Term 301
Network Security Group
A Network Security Group is a set of rules that controls inbound and outbound traffic to Azure resources like virtual machines and subnets.
Acronym study
Terms 301–330 of 514 CS0-003 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 301
A Network Security Group is a set of rules that controls inbound and outbound traffic to Azure resources like virtual machines and subnets.
Term 302
Network telemetry is the automated process of collecting, transmitting, and analyzing data from network devices to monitor performance, detect issues, and improve security in real time.
Term 303
Network Watcher is a monitoring and diagnostics service used in cloud environments to track network traffic, detect issues, and analyze performance between virtual machines and other resources.
Term 304
Nikto is an open-source web server scanner that tests for potentially dangerous files, outdated server software, and configuration issues.
Term 305
NSG flow logs are records of IP traffic flowing through an Azure Network Security Group, used for monitoring, analysis, and troubleshooting network security.
Term 306
OAuth abuse is the exploitation of the OAuth authorization framework by attackers to gain unauthorized access to user data or systems by manipulating tokens, redirects, or consent processes.
Term 307
OpenVAS is an open-source vulnerability scanner that helps IT professionals identify security weaknesses in networks, systems, and applications.
Term 308
Operational intelligence is the real-time analysis of IT system data to detect patterns, anomalies, and threats as they happen, enabling immediate action to protect systems and maintain performance.
Term 309
Origin access control is a security mechanism that restricts access to a network, system, or resource based on the verified identity or attributes of the requesting entity.
Term 310
The OWASP Top 10 is a regularly updated list of the most critical security risks to web applications, published by the Open Web Application Security Project (OWASP) to help developers and security professionals prioritize and mitigate common vulnerabilities.
Term 311
Packet capture is the process of intercepting and recording data packets traveling over a computer network for analysis.
Term 312
Parameter Store is a secure, centralized service for storing and managing configuration data, secrets, and environment variables used by applications and IT infrastructure.
Term 313
Pass-the-hash is a cyberattack where an attacker captures the hash of a user's password and uses it to authenticate to other systems without ever knowing the actual password.
Term 314
Passive reconnaissance is the process of gathering information about a target system or network without directly interacting with it, using publicly available sources and stealthy observation.
Term 315
A set of rules designed to enhance computer security by encouraging users to create strong, secure passwords and store them properly.
Term 316
Password spraying is a type of brute-force attack where an attacker tries a few commonly used passwords against many different accounts to avoid account lockouts.
Term 317
Patch management is the process of identifying, acquiring, testing, and deploying software updates (patches) to fix vulnerabilities, bugs, or improve performance in IT systems.
Term 318
Patch prioritization is the process of ranking security updates based on risk, impact, and urgency to decide which ones to apply first in an IT environment.
Term 319
A set of security rules that any company that handles credit card payments must follow to protect cardholder data from theft and fraud.
Term 320
Penetration testing is a simulated cyberattack on a computer system, network, or application to find security weaknesses before real attackers can exploit them.
Term 321
Persistence is the set of techniques attackers use to maintain long-term access to a compromised system even after reboots or credential changes.
Term 322
Phishing is a type of cyber attack where criminals impersonate legitimate organizations or individuals to trick victims into revealing sensitive information such as passwords, credit card numbers, or personal data.
Term 323
Piggybacking is the act of an unauthorized person following an authorized person into a restricted area or system by taking advantage of their access.
Term 324
Pivoting is a post-exploitation technique where an attacker uses a compromised system as a relay to access other systems on a network that were not directly reachable.
Term 325
A policy is a set of rules or guidelines that defines how an organization manages, secures, and operates its IT systems and services.
Term 326
Policy as code is the practice of representing and managing security, compliance, and governance rules as executable code, enabling automated validation and enforcement across infrastructure and software development workflows.
Term 327
Policy assignment is the process of attaching a set of rules or permissions to a specific resource, user, or group so that those rules are enforced in a cloud or IT environment.
Term 328
A policy definition is a formal rule or set of rules that specifies allowed or denied actions on resources within an IT environment, often used for governance, compliance, and security control.
Term 329
Policy enforcement is the process of implementing and ensuring compliance with defined security rules and configurations across an IT environment.
Term 330
Policy inheritance is the mechanism by which policies applied to a parent container in a hierarchical system automatically apply to all child objects within that container, unless explicitly blocked or overridden.