Describe these web application attacks: SQL Injection, Command injections, Cross-site scripting Implementing Cisco Cybersecurity Operations (210-255) SQL Injection SQL Injection attacks use vulnerabilities in applications, generally web based, to inject SQL commands. These commands could reveal data that the application would not normally show an unprivileged users. They can also be used to create additional […]
Describe these network attacks: Denial of Service, Distributed Denial of Service, Man-in-the-Middle Implementing Cisco Cybersecurity Operations (210-255) Denial of Service A Denial of Service (DoS) attack has the goal of preventing normal operations of an asset. This can be accomplished by either rendering an asset unavailable due to a crash or reboot, or by overwhelming […]
Compare and contrast an attack surface and vulnerability. Implementing Cisco Cybersecurity Operations (210-255) The attack surface of a piece of hardware or software is the total of all potential attack vectors. An attack vector can be a service or other entry point. To be used in an attack there must be a vulnerability present that […]
5.3 Describe these concepts as they relate to security monitoring Access Control List: ACLs are used to filter traffic based on source and/or destination. Logs created by ACLs can be useful to monitor for certain types of traffic. NAT/PAT: Network Address Translation and Port Address Translation hide internal addresses behind public IP addresses. For security […]
© Ben Story 2024.
© Pack IT Forwarding 2024. Powered by WordPress
