IT Security/Threats/Attacks
< IT Security | Threats
This lesson covers attacks.
Objectives and Skills
editObjectives and skills for the attacks portion of Security+ certification include:[1]
- Summarize various types of attacks.
- Man-in-the-middle
- DDoS
- DoS
- Replay
- Smurf attack
- Spoofing
- Spam
- Phishing
- Spim
- Vishing
- Spear phishing
- Xmas attack
- Pharming
- Privilege escalation
- Malicious insider threat
- DNS poisoning and ARP poisoning
- Transitive access
- Client-side attacks
- Password attacks
- Brute force
- Dictionary attacks
- Hybrid
- Birthday attacks
- Rainbow tables
- Typo squatting/URL hijacking
- Watering hole attack
Readings
editMultimedia
edit- YouTube: Man-in-the-Middle Attacks - CompTIA Security+ SY0-401: 3.2
- YouTube: Denial of Service - CompTIA Security+ SY0-401: 3.2
- YouTube: Replay Attacks - CompTIA Security+ SY0-401: 3.2
- YouTube: Spoofing - CompTIA Security+ SY0-401: 3.2
- YouTube: Spam - CompTIA Security+ SY0-401: 3.2
- YouTube: Phishing - CompTIA Security+ SY0-401: 3.2
- YouTube: Vishing - CompTIA Security+ SY0-401: 3.2
- YouTube: Christmas Tree Attack - CompTIA Security+ SY0-401: 3.2
- YouTube: Privilege Escalation - CompTIA Security+ SY0-401: 3.2
- YouTube: Insider Threats - CompTIA Security+ SY0-401: 3.2
- YouTube: Transitive and Client-side Attacks - CompTIA Security+ SY0-401: 3.2
- YouTube: Password Attacks - CompTIA Security+ SY0-401: 3.2
- YouTube: URL Hijacking - CompTIA Security+ SY0-401: 3.2
- YouTube: Watering Hole Attack - CompTIA Security+ SY0-401: 3.2