Skip to main content
Information Security Threat Categories
Network Threats:
- Information Gathering
- sniffing and eavesdropping
- spoofing
- session hijacking and Man in the middle attack
- DNS and ARP poisoning
- password-based attacks
- Denial of service attack
- Compromised-key attack
- Firewall and IDS attacks
Host Threats:
- Malware attacks
- Footprinting
- Profiling
- Password attacks
- Denial of service attacks
- Aribitrary code execution
- Unauthorized access
- Privilege escalation
- Backdoor attacks
- Physical security threats
Application Threats:
- Improper data / input validation
- Authentication and authorizations attacks
- Security misconfiguration
- Information disclosure
- Hidden-field manipulation
- Broken session management
- Buffer overflow issues
- Cryptography attacks
- SQL injection
- Phishing
- Improper error handling and exception management.
Comments
Post a Comment