Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

CompTIA CySA+ CS0-003/Acronyms/Part 17

Acronym study

CS0-003 Acronyms — Part 17 of 18

Terms 481–510 of 514 CS0-003 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 16Part 17 of 18Part 18 →

Term 481

True positive

A true positive is when a security tool correctly identifies a real threat or malicious activity.

Full entry →
Full True positive glossary entry →

Term 482

Trusted Advisor

A Trusted Advisor is an IT professional who earns deep client trust through expert guidance, ethical behavior, and a focus on the client’s long-term success rather than just selling products.

Full entry →
Full Trusted Advisor glossary entry →

Term 483

TTP

TTP stands for Tactics, Techniques, and Procedures, which describe the behavior patterns and methods used by threat actors in cybersecurity attacks.

Full entry →
Full TTP glossary entry →

Term 484

Typosquatting

Typosquatting is a cyberattack where attackers register domain names that are common misspellings of popular websites to trick users into visiting fraudulent sites.

Full entry →
Full Typosquatting glossary entry →

Term 485

Unauthenticated scan

An unauthenticated scan is a vulnerability assessment performed without providing valid login credentials, simulating an outside attacker's perspective.

Full entry →
Full Unauthenticated scan glossary entry →

Term 486

Use case

A use case is a description of how a specific user or system interacts with a system to achieve a particular goal, often used in security operations to define required functions and validate system behavior.

Full entry →
Full Use case glossary entry →

Term 487

User Access Administrator

A User Access Administrator is an IT professional responsible for managing who can access what resources in an organization, including creating, modifying, and revoking user accounts and permissions across systems.

Full entry →
Full User Access Administrator glossary entry →

Term 488

Virtualization security

Virtualization security is the practice of protecting virtualized environments including virtual machines, hypervisors, virtual networks, and related infrastructure from threats and vulnerabilities.

Full entry →
Full Virtualization security glossary entry →

Term 489

Virus

A virus is a malicious software program that attaches itself to legitimate files or programs and spreads to other systems, often causing damage or stealing information.

Full entry →
Full Virus glossary entry →

Term 490

Vishing

Vishing is a social engineering attack where criminals use phone calls or voice messages to trick victims into revealing sensitive information.

Full entry →
Full Vishing glossary entry →

Term 491

VPC Flow Logs

A feature that captures information about the IP traffic going to and from network interfaces in a Virtual Private Cloud (VPC).

Full entry →
Full VPC Flow Logs glossary entry →

Term 492

VPN

A VPN (Virtual Private Network) creates a secure, encrypted tunnel between your device and a remote server, protecting your data and hiding your online activity.

Full entry →
Full VPN glossary entry →

Term 493

VPN concentrator

A VPN concentrator is a network device that manages, encrypts, and routes multiple VPN connections from remote users or sites into a single secure gateway.

Full entry →
Full VPN concentrator glossary entry →

Term 494

VPN Gateway

A VPN Gateway is a network device or service that creates an encrypted tunnel between two or more networks over the internet, allowing secure communication.

Full entry →
Full VPN Gateway glossary entry →

Term 495

Vulnerability

A vulnerability is a weakness in a system, network, or software that could be exploited by a threat to cause harm or unauthorized access.

Full entry →
Full Vulnerability glossary entry →

Term 496

Vulnerability assessment

A vulnerability assessment is a systematic review of security weaknesses in an information system, evaluating if the system is susceptible to any known vulnerabilities, assigning severity levels, and recommending remediation or mitigation.

Full entry →
Full Vulnerability assessment glossary entry →

Term 497

Vulnerability management

Vulnerability management is the continuous process of identifying, classifying, prioritizing, and remediating security weaknesses in an organization's IT environment.

Full entry →
Full Vulnerability management glossary entry →

Term 498

Vulnerability scan

A vulnerability scan is an automated process that checks systems, networks, and applications for known security weaknesses or misconfigurations.

Full entry →
Full Vulnerability scan glossary entry →

Term 499

Vulnerability scanner

A vulnerability scanner is an automated tool that identifies security weaknesses in systems, networks, and applications by comparing their configurations and software versions against known vulnerability databases.

Full entry →
Full Vulnerability scanner glossary entry →

Term 500

Vulnerability scanning

Vulnerability scanning is an automated process that identifies security weaknesses in systems, networks, and applications by comparing them against known vulnerability databases.

Full entry →
Full Vulnerability scanning glossary entry →

Term 501

Watering hole attack

A watering hole attack is a cyberattack where the attacker compromises a website that a target group trusts, in order to infect visitors with malware.

Full entry →
Full Watering hole attack glossary entry →

Term 502

Web Application Firewall

A Web Application Firewall (WAF) is a security tool that monitors, filters, and blocks HTTP traffic to and from a web application to protect it from common attacks.

Full entry →
Full Web Application Firewall glossary entry →

Term 503

Web application scan

A web application scan is an automated security test that examines a web application for vulnerabilities that could be exploited by attackers.

Full entry →
Full Web application scan glossary entry →

Term 504

Whaling

Whaling is a type of phishing attack that specifically targets high-level executives or senior management in an organization to steal sensitive data or money.

Full entry →
Full Whaling glossary entry →

Term 505

Windows Defender Firewall

Windows Defender Firewall is a built-in security feature in Microsoft Windows that monitors and controls incoming and outgoing network traffic based on predetermined security rules.

Full entry →
Full Windows Defender Firewall glossary entry →

Term 506

Windows event log

The Windows event log is a built-in service that records system, security, and application activities in a structured file so administrators can monitor health, detect problems, and investigate security incidents.

Full entry →
Full Windows event log glossary entry →

Term 507

Wireless access point

A wireless access point is a networking device that allows Wi-Fi-enabled devices to connect to a wired network, typically a local area network (LAN), acting as a bridge between wireless and wired communication.

Full entry →
Full Wireless access point glossary entry →

Term 508

Worm

A worm is a type of malicious software that can copy itself and spread to other computers over a network, often without any human action.

Full entry →
Full Worm glossary entry →

Term 509

X-Ray

X-Ray is a data analysis and visualization tool used in cloud and distributed systems to trace and debug requests as they travel through an application's components.

Full entry →
Full X-Ray glossary entry →

Term 510

X-Ray tracing

X-Ray tracing is a monitoring technique used in cloud applications to trace requests as they travel through different services, helping identify performance bottlenecks and errors.

Full entry →
Full X-Ray tracing glossary entry →
← Part 16Part 18 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17currentPart 18

Study resources

All CS0-003 Acronyms→CS0-003 Practice Tests→CS0-003 Study Guide→Exam Domains→