an email-based social engineering attack in which the attacker sends an email from a supposedly reputable source, such as a bank, to try to elicit private information from the victim.

Dictionary Attack

Temporal Key Integrity Protocol

used to mount and service Windows images before deployment.

Brute Force Attack

TACACS+

stores a value of TRUE (1) or FALSE (0). It usually consumes only 1 bit of storage (a zero or a one).

WiFi Protected Access

Terminal Access Controller Access Control System

CRLF injection

a security posture where the system will only allow an item to traverse the firewall if the traffic matches an existing rule.

Phishing

NT File System (NTFS)

copies all of the files from one directory to another.

Deployment Image Servicing and Management

WiFi Protected Access Version 3

a Windows file system that supports a 64-bit address space and can provide extra features such as file-by-file compression and RAID support as well as advanced file attribute management tools, encryption, and disk quotas.

Group Policy

an extension to TACACS (Terminal Access Controller Access Control System) and was developed as a proprietary protocol by Cisco.

WiFi Protected Access Version 2

used to mirror or synchronize directories and their contents. This tool, will check the destination directory and remove files no longer in the main tree. It also checks the files in the destination directory against the files to be copied and doesn't waste time copying unchanged files.

Universal Disk Format (UDF or ISO 13346)

is a network authentication protocol designed to provide strong mutual authentication for client/server applications using secret-key cryptography developed by MIT.

the most common vulnerability found on both Windows and Linux systems. When a security patch is released, attackers begin to reverse engineer the security patch to exploit the vulnerability.

stores a single character, such as J, D, or Z. A character data type usually consumes one byte (8 bits) of storage.

NT File System

Vishing

placement of malicious code in SQL statements via web page input. Commonly used against databases, but they are not useful when attacking file servers.

The Remote Authentication Dial-In User Service (RADIUS)

an older mechanism for encrypting data sent over a wireless connection. This is considered vulnerable to attacks that can break its encryption. WEP relies on the use of a 24-bit initialization vector to secure its preshared key.

replaced the original version of WPA after the completion of the 802.11i security standard. WPA2 features an improved method of key distribution and authentication for enterprise networks, though the pre-shared key method is still available for home and small office networks. WPA2 uses the improved AES cipher with counter mode with cipher-block chaining message authentication protocol (CCMP) for encryption.

Wired Equivalent Privacy

improved encryption scheme for protecting Wi-Fi communications designed to replace WEP. This scheme uses the RC4 cipher and a temporal key integrity protocol (TKIP) to overcome the vulnerabilities in the older WEP protection scheme.

a technique for defeating a cipher or authentication mechanism by trying to determine its decryption key or passphrase by trying hundreds or sometimes millions of likely possibilities, such as words in a dictionary.

used in Linux to copy one or more files and directories from one location to another.

Hybrid Password Cracking Attack

attacker submitting many passwords or passphrases with the hope of eventually guessing correctly. The passcode or password is incrementally increased by one letter number each time until the right passcode/password is found.

legacy file system used for CD optical disc media (CD-ROM and CD-R).

Simultaneous Authentication of Equals

Challenge-Handshake Authentication Protocol (CHAP)

CD File System / ISO 9660

System File Checker

The robocopy tool

Universal Disk Format / ISO 13346

Wi-Fi Protected Access Version 3 (WPA3)

Wired Equivalent Privacy

used to authenticate a user or network host to an authenticating entity.

gpresult command-line tool

combines the use of a brute-force attack with a dictionary attack by using words from the dictionary's list as the basis for the brute-force attack.

Challenge Handshake Authentication Protocol

Boolean

Cross-Site Scripting (XSS)

Spear phishing

Whaling

a precomputed list of possible hashes used when trying to speed up the process of password cracking.

an improved encryption scheme for protecting Wi-Fi communications designed to replace WEP. This system uses the RC4 cipher and a temporal key integrity protocol (TKIP) to overcome the vulnerabilities in the older WEP protection scheme.

Wi-Fi protected access version 2 (WPA2)

Deployment Image Servicing and Management command-line tool (DISM)

has replaced WPA2 as the most secure wireless encryption method. This access version uses the simultaneous authentication of equals (SAE) to increase the security of preshared keys.

Integer

Character

gpupdate command-line tool

The copy command

stores a group of characters, such as Hello, PYTHON, or JasonDion.

an email-based or web-based form of phishing that targets senior executives or wealthy individuals.

Kerberos

File Allocation Table 32bit FAT32

Open Network

social-engineering attack where the attacker extracts information while speaking over the phone or leveraging IP-based voice messaging services (VolP).

used to display the Resultant Set of Policy (RSoP) information for a remote user and computer. Because you can apply overlapping policy settings to any computer or user, the Group Policy feature generates a resulting set of policy settings when the user logs on. This command displays the resulting set of policy settings that were enforced on the computer for the specified user when the user logged on.

File Allocation Table 32bit FAT32

a networking protocol that operates on port 1812 and provides centralized Authentication, Authorization, and Accounting management for users who connect and use a network service, but Cisco did not develop it.

Rainbow Table

stores a whole number, such as 21, 143, or 1024. This data type usually consumes 8 bytes of storage.

does not use an encryption key or preshared key to protect the network

a security posture where the system will allow all traffic to traverse the firewall unless there is a specific rule to prevent it.

primary administrative tool for defining and controlling how programs, network resources, and the operating system operate for users and computers in an organization.

32-bit file system supported by Windows, macOS, and Linux computers.

Remote Authentication Dial in User Service

an updated file system for optical media supporting multisession writing. It is the standard used by Windows, referred to as the Live File System.

fraudulent practice of sending emails from a seemingly known or trusted sender to induce targeted individuals to reveal confidential information.

Wi-Fi protected access (WPA)

WiFi protected access

the dragonfly handshake

encryption system based on the RC4 encryption cipher. This system uses a 40-bit encryption key and a 24-bit initialization vector by default, creating a 64-bit key.

used to update the group policy settings on a Windows system.

Wired Equivalent Privacy (WEP)

a software application coding vulnerability that occurs when an attacker injects a CRLF character sequence where it is not expected.

The xcopy tool

replaced the original version of WPA after the completion of the 802.11i security standard. It features an improved method of key distribution and authentication for enterprise networks, though the pre-shared key method is still available for home and small office networks.

String

SQL injection

Missing patches

The cp command

type of injection in which malicious scripts are injected into otherwise benign and trusted websites.

WiFi Protected Access Version 2

used to copy one or more files from one location to another. This command cannot copy files that are 0 bytes long or for copying all of a directory's files and subdirectories.

CD File System (CDFS or ISO 9660)