DLP | Data Loss Prevention |
XDR | Extended Detection Response |
ARP | Address Resolution Protocol |
MOU | Memorandum of Understanding |
OpenVAS | Open Vulnerability Assessment Scanner |
TCP | Transmission Control Protocol |
OSSTMM | Open Source Security Testing Methodology Manual |
TLS | Transport Layer Security |
HIPS | Host-based Intrusion Prevention System |
IoC | Indicators of Compromise |
SaaS | Software as a Service |
RFI | Remote File Inclusion |
SSRF | Server-side Request Forgery |
CIS | Center for Internet Security |
CA | Certificate Authority |
COBIT | Control Objectives for Information and Related Technologies |
UEBA | User and Entity Behavior Analytics |
XML | Extensible Markup Language |
NGFW | Next-generation Firewall |
VLAN | Virtual LAN |
LOI | Letter of Intent |
SOC | Security Operations Center |
LDAPS | Lightweight Directory Access Protocol |
RDP | Remote Desktop Protocol |
DNS | Domain Name Service |
BCP | Business Continuity Plan |
DoS | Denial of Service |
DMARC | Domain-based Message Authentication, Reporting, and Conformance |
CHD | Cardholder Data |
DDoS | Distributed Denial of Service |
GPO | Group Policy Objects |
C2 | Command and Control |
CVE | Common Vulnerabilities and Exposures |
GDB | GNU Debugger |
PCI DSS | Payment Card Industry Data Security Standard |
XXE | XML External Entity |
IP | Internet Protocol |
NTP | Network Time Protocol |
IPS | Intrusion Prevention System |
PID | Process Identifier |
SMTP | Simple Mail Transfer Protocol |
SMB | Server Message Block |
URL | Uniform Resource Locator |
VPN | Virtual Private Network |
APT | Advanced Persistent Threat |
ICS | Industrial Control Systems |
PHP | Hypertext Preprocessor |
PKI | Public Key Infrastructure |
API | Application Programming Interface |
BC | Business Continuity |
FIM | File Integrity Monitoring |
POC | Proof of Concept |
IT | Information Technology |
ICMP | Internet Control Message Protocol |
STIX | Structured Threat Information Expression |
SDLC | Software Development Life Cycle |
OT | Operational Technology |
BIA | Business Impact Analysis |
IaaS | Infrastructure as a Service |
CASB | Cloud Access Security Broker |
CSIRT | Cybersecurity Incident Response Team |
SCADA | Supervisory Control and Data Acquisition |
CSRF | Cross-site Request Forgery |
NDA | Non-disclosure Agreement |
SWG | Secure Web Gateway |
ZAP | Zed Attack Proxy |
PLC | Programmable Logic Controller |
SIEM | Security Information and Event Management |
KPI | Key Performance Indicator |
MSF | Metasploit Framework |
CDN | Content Delivery Network |
CI/CD | Continuous Integration and Continuous Delivery |
MAC | Media Access Control |
NAC | Network Access Control |
OS | Operating System |
ISO | International Organization for Standardization |
OWASP | Open Web Application Security Project |
VM | Virtual Machine |
SNMP | Simple Network Management Protocol |
BGP | Border Gateway Protocol |
SLO | Service-level Objective |
DR | Disaster Recovery |
AV | Antivirus |
EDR | Endpoint Detection and Response |
MSP | Managed Service Provider |
PAM | Privileged Access Management |
SASE | Secure Access Secure Edge |
PII | Personally Identifiable Information |
SSL | Secure Sockets Layer |
REST | Representational State Transfer |
SAML | Security Assertion Markup Language |
NIDS | Network-based Intrusion Detection System |
IDS | Intrusion Detection System |
SDN | Software-defined Networking |
TFTP | Trivial File Transfer Protocol |
WAF | Web Application Firewall |
DKIM | Domain Keys Identified Mail |
ITIL | Information Technology Infrastructure Library |
MTTD | Mean Time to Detect |
CERT | Computer Emergency Response Team |
LFI | Local File Inclusion |
HTTP | Hypertext Transfer Protocol |
SOAR | Security Orchestration, Automation, and Response |
ZTNA | Zero Trust Network Access |
HTTPS | Hypertext Transfer Protocol Secure |
SFTP | Secure File Transfer Protocol |
LAN | Local Area Network |
SPF | Sender Policy Framework |
HIDS | Host-based Intrusion Detection System |
RXSS | Reflected Cross-site Scripting |
SLA | Service-level Agreement |
CVSS | Common Vulnerability Scoring System |
XSS | Cross-site Scripting |
JSON | JavaScript Object Notation |
FTP | File Transfer Protocol |
USB | Universal Serial Bus |
SQL | Structured Query Languge |
TRACE | Trade Reporting and Compliance Engine |
ACL | Access Control List |
MFA | Multifactor Authentication |
SSO | Single Sign-on |
IR | Incident Response |
MSSP | Managed Security Service Provider |
RCE | Remote Code Execution |
URI | Uniform Resource Identifier |
WAN | Wide Area Network |
MTTR | Mean Time to Repair |
TTP | Tactics, Techniques, and Procedures |