A security technique that regulates who or what can view or use resources in a computing environment.

A prolonged and targeted cyberattack in which an intruder gains access to a network and remains undetected for an extended period.

The process of verifying the identity of a user, device, or system before granting access.

A cybersecurity testing method where ethical hackers mimic real-world attacks to assess security defenses.

A method or pathway used by attackers to exploit vulnerabilities and gain unauthorized access to systems.

The process of tracking and managing hardware, software, and data assets in an organization.

The process of determining whether a user has permission to access specific resources or perform certain actions.

A software program designed to detect, prevent, and remove malware from computer systems.

A cryptographic method that uses a pair of keys (public and private) for secure communication.

Practices and measures implemented to protect software applications from security threats and vulnerabilities.

A security vulnerability that allows attackers to execute malicious code on a targeted system.

A network protocol used to map an IP address to a MAC address within a local network.

The process of removing personally identifiable information from data sets to enhance privacy.

A record that documents system activities, transactions, and access attempts for security monitoring.

The use of machine learning and AI to collect and analyze threat data in real-time.

Security practices aimed at protecting Microsoft's Active Directory from attacks and misconfigurations.

A security measure that isolates a network from unsecured external connections to prevent cyber threats.

The total number of vulnerabilities or entry points available for potential cyberattacks.

The identification of deviations from normal behavior in data, systems, or networks to detect potential threats.

Techniques used by malware to bypass detection by traditional antivirus solutions.