Computer network security

Spyware (a portmanteau for spying software) is any malware that aims to gather information about a person or organization and send it to another entity in a way that harms the user by violating their privacy, endangering their device's security, or other means. This behavior may be present in other malware and in legitimate software. Websites may engage in spyware behaviors like web tracking. Hardware devices may also be affected.

policies and practices adopted to prevent and monitor unauthorized access, misuse, modification, or denial of computer networks and network-accessible resources

thumb|A diagram showing an extranet and how it relates to an intranet and the [[Internet.]] An extranet is a controlled private computer network that allows communication with business partners, vendors and suppliers, or an authorized set of customers. It extends an intranet to trusted outsiders. It provides access to needed services for authorized parties, without granting access to an organization's entire network. It can be implemented securely, either with dedicated links or as a VPN.

security protocol to secure wireless computer networks

subnetwork of a system exposed to external world

form of active eavesdropping in which the attacker makes connections with the victims and relays messages between them

deprecated security algorithm for wireless networks

computer authentication protocol

a device or software application that monitors a network or systems for malicious activity

computer security mechanism; consists of data that appears to be a legitimate part of the site, but is actually isolated and monitored, and that seems to contain information or a resource of value to attackers, who are then blocked and/or analyzed

method of evaluating computer and network security by simulating a cyber attack

network connected computer that has been compromised and is used for malicious task without the owner being aware of it

cyber attack in which a person or program successfully masquerades as another by falsifying data

Z-Wave is a wireless communications protocol used primarily for residential and commercial building automation. It is a mesh network using low-energy radio waves to communicate from device to device, allowing for wireless control of smart home devices, such as smart lights, security systems, thermostats, sensors, smart door locks, and garage door openers. Z-Wave Long Range (ZWLR) is a sub-GHz wireless communication protocol designed to extend smart home connectivity, offering a range of up to 1.5 miles. It enables direct hub-to-device communication, supports up to 4,000 nodes per network, and

traditional outdoor game

IEEE standard for port-based network access control

processing that examines network data

application of network address translation

The idea is to organize content based on the origin from which it arrives at the browser, preventing outside interference.

information collected about a remote computing device for the purpose of full or partial identification

design and implementation strategy of IT systems where users and devices should not be trusted by default, even if they are connected to a privileged network such as a corporate LAN and even if they were previously verified

In a Windows network, NT (New Technology) LAN Manager (NTLM) is a suite of Microsoft security protocols intended to provide authentication, integrity, and confidentiality to users. NTLM is the successor to the authentication protocol in Microsoft LAN Manager (LANMAN), an older Microsoft product. The NTLM protocol suite is implemented in a Security Support Provider, which combines the LAN Manager authentication protocol, NTLMv1, NTLMv2 and NTLM2 Session protocols in a single package. Whether these protocols are used or can be used on a system, which is governed by Group Policy settings, for whi

Terminal Access Controller Access-Control System (TACACS, ) refers to a family of related protocols handling remote authentication and related services for network access control through a centralized server. The original TACACS protocol, which dates back to 1984, was used for communicating with an authentication server, common in older UNIX networks including but not limited to the ARPANET, MILNET and BBNNET. It spawned related protocols: Extended TACACS (XTACACS) is a proprietary extension to TACACS introduced by Cisco Systems in 1990 without backwards compatibility to the original protocol

connection tracking network security system

network defense technique

standard for assessing computer system vulnerabilities

web page displayed to new users of a network

Shadowsocks is a free and open-source encryption protocol project, widely used in China to circumvent Internet censorship. It was created in 2012 by a Chinese programmer named "clowwindy", and multiple implementations of the protocol have been made available since. Shadowsocks provides an encrypted equivalent of a SOCKS proxy. A Shadowsocks client converts the Shadowsocks connection to SOCKS5 for local use. Unlike an SSH tunnel, Shadowsocks can also proxy User Datagram Protocol (UDP) traffic.

place in a network where incoming traffic is silently discarded without informing the source

technique of establishing and maintaining connections across network gateways that implement address translation

Fail2Ban is an intrusion prevention software framework. Written in the Python programming language, it is designed to prevent brute-force attacks. It is able to run on POSIX systems that have an interface to a packet-control system or firewall installed locally, such as iptables or TCP Wrapper.

attack done by multiple fake identities

part of a cryptosystem intended to reduce the risks inherent in exchanging keys

Internet protocol

device deployed in VoIP networks to control the signaling and the media streams involved in setting up, conducting, and tearing down telephone calls or other interactive media communications

piece of technology that controls access to a network

set of techniques or tools for resisting or mitigating the impact of distributed denial-of-service attacks on networks attached to the Internet by protecting the target and relay networks

blacklist of malicious URLs

NetStumbler (also known as Network Stumbler) was a tool for Windows that facilitates detection of Wireless LANs using the 802.11b, 802.11a and 802.11g WLAN standards. It runs on Microsoft Windows operating systems from Windows 2000 to Windows XP. A trimmed-down version called MiniStumbler is available for the handheld Windows CE operating system.

cryptographic attack that forces the use of weaker or no encryption

computer server dedicated for the purpose of administering other computer networks and systems

security component that augments a firewall or NAT employed in a computer network

technique employed to compromise the security of network switches

prevention of unauthorized access or damage to computers or data using wireless networks, which include Wi-Fi networks

catalog of software weaknesses and vulnerabilities

Microsoft Windows anti-malware system

security access control method

Cyberattack involving counterfeit packets

NAT traversal mechanism

safeguard or countermeasure to avoid, detect, counteract, or minimize security risks to physical property, information, computer systems, or other assets

in information security, the placing of multiple layers of security controls throughout an IT system to provide redundancy in the event a security control fails

NAT technique in computer networking

generic document that outlines rules for computer network access, determines how policies are enforced and lays out some of the basic architecture of the company security/ network security environment

American international information security company

computer network packet filtering technique

Computer networking concept

computer on a network used to access a separate security zone

Outsourced network security service

OSSEC (Open Source HIDS SECurity) is a free, open-source host-based intrusion detection system (HIDS). It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, time-based alerting, and active response. It provides intrusion detection for most operating systems, including Linux, OpenBSD, FreeBSD, OS X, Solaris and Windows. OSSEC has a centralized, cross-platform architecture allowing multiple systems to be easily monitored and managed. OSSEC has a log analysis engine that is able to correlate and analyze logs from multiple devices and formats.