Cyber Security Cheat Sheet 2026
The 30 highest-yield Cyber Security facts, distilled from real exam questions. Print it, save it as a PDF, or study it here — free, no sign-up.
90 questions
120 min time limit
70% to pass
- Which attack targets cloud metadata services to steal temporary credentials? → Server-Side Request Forgery (SSRF) targeting the instance metadata service
- What is a playbook in the context of incident response? → A documented step-by-step procedure for responding to a specific type of incident
- Which protocol provides encryption for data transmitted over a network by operating at the transport layer? → TLS
- Which OWASP Top 10 risk refers to using outdated components with known vulnerabilities in web applications? → Using Components with Known Vulnerabilities
- Which artifact should be preserved immediately when ransomware is detected on a system? → A forensic memory and disk image before shutdown
- Which of the following best describes encryption at rest? → Protecting data stored on a device or disk
- What is the purpose of patch management? → Applying updates to fix known security vulnerabilities
- When someone tries to harm a group of people by using a computer, what do they call themself? → Cyber terrorist
- What is the purpose of a payload in exploitation? → Execute code on the target after a vulnerability is exploited
- What does the principle of separation of duties prevent in access management? → A single individual from having enough access to commit and conceal fraud
- What is a rainbow table attack used to crack? → Hashed passwords by looking up precomputed hash-to-plaintext mappings
- Which cloud service model gives customers the most control over security configurations? → IaaS (Infrastructure as a Service)
- Which attack involves an adversary positioning themselves between two communicating parties to intercept traffic? → Man-in-the-Middle (MitM)
- What is a honeypot in cybersecurity? → A decoy system designed to attract and study attackers
- What is the first phase of a penetration testing engagement? → Reconnaissance
- What does the 'C' in the CIA triad stand for? → Confidentiality
- Which type of attack injects malicious scripts into web pages viewed by other users? → Cross-site scripting (XSS)
- Which phase of penetration testing involves documenting findings and providing remediation recommendations? → Reporting
- A networked group of computers used by hackers to steal information is referred to as a... → Botnet
- Which attack type involves injecting malicious scripts into web pages viewed by other users? → Cross-Site Scripting (XSS)
- What is PKI (Public Key Infrastructure) primarily responsible for? → Issuing and managing digital certificates for trusted identities
- What is SQL injection? → Injecting malicious SQL code into input fields to manipulate database queries
- Which elliptic curve algorithm is commonly used for key agreement in modern TLS implementations? → ECDH (Elliptic Curve Diffie-Hellman)
- What is the purpose of parameterized queries (prepared statements) in application security? → To separate SQL code from user-supplied data, preventing SQL injection attacks
- Which encryption standard replaced DES and is the current US federal standard for symmetric encryption? → AES
- What does IOC stand for in cybersecurity incident response? → Indicator of Compromise
- What type of attack attempts every possible key combination until the correct one is found? → Brute force attack
- What is two-factor authentication (2FA) typically composed of? → Something you know and something you have
- What is a VPN primarily used for in a corporate environment? → Create a secure encrypted tunnel for remote access
- What is the key benefit of encrypting data at rest in cloud storage? → It protects data from unauthorized access if storage media is compromised or misconfigured
Turn these facts into recall: