Term 181
Exam domain
An exam domain is a major topic area or category of knowledge that a certification exam tests, like a chapter in a study guide.
Acronym study
Terms 181–210 of 610 SY0-701 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 181
An exam domain is a major topic area or category of knowledge that a certification exam tests, like a chapter in a study guide.
Term 182
An exploit is a piece of code, a sequence of commands, or a technique that takes advantage of a vulnerability in a system or software to cause unintended behavior, often for malicious purposes.
Term 183
Exploitation is the act of using a vulnerability or weakness in a system, network, or application to gain unauthorized access, cause damage, or extract data.
Term 184
An extended access control list (ACL) is a set of rules that filters network traffic based on source and destination IP addresses, protocol type, and port numbers, providing more granular control than a standard ACL.
Term 185
Extended Detection and Response (XDR) is a security approach that collects and analyzes data from multiple sources like endpoints, networks, servers, and email to detect and stop threats more effectively.
Term 186
Extensible Authentication Protocol (EAP) is a flexible authentication framework used in network access control, particularly in wireless and point-to-point connections, that supports multiple authentication methods without requiring changes to the underlying protocol.
Term 187
EAP over LAN (EAPoL) is a protocol that carries authentication messages between a device and a network access point before the device is allowed to connect to the network.
Term 188
Fail2ban is a security tool that monitors log files for repeated authentication failures and temporarily bans the offending IP addresses using firewall rules.
Term 189
Failover routing is a network design that automatically redirects traffic to a backup path when the primary path fails, keeping services available.
Term 190
A feature update policy is a set of rules that controls how and when new features and capabilities are deployed to software, ensuring consistency, security, and minimal disruption across an organization.
Term 191
Federation is a system that lets you use one set of login credentials (like your work email and password) to access resources across different organizations or services without needing separate accounts for each one.
Term 192
Fileless malware is a type of malicious activity that uses legitimate system tools and memory to execute attacks, leaving no traditional file on the hard drive.
Term 193
A firewall is a network security system that monitors and controls incoming and outgoing traffic based on predetermined security rules to protect trusted internal networks from untrusted external networks.
Term 194
A firewall log is a record of network traffic that a firewall has allowed or denied, used by IT professionals to monitor security events and troubleshoot connectivity issues.
Term 195
A firewall rule is a set of conditions that tells a firewall which network traffic to allow or block based on attributes like source, destination, port, and protocol.
Term 196
A floating static route is a backup route in a routing table that is only used when the primary route fails, because it has a higher administrative distance (lower priority).
Term 197
A forensic image is an exact, bit-for-bit copy of a storage device, including all deleted and hidden data, created and preserved for digital investigation.
Term 198
FTP, or File Transfer Protocol, is a standard network protocol used to transfer files between a client and a server over a TCP/IP network.
Term 199
A gateway endpoint is a networking component that acts as an entry and exit point for traffic between two different networks, typically translating between incompatible protocols or addressing schemes.
Term 200
The General Data Protection Regulation (GDPR) is a European Union law that sets strict rules for how organizations collect, store, process, and protect the personal data of individuals within the EU.
Term 201
A European Union law that gives individuals control over their personal data and sets strict rules for how organizations collect, store, and process that data.
Term 202
GitHub Advanced Security is a suite of security tools integrated into GitHub that helps developers find and fix vulnerabilities, secrets, and code quality issues directly in their repositories.
Term 203
Global VNet peering is a networking feature that connects two virtual networks located in different Azure regions, allowing resources in each network to communicate directly through the Microsoft backbone.
Term 204
A forged Kerberos authentication ticket that grants an attacker unrestricted domain admin access to all resources in a Windows Active Directory environment.
Term 205
Group Policy is a Windows-based feature that allows administrators to centrally manage and enforce settings for users and computers across an organization.
Term 206
Guest access allows a user to temporarily connect to a network, application, or shared resource with limited permissions, without being a permanent member of the organization.
Term 207
A guideline is a recommended set of best practices or instructions that provide direction for implementing, managing, or governing IT processes, without being strictly mandatory or enforced like a policy.
Term 208
Hardening is the process of securing a computer system or network by reducing its attack surface, disabling unnecessary services, and applying security configurations.
Term 209
A specialized hardware appliance that securely generates, stores, and manages cryptographic keys in a tamper-resistant environment for enterprise security systems.
Term 210
Hash cracking is the process of attempting to reverse a hashed value back to its original plaintext input, typically used by attackers to recover passwords or by security professionals to test password strength.