CySA+ Exam guide

DNS Sinkhole CORRECT ANSWER Provide a response to a DNS query that does not resolve the IP address.. Instead targets the addresses for known malicious domains Role-Based access control (RBAC) CORRECT ANSWER grants permissions based on a user's role or group. Reverse Engineering CORRECT ANSWER the process of decontructing something in order to discover its features and constituents Banner grabbing CORRECT ANSWER used to gain information about a computer system on a network and the services running on its open ports. Administrators can use this to take inventory of the systems and services on their network. Cross-site scripting XSS CORRECT ANSWER a vulnerability in a web application that allows malicious users to execute arbitrary client side scripts. Forensic Acquisition CORRECT ANSWER The process of extracting the digital contents from seized evidence so that they may be analyzed Fuzzing CORRECT ANSWER techniqued used to discover flaws and vulnerabilities in software by sending large amounts of malformed, unexpected, or random data to the target programs in order to trigger failures Netstat CORRECT ANSWER command-line interface tool that provides information on the status of network connections and listening sockets Input validation CORRECT ANSWER an app