IT Security/Threats/Attacks

This lesson covers attacks.

Objectives and SkillsEdit

Objectives and skills for the attacks portion of Security+ certification include:[1]

Summarize various types of attacks.
  • Man-in-the-middle
  • DDoS
  • DoS
  • Replay
  • Smurf attack
  • Spoofing
  • Spam
  • Phishing
  • Spim
  • Vishing
  • Spear phishing
  • Xmas attack
  • Pharming
  • Privilege escalation
  • Malicious insider threat
  • DNS poisoning and ARP poisoning
  • Transitive access
  • Client-side attacks
  • Password attacks
    • Brute force
    • Dictionary attacks
    • Hybrid
    • Birthday attacks
    • Rainbow tables
  • Typo squatting/URL hijacking
  • Watering hole attack

ReadingsEdit

MultimediaEdit

  1. YouTube: Man-in-the-Middle Attacks - CompTIA Security+ SY0-401: 3.2
  2. YouTube: Denial of Service - CompTIA Security+ SY0-401: 3.2
  3. YouTube: Replay Attacks - CompTIA Security+ SY0-401: 3.2
  4. YouTube: Spoofing - CompTIA Security+ SY0-401: 3.2
  5. YouTube: Spam - CompTIA Security+ SY0-401: 3.2
  6. YouTube: Phishing - CompTIA Security+ SY0-401: 3.2
  7. YouTube: Vishing - CompTIA Security+ SY0-401: 3.2
  8. YouTube: Christmas Tree Attack - CompTIA Security+ SY0-401: 3.2
  9. YouTube: Privilege Escalation - CompTIA Security+ SY0-401: 3.2
  10. YouTube: Insider Threats - CompTIA Security+ SY0-401: 3.2
  11. YouTube: Transitive and Client-side Attacks - CompTIA Security+ SY0-401: 3.2
  12. YouTube: Password Attacks - CompTIA Security+ SY0-401: 3.2
  13. YouTube: URL Hijacking - CompTIA Security+ SY0-401: 3.2
  14. YouTube: Watering Hole Attack - CompTIA Security+ SY0-401: 3.2

ActivitiesEdit

See AlsoEdit

ReferencesEdit