Attacks and Exploits Word Search
HardFind each attack technique hidden in the grid.
V
L
A
J
C
W
U
B
P
B
O
C
O
P
G
L
F
Q
G
C
A
F
V
P
N
X
T
A
V
O
A
W
X
P
V
U
F
Z
N
S
L
R
M
C
B
A
K
U
P
H
C
R
W
M
J
M
O
I
M
B
N
I
E
T
I
F
S
X
S
J
T
O
A
T
U
H
P
K
Y
I
N
C
P
S
O
S
D
M
S
F
M
A
R
G
L
O
J
O
X
T
E
K
B
P
S
E
Y
V
C
N
O
L
E
U
T
W
C
R
D
Y
Y
L
F
Q
N
I
G
P
C
L
F
A
U
W
A
S
O
D
D
M
H
F
G
X
T
H
B
T
Y
D
H
A
Z
B
T
K
G
O
E
E
I
M
E
H
O
B
D
Z
Q
I
T
B
A
O
R
O
O
F
X
R
O
T
Y
S
M
T
Y
X
H
P
U
I
N
G
E
S
V
Q
M
R
Y
D
G
X
Y
S
V
T
P
Z
S
T
U
Q
A
Y
G
G
M
M
M
E
X
G
A
Drag across letters, or tap the first and last letter. On a keyboard, use arrows + Enter.
Terms in this set
- DDoS Distributed Denial of Service — flooding a target from many sources to exhaust capacity.
- Injection Inserting malicious input that the system mistakenly interprets as code or commands.
- XSS Cross-Site Scripting — injecting client-side script into web pages viewed by other users.
- CSRF Cross-Site Request Forgery — tricking a logged-in user's browser into making unwanted requests.
- Exploit Code or technique that takes advantage of a specific vulnerability to achieve an attacker goal.
- Zero-day A vulnerability unknown to the vendor — and therefore unpatched — at the time of exploitation.
- Spoofing Falsifying identity — sender address, IP, MAC, ARP, DNS, or caller ID.
- MITM Man-in-the-Middle — an attacker secretly relaying and possibly altering communication between two parties.
- Brute Force Trying every possible value (passwords, keys) until one succeeds.
- Payload The portion of an exploit or malware that performs the attacker's intended action.
- Keylogger Software or hardware that records keystrokes to capture credentials and sensitive input.
- Backdoor A hidden method of bypassing normal authentication to maintain access.