account

Answer 241

Security through obscurity: The principle that if no one knows what algorithm is being used or general security practices, then one is safe from attackers

Answer 242

Seed value: A secret value that is used to initialize a process that is generated by software using one or more values

Answer 243

Self-signed certificate: This certificate has been signed by the same entity that issued the certificate

Answer 244

Sequence control field: A field that is 16 bits long and mainly contains a sequence number used to keep track of ordering the frames

Answer 245

Sequence number: A 32-bit number that's used to keep track of where in a sequence of TCP segments this one is expected to be

Answer 246

Serial number: A unique identifier for their certificate assigned by the CA which allows the CA to manage and identify individual certificates

Answer 247

Server: A device that provides data to another device that is requesting that data, also known as a client

Answer 248

Server: Software or a machine that provides services to other software or machines

Answer 249

Server logs: Text files that contains recorded information about activities performed on a specific web server in a defined period of time

Answer 250

Server operating systems: Regularly operating systems that are optimized for server functionality

Answer 251

Server or Service: A program running on a computer waiting to be asked for data

Answer 252

Servers: Devices that provide data to other devices that request that data, also known as a client

Answer 253

Service discovery: One of the services that the domain controller provides to the clients

Answer 254

Service type field: A eight bit field that can be used to specify details about quality of service or QoS technologies

Answer 255

Session hijacking (cookie hijacking): A common meddler in the middle attack

Answer 256

Session key: The shared symmetric encryption key using TLS sessions to encrypt data being sent back and forth

Answer 257

Session layer: The network layer responsible for facilitating the communication between actual applications and the transport layer

Answer 258

Session manager subsystem: Process that is in charge of setting some stuff up to work for the OS

Answer 259

Severity: Includes factors like what and how many systems were compromised and how the breach affects business functions

Answer 260

SHA1: It is part of the secure hash algorithm suite of functions, designed by the NSA and published in 1995

Answer 261

Shannon's maxim: It states that the system should remain secure, even if your adversary knows exactly what kind of encryption systems you're employing, as long as your keys remain secure

Answer 262

Shared folders: A way to share files between computers on the same network on Windows

Answer 263

Shell: A program that interprets text commands and sends them to the OS to execute

Answer 264

Shortcut: An entry in the MFT that has a reference to some destination, so that when you open it up, you get taken to that destination

Answer 265

Short-range wireless network: It is what mobile devices uses to connect to their peripherals

Answer 266

Side-by-side assemblies: A system that manages most shared libraries and resources on Windows and supports access to multiple versions of the same shared library automatically

Answer 267

Side-loading: A process of installing mobile apps directly without using an app store

Answer 268

Signal: A way to tell a process that something has just happened

Answer 269

Simple authentication and security layer (SASL): The authentication method that can employ the help of security protocols like TLS, it requires the client and the directory server to authenticate using some method

Answer 270

Simple permissions: Special or specific permissions

Answer 271

Simplex communication: A form of data communication that only goes in one direction across a cable

Answer 272

Single point of failure: When one system in a redundant pair suffers a failure

Answer 273

Single sign on (SSO): An account that grants you access to multiple accounts without require constant entry of a password or username

Answer 274

SOC (System On a Chip): Packs the CPU, Ram, and sometimes even the storage onto a single chip

Answer 275

Social engineering: An attack method that relies heavily on interactions with humans instead of computers

Answer 276

Socket: The instantiation of an endpoint in a potential TCP connection

Answer 277

Softlinks: A shortcut in Linux, that allows us to link to another file using a file name

Answer 278

Software: The intangible instructions that tell the hardware what to do

Answer 279

Software as a Service (SaaS): A way of licensing the use of software to others while keeping that software centrally hosted and managed

Answer 280

Software bug: An error in software that causes unexpected results

Answer 281

Software management: A broad term used to refer to any and all kinds of software that are designed to manage or help manage some sort of project or task

Answer 282

Software services: The services that employees use that allow them to do their daily job functions, such as word processors, Internet browsers, email clients, chat clients, and more

Answer 283

Software signing certificate: Trust mechanism where a software vendor can cryptographically sign binaries they distribute using a private key

Answer 284

Source MAC address: The hardware address of the device that sent the ethernet frame or data packet. In the data packet it follows the destination MAC address

Answer 285

Source port: A high numbered port chosen from a special section of ports known as ephemeral ports

Answer 286

Southbridge: It maintains our IO or input/output controllers, like hard drives and USB devices that input and output data

Answer 287

Spear phishing: Phishing that targets individual or group - the fake emails may contain some personal information like your name, or the names of friends or family

Answer 288

Spoofing: When a source is masquerading around as something else

Answer 289

Spyware: The type of malware that's meant to spy on you

Answer 290

SQL Injection Attack: An attack that targets the entire website if the website is using a SQL database

Answer 291

SRV record: A service record used to define the location of various specific services

Answer 292

SSD: Solid State Drive

Answer 293

SSH (Secure shell): A protocol implemented by other programs to securely access one computer from another

Answer 294

SSH authentication key: A secure authentication method for accessing a computer from other device

Answer 295

SSH client: A program you must have installed on your device in order to establish an SSH connection with another device

Answer 296

SSH server: Software installed on a machine that allows for that device to accept an SSH connection

Answer 297

SSL/TLS Client Certificate: Certificates that are bound to clients and are used to authenticate the client to the server, allowing access control to a SSL/TLS service

Answer 298

SSL 3.0: The latest revision of SSL that was deprecated in 2015

Answer 299

Standard error (stderr): A data stream that redirects the output of error messages in a different output stream. It works both in Linux and Windows

Answer 300

Standard In (stdin): A data stream in which the input that you provide through the keyboard goes to the standard in stream of the process that you're interacting with. It works both in Linux and Windows

Answer 301

Standardization: A systematic way of naming hosts

Answer 302

Standard out (stdout): A data stream that, when a process creates output, it adds data to the standard out stream, which flows out of the process. It works both in Linux and Windows

Answer 303

Standard user: A user who is given access to the machine but has restricted access to do thing like install software or change certain setting

Answer 304

Standoffs: Used to raise and attach your motherboard to the case

Answer 305

Start Frame Delimiter (SFD): The last byte in the preamble, that signals to a receiving device that the preamble is over and that the actual frame contents will now follow

Answer 306

Start of authority: A declaration of the zone and the name of the name server that is authoritative for it

Answer 307

StartTLS: It permits a client to communicate using LDAP v3 over TLS

Answer 308

Static IP address: An IP address that must be manually configured on a node

Answer 309

Steganography: The practice of hiding information from observers, but not encoding it

Answer 310

Stream ciphers: It takes a stream of input and encrypts the stream one character or one digit at a time, outputting one encrypted character or digit at a time

Answer 311

Subdirectories: A directory below or at a deeper level in the directory hierarchy

Answer 312

Subject: This field contains identifying information about the entity the certificate was issued to

Answer 313

Subject Public Key Info: These two subfields define the algorithm of the public key along with the public key itself

Answer 314

Subnet mask: 32-bit numbers that are normally written as four octets of decimal numbers

Answer 315

Subnetting: The process of taking a large network and splitting it up into many individual smaller sub networks or subnets

Answer 316

Substitution cipher: An encryption mechanism that replaces parts of your plaintext with ciphertext

Answer 317

Suspended apps: A command that will tell the OS to suspend background mobile apps

Answer 318

Swap space: The allocated space where the virtual memory is stored on the hard drive when the amount of physical memory space is used up or full

Answer 319

Switches: Devices that help our data travel

Answer 320

Symbolic links: Work similarly to shortcuts, but at the file system level. The key difference is that the operating system treats them like substitutes for the file they're linked to in almost every meaningful way

Answer 321

Symmetric Digital Subscriber Line (SDSL): A device that establishes data connections across phone lines and has upload and download speeds that are the same

Answer 322

Symmetric key algorithm: Encryption algorithms that use the same key to encrypt and decrypt messages

Answer 323

SYN_RECEIVED: A TCP socket state that means that a socket previously in a listener state, has received a synchronization request and sent a SYN_ACK back

Answer 324

SYN_SENT: A TCP socket state that means that a synchronization request has been sent, but the connection hasn't been established yet

Answer 325

SYN flag: One of the TCP flags. SYN stands for synchronize. This flag is used when first establishing a TCP connection and make sure the receiving end knows to examine the sequence number field

Answer 326

SYN flood: The server is bombarded with SYN packets

Answer 327

Sysinternals package: A set of tools released by Microsoft that can help you troubleshoot

Answer 328

System: A group of hardware components and software components that work together to fun the programs or processes in the computer

Answer 329

System Administration: The field in IT that is responsible for maintaining reliable computer systems, in a Multi-user environment

Answer 330

System properties: A control panel applet that allows you to edit the size and number and location of paging files

Answer 331

Systems administrator (sysadmin): A person who works only in system administration, configuring servers, monitoring the network, provisioning, or setting up new users in computers and taking responsibility of systems

Answer 332

System settings: Settings like display resolution, user accounts, network, devices, etc

Answer 333

System software: Software used to keep our core system running, like operating system tools and utilities

Answer 334

Tab completion: A way to auto-complete a command or file names and directories

Answer 335

TACACS+: It is a device access AAA system that manages who has access to your network devices and what they do on them

Answer 336

Tailgating: Gaining access into a restricted area or building by following a real employee in

Answer 337

Task bar: It gives us quick options and shows us information like network connectivity, the date, system notifications, sound etc

Answer 338

Task Manager: A Windows utility that allows you to gain information about what tasks you have running in the background

Answer 339

T-Carrier technologies: Technologies Invented to transmit multiple phone calls over a single link. Eventually, they also became common transmission systems to transfer data much faster than any dial-up connection could handle

Answer 340

TCP checksum: A mechanism that makes sure that no data is lost or corrupted during a transfer

Answer 341

Tcpdump: It's a super popular, lightweight command-line based utility that you can use to capture and analyze packets

Answer 342

TCP segment: A payload section of an IP datagram made up of a TCP header and a data section

Answer 343

TCP window: The range of sequence numbers that might be sent before an acknowledgement is required

Answer 344

Terminal: A text based interface to the computer

Answer 345

Termination signal: A kill command that will stop whatever process you tell it to

Answer 346

Test environment: A virtual machine running the same configuration as a production environment, but isn't actually serving any users of the service

Answer 347

Thermal paste: A substance used to better connect our CPU and heat sink, so the heat transfers from to the other better

Answer 348

Threat: The possibility of danger that could exploit a vulnerability

Answer 349

Threats & password policies: Protects Data & IP, Data Protection, Infrastructure Defense, Identity Management, and users

Answer 350

Ticket granting service (TGS): It decrypts the Ticket Granting Ticket using the Ticket Granting Service secret key, which provides the Ticket Granting Service with the client Ticket Granting Service session key

Answer 351

Time-based token (TOTP): A One-Time-Password that's rotated periodically

Answer 352

Time slice: A very short interval of time that gets allocated to a process for CPU execution

Answer 353

Time-To-Live field (TTL): An 8-bit field that indicates how many router hops a datagram can traverse before it's thrown away

Answer 354

TKIP (Temporal Key Integrity Protocol): To address the shortcomings of WEP security

Answer 355

TLS 1.2: The current recommended revision of SSL

Answer 356

TLS 1.2 with AES GCM: A specific mode of operation for the AES block cipher that essentially turns it into a stream cipher

Answer 357

TLS Handshake: A mechanism to initially establish a channel for an application to communicate with a service

Answer 358

Top Level Domain (TLD): The top level of the DNS or the last part of a domain name. For example, the ?com? in www.weather.com

Answer 359

Total hops: The total number of devices data passes through to get from its source to its destination. Routers try to choose the shortest path, so fewest hops possible. The routing table is used to keep track of this

Answer 360

Total length field: A 16-bit field that indicates the total length of the IP datagram it's attached to

Answer 361

TPM (Trusted Platform Module): This is a hardware device that's typically integrated into the hardware of a computer, that's a dedicated crypto processor

Answer 362

Traffic class field: An 8-bit field that defines the type of traffic contained within the IP datagram and allows for different classes of traffic to receive different priorities

Answer 363

Transfer Control Protocol (TCP): A protocol that handles reliable delivery of information from one network to another

Answer 364

Transmission Control Protocol (TCP): The data transfer protocol most commonly used in the fourth layer. This protocol requires an established connection between the client and server

Answer 365

Transmitter address: The MAC address of whatever has just transmitted the frame

Answer 366

Transport layer: The network layer that sorts out which client and server programs are supposed to get the data

Answer 367

Transport mode: One of the two modes of operations supported by IPsec. When used, only the payload of the IP packet is encrypted, leaving the IP headers untouched

Answer 368

Trim: A command to delete unused data blocks so the space can be used for the computer?s storage needs

Answer 369

Trojan: Malware that disguises itself as one thing but does something else

Answer 370

Troubleshooting: The ability to diagnose and resolve a problem

Answer 371

Trusted execution environment (TEE): It provides a full-blown isolated execution environment that runs alongside the main OS

Answer 372

TTL: The lifetime limit of data given in seconds. This number can be configured by the owner of a domain name for how long a name server is allowed to cache in entry before it should discard it and perform a full resolution again

Answer 373

Tunnel: It is provided by L2TP, which permits the passing of unmodified packets from one network to another

Answer 374

??Tunnel mode: One of the two modes of operations supported by IPsec. When used, the entire IP packet, header, payload, and all, is encrypted and encapsulated inside a new IP packet with new headers

Answer 375

Twisted pair cable: The most common type of cabling used for connecting computing devices. It features pairs of copper wires that are twisted together

Answer 376

Two-factor authentication: A technique where more than just a username and password are required to authenticate. Usually, a short-lived numerical token is generated by the user through a specialized piece of hardware or software

Answer 377

TXT record: It stands for text and was originally intended to be used only for associating some descriptive text with a domain name for human consumption

Answer 378

Type-C connector: A type of USB connector meant to replace many peripheral connections

Answer 379

Types of DNS servers: There are five primary types of DNS servers; caching name servers, recursive name servers, root name servers, TLD name servers, and authoritative name servers

Answer 380

U2F (Universal 2nd Factor): It's a standard developed jointly by Google, Yubico and NXP Semiconductors that incorporates a challenge-response mechanism, along with public key cryptography to implement a more secure and more convenient second-factor authentication solution

Answer 381

Ubuntu: The most popular Linux consumer distribution

Answer 382

UEFI: United Extensible Firmware Interface, a new standard for BIOS

Answer 383

Unbind: It closes the connection to the LDAP server

Answer 384

Unicast transmission: A unicast transmission is always meant for just one receiving address

Answer 385

Uniform Resource Locator (URL): A web address similar to a home address

Answer 386

Universal: The tool that is used to group global roles in a forest

Answer 387

Unix epoch: It is the number of seconds since midnight on January first, 1970. It's a 'Zero Hour' for Unix based computers to anchor their concept of time

Answer 388

Urgent pointer field: A field used in conjunction with one of the TCP control flags to point out particular segments that might be more important than others

Answer 389

URG flag: One of the TCP control flags. URG is short for urgent. A value of one here indicates that the segment is considered urgent and that the urgent pointer field has more data about this

Answer 390

USB (Universal Serial Bus): A connection standard for connecting peripherals to devices such as computers

Answer 391

USB-C adapter: One of the standard power, data and display connector types used in mobile devices

Answer 392

User configuration: Contained within a Group Policy Object (GPO)

Answer 393

User Datagram Protocol (UDP): A transfer protocol that does not rely on connections. This protocol does not support the concept of an acknowledgement. With UDP, you just set a destination port and send the data packet

Answer 394

User Groups: The management of resources on a computer and on a network through organizing user accounts into various groups

Answer 395

User name: A unique identifier for a user account

Answer 396

Username and password authentication: Can be used in conjunction with certificate authentication, providing additional layers of security

Answer 397

User space: The aspect of an operating system that humans interact with directly like programs, such as text editors, music players, system settings, user interfaces, et cetera

Answer 398

UTF-8: The most prevalent encoding standard used today

Answer 399

UUID: Universally Unique ID

Answer 400

Validity: This field contains two subfields, Not Before and Not After, which define the dates when the certificate is valid for

Answer 401

Variable: Files that constantly change

Answer 402

Vendor risk review: Questionnaire that covers different aspects of their security policies procedures and defenses

Answer 403

Version: What version of the X.509 standard certificate adheres to

Answer 404

Version field: First field in an IP header that specifies the version of IP

Answer 405

Virtual Box: An application you can use to install Linux and have it completely isolated from your machine

Answer 406

Virtual instance: A single virtual machine

Answer 407

Virtualization: A single physical machine called a host runs many individual virtual instances called guests

Answer 408

Virtual LAN (VLAN): It is a technique that lets you have multiple logical LANs operating on the same physical equipment

Answer 409

Virtual machine (VM): An application that uses physical resources like memory, CPU and storage, but they offer the added benefit of running multiple operating systems at once

Answer 410

Virtual memory: A combination of hard drive space and RAM that acts like memory which our processes can use

Answer 411

Viruses: The best known type of malware

Answer 412

VLAN header: A piece of data that indicates what the frame itself is. In a data packet it is followed by the EtherType

Answer 413

Volume: A format for a filesystem on a partition

Answer 414

VPN (Virtual Private Network): A secure method of connecting a device to a private network over the internet

Answer 415

Vulnerability: A flaw in the system that could be exploited to compromise the system

Answer 416

Vulnerability scanner: Detect lots of things, ranging from misconfigured services that represent potential risks, to detecting the presence of back doors and systems

Answer 417

WannaCry Attack: A cyber attack that started in Europe and infected hundreds of thousands of computers across the world

Answer 418

Web of trust: It is where individuals instead of certificate authorities sign other individuals' public keys

Answer 419

Web server: A web server stores and serves content to clients through the Internet.

Answer 420

WEP (Wired Equivalent Privacy): First security protocol introduced for Wi-FI networks

Answer 421

Wide area network: Acts like a single network but spans across multiple physical locations. WAN technologies usually require that you contract a link across the Internet with your ISP

Answer 422

Wi-Fi Protected Access (WPA): A security program that uses a 128-bit key to protect wireless computer networks, which makes it more difficult to crack than WEP

Answer 423

Wildcard: A character that is used to help select files based on a certain pattern

Answer 424

Windows domain: A network of computers and users that are added to a central database

Answer 425

Windows management instrumentation (WMI): The container that is used to define powerful targeting rules for your GPO

Answer 426

Windows registry: A hierarchical database of settings that Windows, and Windows applications, use for storing configuration data

Answer 427

Windows Search service: A service that indexes files on your computer by looking through them on a schedule

Answer 428

Windows store: A Windows store is an application repository or warehouse where you can download and instal universal Windows platform apps

Answer 429

Windows update client service: System that runs in the background on your computer to download and install updates and patches for your operating system

Answer 430

Wired Equivalence Privacy (WEP): An encryption technology that provides a very low level of privacy. WEP should really only be seen as being as safe as sending unencrypted data over a wired connection

Answer 431

Wireless access point: A device that bridges the wireless and wired portions of a network

Answer 432

Wireless LANS (WLANS): One or more access points act as a bridge between a wireless and a wired network

Answer 433

Wireless networking: Networks you connect to through radios and antennas

Answer 434

Wireshark: It's another packet capture and analysis tool that you can use, but it's way more powerful when it comes to application and packet analysis, compared to tcpdump

Answer 435

WMI filter: A tool to make group policies apply more selectively on the configuration of the computer

Answer 436

Work group computer: A Windows computer that isn't joined to a domain

Answer 437

World Wide Web (WWW): The information system that enables documents and other web resources to be accessed over the Internet

Answer 438

Worms: They are similar to viruses except that instead of having to attach themselves onto something to spread, worms can live on their own and spread through channels like the network

Answer 439

WPA (Wi-fi protected access): Designed as a short-term replacement that would be compatible with older WEP-enabled hardware with a simple firmware update

Answer 440

WPA2 Enterprise: It's an 802.1x authentication to Wi-Fi networks

Answer 441

WPS (Wifi Protected Setup): It's a convenience feature designed to make it easier for clients to join a WPA-PSK protected network

Answer 442

Write permission: A permission that allows you to make changes to a file

Answer 443

X.500 directory: The agreed upon directory standard that wa approved in 1988 that includes, DAP, DSP, DISP, DOP, DAP, and LDAP

Answer 444

X.509 standard: It is what defines the format of digital certificates, as well as a certificate revocation list or CRL

Answer 445

XTACACS: It stands for Extended TACACS, which was a Cisco proprietary extension on top of TACACS

Answer 446

Zone Files: Simple configuration files that declare all resource records for a particular zone

Answer 447

0-Day Vulnerability (Zero Day): A vulnerability that is not known to the software developer or vendor, but is known to an attacker

M-Z Flashcards

IT Support Certificate glossary M-Z (471 cards)