Cysec Acronym School

SSO is like getting a VIP wristband—sign in once and get access everywhere.
With Single Sign-On, you use one set of login credentials to access multiple applications or systems. It's convenient for u…

A SOC is the digital command center where cyber threats are detected, analyzed, and stopped.
The Security Operations Center is a team of cybersecurity experts who monitor systems 24/7 (or during busi…

PKI is the trust network that makes secure communication on the internet possible.
It’s like a digital passport system—verifying identities, encrypting data, and ensuring that when you connect to a w…

DoS is like blocking the front door; DDoS is like sending a mob to block every entrance.
A DoS attack floods a system with traffic until it can’t handle real users. A DDoS attack does the same, but f…

CVSS is like the Richter scale for cybersecurity threats.
It assigns a score from 0 to 10 to show how dangerous a vulnerability really is. This helps security teams prioritize what needs fixing first…

CHAP is like a secret handshake that changes every time.
It’s a way for systems to verify your identity without ever revealing your actual password. Instead, it uses a challenge-response method, send…

APTs are like elite burglars who break in quietly, stay hidden, and slowly steal valuables over time.
APTs (Advanced Persistent Threats) are stealthy, long-term cyberattacks usually carried out by hi…

APIs are like waiters at a restaurant—taking your request, delivering it to the kitchen (the system), and bringing back exactly what you ordered. APIs (Application Programming Interfaces) act as mess…

AES (Advanced Encryption Standard) is a symmetric encryption algorithm used across the internet and endorsed by NIST. After using DES since 1975 NIST adopted AES due to it's increased strength in 200…

ACLs are the bouncer's list of who gets in or out. ACLs (Access Control List) are most popularly used within networking but the concept of a list that say who gets in or out is a concept used through…