A security standard that helps prevent cross-site scripting (XSS) attacks by allowing website owners to control which resources can be loaded and executed on their pages.

A cryptographic protocol that provides secure communication over a computer network, commonly used to secure HTTPS connections.

A security feature that allows web pages to make requests to a different domain than the one serving the web page, while maintaining security.

A web security policy mechanism that helps protect websites against protocol downgrade attacks and cookie hijacking by forcing HTTPS connections.

A type of security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users.

An attack that tricks a user into performing unwanted actions on a web application in which they're currently authenticated.

An email authentication method that helps prevent email spoofing by specifying which mail servers are authorized to send emails for a domain.

An email authentication method that uses digital signatures to verify that an email message was sent by an authorized sender.

An email authentication protocol that builds on SPF and DKIM to provide domain-level protection against email spoofing.

A malicious technique where an attacker tricks a user into clicking on something different from what the user perceives, potentially revealing confidential information.

A security issue where a web page served over HTTPS contains resources (images, scripts, stylesheets) loaded over HTTP, which can compromise security.

A vulnerability where an attacker can take control of a subdomain by exploiting misconfigured DNS records or abandoned services.

A code injection technique used to attack data-driven applications where malicious SQL statements are inserted into an entry field for execution.

A vulnerability that occurs when user input is not properly sanitized before being used in NoSQL database queries, allowing attackers to manipulate database operations.

A vulnerability that occurs when user input is not properly sanitized before being used in LDAP queries, potentially allowing unauthorized access to directory services.

A vulnerability that occurs when user input is not properly sanitized before being passed to a system shell, allowing attackers to execute arbitrary commands.

A vulnerability that occurs when an application provides direct access to objects based on user-supplied input, allowing attackers to access unauthorized resources.

A vulnerability that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker's choosing.

A vulnerability that occurs when XML input containing a reference to an external entity is processed by a weakly configured XML parser.

A vulnerability that allows an attacker to include files on a server through the web browser, potentially leading to code execution or information disclosure.

A vulnerability that allows an attacker to include remote files on a server through the web browser, potentially leading to code execution.

A vulnerability that allows an attacker to access files and directories that are stored outside the web root folder by manipulating file paths.

A vulnerability that occurs when a program writes more data to a buffer than it can hold, potentially leading to code execution or system crashes.

A vulnerability that occurs when an arithmetic operation results in a value that is too large to be represented in the allocated storage space.

A vulnerability that occurs when the behavior of a system depends on the sequence or timing of uncontrollable events, potentially leading to security issues.

A race condition vulnerability that occurs when a system checks a condition and then uses the result, but the condition may change between the check and use.

A vulnerability that allows an attacker to gain elevated access to resources that are normally protected from an application or user.

A type of privilege escalation where an attacker gains access to resources or functions that are normally restricted to higher-privileged users.

A type of privilege escalation where an attacker gains access to resources that belong to another user with the same privilege level.

A vulnerability that allows an attacker to hijack a user's session by forcing the user to use a session ID that the attacker knows.

A vulnerability that allows an attacker to take over a user's session by stealing or predicting the session ID.

An attack where an attacker secretly intercepts and relays messages between two parties who believe they are communicating directly with each other.

An attack that corrupts the domain name system (DNS) to redirect traffic to malicious websites or servers.

An attack that sends falsified ARP (Address Resolution Protocol) messages to a local area network, allowing the attacker to intercept data.

A social engineering attack that attempts to trick users into revealing sensitive information by impersonating a trustworthy entity.

A targeted phishing attack that is directed at specific individuals or organizations, often using personalized information.

A type of spear phishing attack that targets high-profile individuals such as executives or celebrities.

A social engineering attack that uses voice communication to trick victims into revealing sensitive information.

A social engineering attack that uses SMS (text messages) to trick victims into revealing sensitive information or clicking malicious links.

A social engineering attack where an attacker creates a false scenario to trick victims into revealing sensitive information.

A social engineering attack that uses the promise of something enticing to trick victims into revealing sensitive information or installing malware.

A physical social engineering attack where an attacker follows an authorized person into a restricted area.

A physical social engineering attack where an attacker observes a victim entering sensitive information such as passwords or PINs.

A physical social engineering attack where an attacker searches through trash or recycling bins for sensitive information.

Malicious software designed to damage, disrupt, or gain unauthorized access to computer systems or networks.

A type of malware that replicates itself by modifying other computer programs and inserting its own code.

A type of malware that replicates itself to spread to other computers, often without user intervention.

A type of malware that disguises itself as legitimate software to trick users into installing it.

A type of malware that encrypts a victim's files and demands payment in exchange for the decryption key.

A type of malware that secretly monitors and collects information about a user's activities without their knowledge.

A type of malware that displays unwanted advertisements to users, often bundled with legitimate software.

A type of malware that provides privileged access to a computer while hiding its presence from the user and security software.

A type of malware that provides unauthorized access to a computer system, often bypassing normal authentication procedures.

A network of compromised computers that are controlled by an attacker to perform malicious activities such as DDoS attacks or spam distribution.

A type of malware that records keystrokes made by a user, often to steal passwords or other sensitive information.

A type of malware that captures screenshots of a user's screen, often to steal sensitive information displayed on the screen.

A type of malware that uses a victim's computer resources to mine cryptocurrency without their knowledge or consent.

An attack that overwhelms a target system with traffic from multiple sources, making it unavailable to legitimate users.

An attack that overwhelms a target system with traffic or requests, making it unavailable to legitimate users.

A type of DoS attack that exploits the TCP handshake process by sending a flood of SYN packets without completing the connection.

A type of DoS attack that overwhelms a target system with ICMP echo request packets (ping packets).

A type of DoS attack that overwhelms a web server with HTTP requests, often using multiple sources.

A type of DoS attack that keeps many connections to the target web server open and holds them open as long as possible.

An attack that attempts to gain access to a system by trying all possible combinations of passwords or encryption keys.

A type of brute force attack that uses a predefined list of words (dictionary) to attempt to guess passwords.

An attack that uses precomputed hash tables to crack password hashes more quickly than traditional brute force methods.

An attack that uses previously breached username and password combinations to gain unauthorized access to user accounts.

An attack that attempts to gain access to multiple accounts by trying a small number of common passwords against many usernames.

An attack that exploits information gained from the physical implementation of a computer system rather than weaknesses in the algorithm itself.

A type of side-channel attack that exploits the time taken to execute cryptographic operations to gain information about the secret key.

A type of side-channel attack that analyzes the power consumption of a cryptographic device to extract secret information.

A type of side-channel attack that introduces faults into a system to cause it to behave in unexpected ways, potentially revealing secret information.

An attack where malware running in a user's browser intercepts and modifies web transactions without the user's knowledge.

An attack where an attacker secretly intercepts and relays messages between two parties who believe they are communicating directly with each other.

A security vulnerability that is unknown to the vendor and for which no patch or fix is available.

An exploit that takes advantage of a zero-day vulnerability to attack a system before a patch is available.

A standardized identifier for publicly known cybersecurity vulnerabilities and exposures.

A standardized framework for rating the severity of security vulnerabilities.

A security testing methodology that simulates real-world attacks to identify vulnerabilities in systems, networks, or applications.

A systematic process of identifying, quantifying, and prioritizing security vulnerabilities in systems, networks, or applications.

A systematic evaluation of an organization's security policies, procedures, and controls to ensure they are effective and compliant.

A group of security professionals who simulate real-world attacks to test an organization's security defenses and response capabilities.

A group of security professionals responsible for defending an organization's systems and networks against cyberattacks.

A collaborative approach that combines red team and blue team activities to improve overall security posture.

A structured approach to identifying and prioritizing potential security threats to a system or application.

The sum of all possible points where an attacker could attempt to enter or extract data from a system or network.

A security strategy that employs multiple layers of security controls to protect against various types of attacks.

A security principle that states that users and systems should only be granted the minimum level of access necessary to perform their functions.

A security principle that divides critical functions among multiple people to prevent fraud and errors.

A security principle that states that when a system fails, it should fail in a secure state rather than an insecure one.

A security principle that states that when a system fails, it should fail in a way that minimizes harm and maintains security.

An approach to software and system development that integrates security considerations throughout the entire development lifecycle.

A security principle that states that systems should be configured with secure settings by default, requiring explicit action to make them less secure.

A security model that assumes no implicit trust and requires verification for every access request, regardless of location or user.

A security technique that divides a network into smaller, isolated segments to limit the spread of attacks and improve security.

A security technique that divides a network into smaller, isolated segments to control traffic flow and improve security.

A logical network segment that allows devices to communicate as if they were on the same physical network, regardless of their physical location.

A network security device that monitors and controls incoming and outgoing network traffic based on predetermined security rules.

A security device that monitors, filters, and blocks HTTP traffic to and from web applications to protect against common web attacks.

A security device that monitors network or system activities for malicious activities or policy violations.

A security device that monitors network or system activities and can automatically block or prevent malicious activities.

A security system that collects, analyzes, and correlates security events from multiple sources to provide real-time threat detection and response.

A security system that automates and orchestrates security operations to improve incident response and reduce manual tasks.

A security solution that continuously monitors and responds to threats on endpoints such as desktops, laptops, and servers.

A security solution that provides comprehensive threat detection and response across multiple security layers and data sources.

A security service that provides 24/7 monitoring, threat detection, and response capabilities managed by a third-party provider.

A centralized facility where security professionals monitor, detect, and respond to cybersecurity threats and incidents.

A centralized facility where network professionals monitor and manage network infrastructure and performance.

A structured approach to handling and managing security incidents to minimize damage and restore normal operations.

The process of collecting, analyzing, and preserving digital evidence from computer systems and networks for legal or investigative purposes.

A legal concept that tracks the handling of evidence from collection to presentation in court to ensure its integrity and admissibility.

The ability of an organization to continue operating during and after a disaster or security incident.

The process of restoring IT systems and data after a disaster or security incident to resume normal operations.

The maximum acceptable time for restoring a system or service after a disaster or security incident.

The maximum acceptable amount of data loss measured in time, representing the point to which data must be restored.

A copy of data or systems that can be used to restore information in case of data loss or system failure.

Long-term storage of data that is no longer actively used but may be needed for compliance or historical purposes.

The practice of keeping data for a specific period of time based on legal, regulatory, or business requirements.

The process of categorizing data based on its sensitivity, value, and regulatory requirements to determine appropriate protection measures.

A security strategy that prevents sensitive data from being lost, stolen, or accessed by unauthorized users.

A technique that replaces sensitive data with fictitious but realistic data to protect privacy while maintaining data usability.

The process of removing or modifying personally identifiable information from data to protect privacy.

The process of replacing personally identifiable information with pseudonyms to protect privacy while maintaining data utility.

Information that can be used to identify, contact, or locate a specific individual, such as name, address, or social security number.

Individually identifiable health information that is protected under HIPAA regulations.

A set of security standards designed to ensure that companies that accept, process, store, or transmit credit card information maintain a secure environment.

A US law that establishes national standards for protecting sensitive patient health information.

A European Union regulation that governs data protection and privacy for individuals within the EU.

A framework for evaluating the security, availability, processing integrity, confidentiality, and privacy of service organizations.

An international standard that specifies requirements for establishing, implementing, maintaining, and continually improving an information security management system.

A voluntary framework that provides guidance on managing cybersecurity risk based on existing standards, guidelines, and practices.

A nonprofit organization that provides free resources and tools for improving web application security.

A standard awareness document that represents the most critical security risks to web applications.

A framework for performing comprehensive security testing of web applications and APIs.

A framework for implementing and measuring secure software development practices.

A list of the most dangerous programming errors that can lead to serious vulnerabilities in software.

A community-developed list of common software security weaknesses that can be used as a baseline for weakness identification and mitigation.

A comprehensive dictionary of known attack patterns used by adversaries to exploit weaknesses in applications and systems.

A globally-accessible knowledge base of adversary tactics and techniques based on real-world observations.

A model that describes the stages of a cyberattack from initial reconnaissance to data exfiltration.

A framework for analyzing cybersecurity incidents by examining the relationships between adversaries, capabilities, infrastructure, and victims.

Evidence-based knowledge about existing or emerging threats that can be used to inform security decisions and actions.

Artifacts that indicate a security incident has occurred, such as IP addresses, file hashes, or domain names.

The methods and patterns used by threat actors to achieve their objectives, including the tools and techniques they employ.

A sophisticated, long-term cyberattack campaign that targets specific organizations or individuals for espionage or sabotage.

A security risk that originates from within an organization, typically from employees, contractors, or business partners.

An attack that targets an organization by compromising one of its suppliers or vendors to gain access to the target organization.

An attack that targets a specific group by compromising websites that members of the group are known to visit.

An attack that automatically downloads malware to a user's computer when they visit a compromised website.

The use of psychological manipulation to trick people into revealing sensitive information or performing actions that compromise security.

A social engineering attack that attempts to trick users into revealing sensitive information by impersonating a trustworthy entity.

A social engineering attack that uses voice communication to trick victims into revealing sensitive information.

A social engineering attack that uses SMS (text messages) to trick victims into revealing sensitive information or clicking malicious links.

A social engineering attack where an attacker creates a false scenario to trick victims into revealing sensitive information.

A social engineering attack that uses the promise of something enticing to trick victims into revealing sensitive information or installing malware.

A physical social engineering attack where an attacker follows an authorized person into a restricted area.

A physical social engineering attack where an attacker observes a victim entering sensitive information such as passwords or PINs.

A physical social engineering attack where an attacker searches through trash or recycling bins for sensitive information.

The act of secretly listening to or monitoring communications between parties without their knowledge or consent.

The act of secretly monitoring telephone or internet communications, often for law enforcement or intelligence purposes.

The practice of intercepting and logging network traffic to analyze data packets for security or troubleshooting purposes.

The practice of intercepting network communications by physically or logically accessing network infrastructure.

The practice of scanning a network to identify open ports and services running on target systems.

The practice of scanning systems and networks to identify known security vulnerabilities and misconfigurations.

A piece of software, data, or sequence of commands that takes advantage of a vulnerability to cause unintended behavior in a system.

The part of an exploit that performs the actual malicious action, such as installing malware or stealing data.

A small piece of code used as the payload in an exploit to provide a command shell or other functionality to an attacker.

A collection of malicious software designed to provide privileged access to a computer while hiding its presence from the user and security software.

A method of bypassing normal authentication or security controls to gain unauthorized access to a system.

A type of malware that disguises itself as legitimate software to trick users into installing it.

A type of malware that encrypts a victim's files and demands payment in exchange for the decryption key.

A type of malware that uses a victim's computer resources to mine cryptocurrency without their knowledge or consent.

A network of compromised computers that are controlled by an attacker to perform malicious activities such as DDoS attacks or spam distribution.

The infrastructure used by attackers to communicate with and control compromised systems in a botnet.

The technique used by attackers to move through a network after gaining initial access, typically to find and access high-value targets.

The technique used by attackers to maintain access to a compromised system even after reboots or security updates.

The process of stealing data from a compromised system and transferring it to an attacker-controlled location.

The technique used by attackers to hide evidence of their activities and maintain access to compromised systems.

Techniques used by attackers to make forensic analysis more difficult or impossible, such as deleting logs or encrypting data.

The technique of making code or data difficult to understand or analyze, often used by malware to evade detection.

The technique of compressing or encrypting executable files to make them smaller and harder to analyze.

The technique of changing the appearance of malware while maintaining its functionality to evade signature-based detection.

The technique of completely rewriting malware code while maintaining its functionality to evade detection.

Techniques used by malware to detect and avoid analysis in sandbox environments.

Techniques used by malware to detect if it's running in a virtual machine environment and modify its behavior accordingly.

Techniques used by malware to detect if it's being analyzed by a debugger and modify its behavior accordingly.

A technique used by malware to replace the code of a legitimate process with malicious code while maintaining the process's appearance.

A technique used by malware to inject malicious code into a running process by loading a malicious DLL.

A technique used by malware to inject malicious code into a running process to execute it in the context of that process.

A technique used by malware to inject malicious code into a running thread to execute it in the context of that thread.

A technique used by malware to load a DLL into memory without using the standard Windows API, making it harder to detect.

A technique used by malware to create a process with malicious code while making it appear as a legitimate process.

A technique used by malware to inject malicious code into a process using Windows atom tables.

A technique used by malware to create a process with malicious code while making it appear as a legitimate process.

A technique used by malware to create a process with malicious code while making it appear as a legitimate process.