Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

CompTIA PenTest+ PT0-002/Acronyms/Part 5

Acronym study

PT0-002 Acronyms — Part 5 of 5

Terms 121–135 of 135 PT0-002 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 4Part 5 of 5

Term 121

Technical finding

A technical finding is a specific observation or conclusion drawn from analyzing IT systems, logs, or test results that points to a configuration issue, security vulnerability, or operational inefficiency.

Full entry →
Full Technical finding glossary entry →

Term 122

theHarvester

theHarvester is an open-source intelligence (OSINT) tool used to gather emails, subdomains, IP addresses, and other public data about a target from search engines and public sources.

Full entry →
Full theHarvester glossary entry →

Term 123

Third-party authorisation

Third-party authorisation is when a system relies on an external entity to verify a user's identity or permissions before granting access to resources.

Full entry →
Full Third-party authorisation glossary entry →

Term 124

Threat emulation

Threat emulation is the proactive simulation of real-world cyberattacks within a controlled environment to test an organization's defenses, identify vulnerabilities, and improve security posture.

Full entry →
Full Threat emulation glossary entry →

Term 125

Threat model

A threat model is a structured approach to identifying, analyzing, and prioritizing potential security threats to a system or application.

Full entry →
Full Threat model glossary entry →

Term 126

Trusted Advisor

A Trusted Advisor is an IT professional who earns deep client trust through expert guidance, ethical behavior, and a focus on the client’s long-term success rather than just selling products.

Full entry →
Full Trusted Advisor glossary entry →

Term 127

Unauthenticated scan

An unauthenticated scan is a vulnerability assessment performed without providing valid login credentials, simulating an outside attacker's perspective.

Full entry →
Full Unauthenticated scan glossary entry →

Term 128

Vishing

Vishing is a social engineering attack where criminals use phone calls or voice messages to trick victims into revealing sensitive information.

Full entry →
Full Vishing glossary entry →

Term 129

VPC Flow Logs

A feature that captures information about the IP traffic going to and from network interfaces in a Virtual Private Cloud (VPC).

Full entry →
Full VPC Flow Logs glossary entry →

Term 130

Vulnerability management

Vulnerability management is the continuous process of identifying, classifying, prioritizing, and remediating security weaknesses in an organization's IT environment.

Full entry →
Full Vulnerability management glossary entry →

Term 131

Vulnerability scanner

A vulnerability scanner is an automated tool that identifies security weaknesses in systems, networks, and applications by comparing their configurations and software versions against known vulnerability databases.

Full entry →
Full Vulnerability scanner glossary entry →

Term 132

Web application scan

A web application scan is an automated security test that examines a web application for vulnerabilities that could be exploited by attackers.

Full entry →
Full Web application scan glossary entry →

Term 133

WHOIS lookup

WHOIS lookup is a query and response protocol used to search databases that store the registration information of domain names and IP address blocks.

Full entry →
Full WHOIS lookup glossary entry →

Term 134

WPA2 cracking

WPA2 cracking is the process of exploiting weaknesses in the WPA2 wireless security protocol to recover the network password and gain unauthorized access to a Wi-Fi network.

Full entry →
Full WPA2 cracking glossary entry →

Term 135

XSS

Cross-Site Scripting (XSS) is a security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users.

Full entry →
Full XSS glossary entry →
← Part 4All parts →

Acronym parts

Part 1Part 2Part 3Part 4Part 5current

Study resources

All PT0-002 Acronyms→PT0-002 Practice Tests→PT0-002 Study Guide→Exam Domains→