Packt+ | Advance your knowledge in tech

You're reading from CompTIA Security+ Certification Guide Master IT security essentials and exam topics for CompTIA Security+ SY0-501 certification

Product type Paperback

Published in Sep 2018

Publisher Packt

ISBN-13 9781789348019

Length 532 pages

Edition 1st Edition

Concepts

Network Security

Author (1):

Ian Neil

View More author details

Table of Contents (22) Chapters

Title Page

Packt Upsell

Contributor

Preface

1. Understanding Security Fundamentals FREE CHAPTER

2. Conducting Risk Analysis

3. Implementing Security Policies and Procedures

4. Delving into Identity and Access Management

5. Understanding Network Components

6. Understanding Cloud Models and Virtualization

7. Managing Hosts and Application Deployment

8. Protecting Against Attacks and Vulnerabilities

9. Implementing the Public Key Infrastructure

10. Responding to Security Incidents

11. Managing Business Continuity

12. Mock Exam 1

13. Mock Exam 2

1. Preparing for the CompTIA Security+ 501 Exam

2. Acronyms

3. Assessment

4. Other Books You May Enjoy

Leave a review - let other readers know what you think

Index

Chapter 8. Protecting Against Attacks and Vulnerabilities

In this chapter, we are going to look at attacks and vulnerabilities. Each type of attack will have its own unique characteristics. This module is probably the most heavily tested module in the Security+ exam. This chapter needs to be thoroughly understood as sometimes those type of attack questions are very vague, so if you do not understand the concepts fully, you may not understand what is being asked.

We will cover the following exam objectives in this chapter:

Given a scenario, analyze indicators of compromise and determine the type of malware: Viruses—crypto-malware—Ransomware—worm—Trojan—rootkit—keylogger—adware—spyware—bots—RAT—logic bomb—backdoor
Comparing and contrasting types of attacks: Social engineering—phishing—spear phishing—whaling—vishing—tailgating—impersonation—dumpster diving—shoulder surfing—hoax—watering hole attack—principles (reasons for effectiveness)—authority—intimidation—consensus—scarcity—familiarity—trust...