1
Q
XSS
A
Cross Site Scripting: hacker embeds script in site that then executes code on the users computer.
2
Q
XSRF
A
Cross site request forgery: Embeds script in a site that runs a command on another site assuming the user may also use that site.
CISSP
flashcards
Decks in class (27)
# Cards
-
Risk Management7
-
Controls6
-
BC/DC4
-
Common Protocols and Ports17
-
Incident Response2
-
Encryption/Cryptography-General20
-
Symmetric Key Cryptography20
-
Security models20
-
Networking General6
-
Protections2
-
Ethics and investigations5
-
Threats4
-
Assessment and Testing8
-
Data Protection Methods5
-
Multi-tasking5
-
SSO Solutions7
-
Secure Network Architecture3
-
Software Development Security6
-
Network Attacks4
-
Software Review Testing4
-
IP Networking2
-
Web Application Vulnerabilities2
-
Controlling and monitoring Access13
-
NIST publications4
-
Malicious code and applications1
-
Physical Security Controls4
-
Governance2
