terminology – Page 16 – WindowsTechs.com

Privacy terminology: Online privacy vs Internet Privacy vs Digital Privacy

Posted on October 4, 2017 by Alvai

While, to my eyes, Digital Privacy is the broader term ( anything digital whether online or not), I have seen all 3 used interchangeably (i.e: link vs title). Also, despite having different entries in Wikipedia, not much is c… Continue reading Privacy terminology: Online privacy vs Internet Privacy vs Digital Privacy→

Rights vs permissions vs privileges

Posted on September 30, 2017 by Passiday

I have to write a node module for handling role-based access control. Users are stored in database, there are user groups, and there are system assets or functionality that users and groups can be given or denied access to.

I am consideri… Continue reading Rights vs permissions vs privileges→

RBAC0 RBAC1 RBAC2 RBAC3 — What do they mean?

Posted on September 20, 2017 by jtpereyda

I am familiar with the concept of role-based access control but have heard the terms RBAC0 etc. being thrown around. What do these really mean? I found this quote on a NIST website:

In 1996, Sandhu, Coyne, Feinstein, and … Continue reading RBAC0 RBAC1 RBAC2 RBAC3 — What do they mean?→

What is the difference between a payload and shellcode?

Posted on August 16, 2017 by user156894

I am new to penetration testing and I would like to know the differences between these two things:

Payload (reverse TCP vs. bind shell)
Shell vs. Shellcode

Any help?

Continue reading What is the difference between a payload and shellcode?→

Does "assesse" have a particular meaning in information security?

Posted on August 12, 2017 by WBT

From this job description, bold added:

The human factors expert is needed to conduct research on human subjects that perform tasks for full spectrum cyber operations. The researcher will define, develop and conduct studi… Continue reading Does "assesse" have a particular meaning in information security?→

Way of categorising and organising types of security issues and areas

Posted on August 8, 2017 by AirCombat

I have recently done a security review and uncovered 200 or so areas to improve upon covering a very diverse range of topics; Some points are process, some are config, some are new systems to be implemented. Everything from S… Continue reading Way of categorising and organising types of security issues and areas→

Is Threat Risk Assessment the same as Threat Risk Modeling?

Posted on July 31, 2017 by John

I’ve been asked to help fill out a survey and one of the questions is whether a Threat Risk Assessment has been performed on a blog we’re setting up for a charity. The WordPress blog will use a free theme. It will be adminis… Continue reading Is Threat Risk Assessment the same as Threat Risk Modeling?→

What do these terms means with relation to viruses and operating system?

Posted on July 18, 2017 by northerner

Often times I’ve heard viruses using “hooks” and “embeding” themself into files. For example from Wikipedia’s article on Mebroot

The Trojan tries to avoid detection by hooking itself into
atapi.sys. It also embeds itse… Continue reading What do these terms means with relation to viruses and operating system?→

What is an SNI Hole?

Posted on July 10, 2017 by Steven Vascellaro

Earlier today, Lone Learner asked Why is there no certificate error while visiting google.net although it presents a certificate issued to google.com?

The accepted answer from StackzOfZtuff explained that it was caused by an… Continue reading What is an SNI Hole?→

What is an SNI Hole?

Posted on July 10, 2017 by Steven Vascellaro

Earlier today, Lone Learner asked Why is there no certificate error while visiting google.net although it presents a certificate issued to google.com?

The accepted answer explains that the issue was caused by an SNI Hole.

… Continue reading What is an SNI Hole?→