Welcome to our comprehensive guide on cybersecurity terms starting with the letter S.
Here is a list of essential terms and concepts that are commonly used in the cybersecurity industry.
SSL (Secure Sockets Layer)
SSL is a protocol that provides secure communication between two computers over the internet, commonly used for securing online transactions, email, and other sensitive data.
A sandbox is an isolated environment where programs and applications can be executed securely without affecting the system or other programs. This is commonly used in security testing.
SQL Injection is a type of attack where an attacker injects malicious SQL code into a web application’s input box, which can compromise the database and steal sensitive information.
Social Engineering is the art of manipulating people to divulge sensitive information, usually through deception and impersonation. This is commonly used in phishing attacks and identity theft.
Sniffing is a technique used by attackers to intercept and monitor network traffic, potentially allowing them to capture sensitive information such as usernames and passwords.
Spoofing is the act of impersonating someone or something else in order to gain unauthorized access to a system or network.
This can be done through email spoofing, IP spoofing, and other techniques.
Spear phishing is a targeted form of phishing that is customized for a specific individual or organization.
This is done by researching the target’s interests, job role, and relationships to create a convincing message.
Session hijacking is a type of attack where an attacker steals the session ID of an authenticated user to gain unauthorized access to a web application.
Security Information and Event Management (SIEM)
SIEM is a software solution that collects, aggregates, and analyzes security data from various sources in order to detect and respond to security threats.
Security Operations Center (SOC)
A Security Operations Center (SOC) is a centralized unit responsible for monitoring, detecting, analyzing, and responding to security incidents in an organization’s IT infrastructure.
The SOC typically comprises a team of security analysts and engineers who use various tools and techniques to protect the organization’s assets and data from cyber threats.
Security Testing is a type of software testing that is performed to identify vulnerabilities and weaknesses in an application or system’s security posture.
This testing is designed to detect security flaws and provide recommendations for remediation.
Common types of security testing include penetration testing, vulnerability scanning, and code review.
A Script Kiddie is an unskilled hacker who relies on pre-written software tools and scripts to launch attacks on networks and computer systems.
These individuals lack the technical expertise to create their own tools or write custom scripts, and instead, use off-the-shelf programs to exploit known vulnerabilities.
Software-Defined Network (SDN)
A Software-Defined Network (SDN) is a network architecture that uses software to manage network traffic and resources instead of traditional hardware-based solutions.
SDN allows for greater flexibility and agility in managing network resources and allows for more efficient allocation of resources to meet the needs of the organization.
Stateful Packet Inspection (SPI)
Stateful Packet Inspection (SPI) is a type of firewall technology that examines the state of network connections to identify and block unauthorized access attempts.
SPI firewalls keep track of the state of network connections and can detect and block malicious traffic based on predefined rules.
Steganography is the practice of hiding secret messages or data within another file or message to avoid detection.
This technique involves embedding the data within an image, video, or audio file without changing the file’s appearance or functionality.
Steganography is often used in conjunction with encryption to provide an extra layer of security.
System hardening is the process of securing computer systems by reducing vulnerabilities and eliminating unnecessary functions or features.
This involves configuring the system according to established security policies and guidelines, and implementing various security measures such as access control, patch management, and antivirus software.
Security controls are measures put in place to protect information and systems from unauthorized access, use, disclosure, disruption, modification, or destruction.
These controls may be technical, administrative, or physical in nature, and are designed to reduce or eliminate security risks.
A security policy is a document that outlines an organization’s approach to information security.
It defines the rules, procedures, and guidelines that must be followed in order to ensure the confidentiality, integrity, and availability of information assets.
A security policy typically covers areas such as access control, data protection, incident response, and risk management.
A security audit is a systematic evaluation of an organization’s information security policies, procedures, and practices.
It is typically conducted to identify weaknesses and vulnerabilities in the organization’s security posture, and to recommend measures to improve security.
A security audit may be conducted internally by the organization’s own staff, or by an external auditor or consultant.
A Security Token is a physical device or application that generates unique codes or passwords for secure authentication, often used to add an extra layer of security to online accounts and transactions.
Stuxnet is a computer worm that was discovered in 2010 and believed to have been developed by the US and Israel to sabotage Iran’s nuclear program.
It is considered one of the most sophisticated and dangerous cyber weapons ever developed, capable of causing physical damage to industrial control systems.
Simply click on the letter corresponding to the infographic you’d like to download, and save the picture to your device.
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Get terms per letter
Simply click on the letter corresponding to the terms you would like to see.
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z