1
Q
Standard Security Controls
A
Patches & Updates Change Defaults Firewall IPS/IDS SDLC Logging and Monitoring Anti-DOS Systems Encryption Endpoint Host Protection
2
Q
Cloud-Specific Security Controls
A
IAM Policy
Bucket Enabling
3
Q
Kubernettes Security Controls
A
Update Restrict API access Restrict SSH access Use namespaces Network policies Do not run as root IAM access Security reviews
4
Q
Docker Security Controls
A
Update Do not expose daemon to container Set user Limit access No new privileges flag -icc false flag Selinux Read-only Static analysis tools Logging
5
Q
Cloud Security Control Tools
A
Qualys Prisma cloud Aqua cloud Tenable Kube-bench Sumo Logic
CEH v11
flashcards
Decks in class (55)
# Cards
-
Hacking Methodology8
-
Windows Authentication6
-
CEH v11 EC-Council Certification Overview2
-
Basic Cybersecurity Concepts6
-
Attacker Motives, Goals, and Objectives1
-
Attack Classifications7
-
Information Warfare11
-
Network Sniffing Basics13
-
DHCP Sniffing Attacks3
-
ARP Poisoning5
-
DNS Poisoning3
-
Sniffing Defenses3
-
Steganography Tools and Techniques4
-
Covering Your Tracks4
-
Wireless Hacking4
-
Wireless Hacking Countermeasures3
-
Nmap TCP Connect Scan5
-
Nmap Stealth Scan4
-
Nmap Inverse TCP Scan8
-
Nmap ACK Scan8
-
Hacking Phases & Concepts3
-
Ethical Hacking Concepts4
-
SQL Injection & SQLMap1
-
SQL Injection Testing with SQLMap4
-
Session Hijacking Concepts4
-
Network Level Session Hijacking5
-
Application Level Session Hijacking10
-
Session Hijacking Countermeasures6
-
Geolocation Recon2
-
Social Networking Recon2
-
Job Board Recon1
-
Deep and Dark Webs Recon5
-
Cloud Computing Concepts19
-
Container Concepts6
-
Hacking Cloud Services6
-
Cloud Security Controls5
-
Nmap IDLE/IPID Scan5
-
Nmap UDP Scan4
-
Nmap SCTP scan4
-
Nmap IPv6 List and Version Scans2
-
Vulnerability Assessment Concepts and Resources7
-
Vulnerability Management Life Cycle4
-
Vulnerability Classification1
-
Password Attack Basics7
-
Password Extraction and Cracking5
-
Password Cracking Enhancement Techniques4
-
Malware Concepts and Components3
-
Advanced Persistent Threats3
-
Trojans4
-
Viruses and Worms5
-
Web Application Attacks & Vulnerabilities10
-
OWASP Top 10 Web Application Attacks 20172
-
Cryptography Concepts5
-
Crypto Algorithms and Implementations8
-
Cryptography Tools1
