Help
Options
Didn't know it?
click below
click below
Knew it?
click below
click below
Don't Know
Remaining cards (0)
Know
retry
shuffle
restart
0:00
Embed Code - If you would like this activity on your web page, copy the script below and paste it into your web page.
Normal Size Small Size show me how
Normal Size Small Size show me how
LEARN
| Term | Definition |
|---|---|
| Threats | Potential harmful events or actors capable of exploiting weaknesses in a system. |
| Vulnerabilities | Flaws or weaknesses in systems, processes, or configurations that can be exploited. |
| Risk Management | The process of identifying, evaluating, and prioritising risks to apply appropriate security controls. |
| Incident Detection & Response | The structured practice of identifying security incidents and taking action to contain, eradicate, and recover. |
| Secure Workflows | Processes designed to ensure tasks follow confidentiality, integrity, and least‑privilege principles. |
| TCP/IP (Transmission Control Protocol / Internet Protocol) | The core communication suite that enables devices to exchange data across networks. |
| DNS (Domain Name System) | A naming system that converts human‑readable domain names into IP addresses. |
| DHCP (Dynamic Host Configuration Protocol) | A protocol that automatically assigns IP addresses and network settings to devices. |
| Routing | The process of directing network traffic along optimal paths between networks. |
| Packet Analysis | Inspecting individual network packets to understand communication or detect anomalies. |
| IDS Concepts (Intrusion Detection System Concepts) | Methods used to detect suspicious or malicious activity on networks or hosts. |
| Protocol Behaviour | The expected rules and message patterns that define how network protocols operate. |
| Networking | The design and operation of systems that allow devices to communicate and share data. |
| Network Security | Protecting networked systems through monitoring, access control, segmentation, and threat detection. |
| Digital Forensics | The structured investigation of digital systems to collect, preserve, and analyse evidence. |
| Evidence Acquisition | Capturing digital evidence in a forensically sound, tamper‑proof manner. |
| Log Analysis | Reviewing system and application logs to reconstruct events or identify anomalies. |
| Registry Analysis | Examining Windows Registry data to uncover system activity and configuration changes. |
| PCAP Analysis (Packet Capture Analysis) | Investigating captured network traffic to identify patterns or malicious behaviour. |
| Forensic Frameworks | Standardised methodologies (e.g., NIST, ACPO) that guide consistent forensic investigations. |
| Cryptography | The science of securing information using mathematical algorithms and transformations. |
| AES (Advanced Encryption Standard) | A modern symmetric encryption algorithm known for strong security and efficiency. |
| DES (Data Encryption Standard) | An older symmetric encryption algorithm now considered insecure due to its short key length. |
| RSA (Rivest–Shamir–Adleman) | A widely used asymmetric encryption algorithm based on public and private keys. |
| Stream Ciphers | Encryption algorithms that encrypt data one bit or byte at a time using a keystream. |
| Encryption/Decryption Concepts | The transformation of plaintext into ciphertext and back using keys and algorithms. |
| Malware | Malicious software designed to disrupt, damage, or gain unauthorised access to systems. |
| Threat Analysis | Evaluating adversary behaviour, capabilities, and intent to understand potential attacks. |
| Classification Concepts | Categorising malware based on behaviour, propagation method, or payload. |
| Detection Strategies | Techniques such as signatures, heuristics, behavioural analysis, and ML used to identify threats. |
| Python | A high‑level programming language used for automation, scripting, data analysis, and application development. |
| Bash (Bourne Again Shell) | A command‑line shell and scripting language used to automate tasks on Linux/Unix systems. |
| Object‑Oriented Programming Fundamentals | A paradigm that organises code into reusable objects with attributes and behaviours. |
| Algorithmic Thinking | Breaking problems into logical steps and designing efficient, structured solutions. |
| SQL (Structured Query Language) | A language used to query and manage data in relational databases. |
| Data Modelling | Structuring data into logical relationships to support storage, querying, and analysis. |
| Exploratory Data Analysis (EDA) | Investigating datasets to uncover patterns, trends, and anomalies. |
| Supervised & Unsupervised ML (Machine Learning) | Learning from labelled data (supervised) or discovering patterns without labels (unsupervised). |
| Log Analytics | Analysing large volumes of log data to detect issues, trends, or security events. |
| Secure Software Development | Building software with security integrated throughout design, coding, testing, and deployment. |
| Secure Coding Practices | Writing code that avoids common vulnerabilities and follows defensive programming principles. |
| Vulnerability Identification & Code Bug Detection | Finding weaknesses or logic flaws through scanning, testing, and review. |
| Web App Security | Protecting web applications from threats like XSS, SQL injection, CSRF, and authentication flaws. |
| Arping | A tool that sends ARP requests to discover hosts and test Layer 2 connectivity. |
| Hping3 | A packet‑crafting tool used for scanning, firewall testing, and simulating network traffic. |
| Nikto | A web server scanner that identifies vulnerabilities and misconfigurations. |
| TestSSL | A tool that analyses SSL/TLS configurations for weaknesses. |
| GoldenEye | A stress‑testing tool used to simulate HTTP DoS attacks. |
| Wireshark | A packet‑capture and analysis tool for inspecting network traffic. |
| SIEM Concepts (Security Information and Event Management) | Systems that collect, correlate, and analyse security logs to detect threats. |
| Agile Workflows | Iterative, collaborative development processes focused on adaptability and continuous improvement. |
| DevOps Basics | Practices that integrate development and operations to automate delivery and improve reliability. |
| Version Control | Systems like Git that track code changes and enable collaboration, rollback, and branching. |
Created by:
ee2315