Trending questions in Cyber Security & Ethical Hacking

0 votes
1 answer

Is an Open Port on a Firewall Without a Service Bound to It a Security Vulnerability?

An open port on a firewall without ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 132 views
0 votes
1 answer

Is it possible to get a list of services running on an open port?

Yes, it is possible to identify services ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 131 views
0 votes
1 answer

How do I check if a port is open in Nmap?

To check if a specific port is ...READ MORE

Jan 8 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 89 views
0 votes
1 answer

Why should you not block or close ports in a firewall?

Blocking or closing ports in a firewall ...READ MORE

Jan 8 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 87 views
0 votes
1 answer

What are the steps of risk assessment in information security?

Conducting a comprehensive risk assessment in information ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 124 views
0 votes
1 answer

What is IP address conflict with another system on the network?

An IP address conflict occurs when two ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 115 views
0 votes
1 answer

What are the categories of security control?

Security controls are essential measures implemented to ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 111 views
0 votes
1 answer

Is renaming folders & files and changing file types an effective solution for file security of a PC?

Renaming files or changing their extensions to ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 110 views
0 votes
1 answer

How to Secure Windows Services with Open Ports Without Compromising Functionality?

Securing Windows services that require open ports ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 105 views
0 votes
1 answer

How secure is binding to localhost in order to prevent remote connections?

Binding a server to localhost (127.0.0.1) is ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 104 views
0 votes
1 answer

Are Security Controls Overlapping?

In information security, overlapping controls, where a ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 102 views
0 votes
1 answer

Does Nmap Report Open Ports Indicate Active Services or Just Firewall Configuration?

When Nmap reports a port as open, ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 88 views
0 votes
1 answer

Are control categories actually exclusive in security?

In information security, controls are commonly categorized ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 88 views
0 votes
1 answer

How to Speed Up Nmap SSL Service Detection on Non-Standard Ports?

Scanning for SSL services on non-standard ports ...READ MORE

Jan 7 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 87 views
0 votes
1 answer

Is Backup a Preventive or Corrective Control?

In security frameworks, controls are categorized into ...READ MORE

Jan 3 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 167 views
0 votes
1 answer

What is the hardest part of the Security+ exam?

Preparing for the CompTIA Security+ exam involves ...READ MORE

Jan 3 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 137 views
0 votes
1 answer

What are the Design Flaws of the WPS PIN System and How Can it be Secured for Future Use?

Wi-Fi Protected Setup (WPS) was introduced to ...READ MORE

Jan 3 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 112 views
0 votes
1 answer

Can I take CompTIA Security+ online?

Yes, you can take the CompTIA Security+ ...READ MORE

Jan 3 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 103 views
0 votes
1 answer

Are GIAC certs open book (unlike CISSP)?

Yes, GIAC (Global Information Assurance Certification) exams ...READ MORE

Jan 3 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 99 views
0 votes
0 answers

Why the Something You Know Factor is Considered the Weakest in Authentication?

In authentication systems, the Something You Know factor, ...READ MORE

Jan 2 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 89 views
0 votes
0 answers

Why Should a Testing Network Be Non-Routable to the Firewall?

I’m setting up a testing network for ...READ MORE

Jan 2 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 87 views
0 votes
1 answer

How Secure Are Virtual Machines?

Virtual machines (VMs) are widely used to ...READ MORE

Jan 3 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 82 views
0 votes
1 answer

Is the MFA push notification approval/deny method safe in O365? Concerns over phishing risks and user behavior?

Multi-Factor Authentication (MFA) using push notifications in ...READ MORE

Jan 2 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 121 views
0 votes
0 answers

How does single sign-on (SSO) enhance security in an architecture?

We are considering implementing Single Sign-On (SSO) ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 106 views
0 votes
1 answer

Why isn't AES-256 with Argon2i-based memory hardening used for at-rest file encryption?

Combining AES-256 encryption with Argon2i key derivation ...READ MORE

Jan 2 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 99 views
0 votes
1 answer

What’s the difference between session hijacking and spoofing?

Session hijacking and spoofing are both cyberattack ...READ MORE

Dec 23, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 487 views
0 votes
0 answers

Is bcrypt a hashing algorithm?

I’ve been learning about various cryptographic techniques, ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 96 views
0 votes
0 answers

How can I securely log user metadata (IP addresses) without compromising privacy in a web app?

In our web application, we need to ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 92 views
0 votes
0 answers

How can I securely log user metadata without exposing personally identifiable information (PII) in a web app?

We want to improve our logging practices ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 82 views
0 votes
0 answers

Which of the following poses the greatest risk to an organization's computer network security?

I’ve been analyzing several potential risks to ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 77 views
0 votes
1 answer

Does PCI DSS require an SAQ for each site?

When managing PCI DSS compliance for a ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 110 views
0 votes
1 answer

How can I control the use of admin tools like IP scanners and PsExec to prevent misuse?

Admin tools like IP scanners and PsExec ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 99 views
0 votes
1 answer

How should a midsized startup approach information security and compliance?

Establishing a robust information security and compliance ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 99 views
0 votes
1 answer

Why does HTTPS not support non-repudiation?

HTTPS (Hypertext Transfer Protocol Secure) is designed ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 98 views
0 votes
1 answer

What are the relative costs involved in making changes to the current organizational security?

Evaluating the costs associated with enhancing your ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 96 views
0 votes
1 answer

What is recipient non-repudiation in secure email transport?

Recipient non-repudiation in secure email transport refers ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 94 views
0 votes
1 answer

How to interpret cost comparison for changes in organizational security procedures?

Interpreting a report that compares the costs ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 86 views
0 votes
1 answer

Why would full disk encryption miss slack space, swap files, and memory?

Full Disk Encryption (FDE) is designed to ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 82 views
0 votes
0 answers

What is the threat model for mobile security when the attacker has root access?

When an attacker gains root access to ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 76 views
0 votes
0 answers

How to prevent lookalike domain phishing and secure client-side code against replication?

We’re concerned about phishing attacks using lookalike ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 76 views
0 votes
0 answers

What’s the purpose of the secret in express-session? How does it mitigate threats?

I’ve noticed that the express-session library requires ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 73 views
0 votes
0 answers

How to prevent CSP bypass and resource access from internal servers via code injection?

Our web application implements a Content Security ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 72 views
0 votes
0 answers

How to create an effective threat model using OWASP Threat Dragon: Understanding actors, processes, and trust boundaries?

I’m exploring OWASP Threat Dragon to build ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 70 views
0 votes
0 answers

How can I safely analyze a USB device?

I’ve come across a suspicious USB device ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 73 views
0 votes
0 answers

How to regain SSH access without alerting a threat actor?

Our server may have been compromised, and ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 63 views
0 votes
0 answers

How secure is a hardened Google Chrome + EMET 5.1 setup against browser-based threats for a small business?

I’ve set up a Google Chrome browser ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 72 views
0 votes
0 answers

What are the best practices and templates for documenting threat models for cloud-based messaging services?

We’re building a threat model for a ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 14,700 points 77 views
0 votes
1 answer

What is the difference between non-repudiation and plausible deniability?

Non-repudiation and plausible deniability are two distinct ...READ MORE

Dec 27, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 151 views
0 votes
1 answer

How does HMAC relate to non-repudiation?

You're correct in observing that HMAC (Hash-Based ...READ MORE

Dec 27, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 133 views
0 votes
1 answer

Does SSL/TLS provide non-repudiation service?

SSL/TLS (Secure Sockets Layer/Transport Layer Security) protocols ...READ MORE

Dec 27, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 25,780 points 122 views
Page:

Most popular tags

"PMP®","PMI®", "PMI-ACP®" and "PMBOK®" are registered marks of the Project Management Institute, Inc. MongoDB®, Mongo and the leaf logo are the registered trademarks of MongoDB, Inc.