アプリケーション攻撃および脆弱性

Web アプリケーションに対する攻撃は設計や実装の脆弱性を狙った悪意のあるアクティビティであり、不正アクセスやデータの盗難につながる可能性があります。

OS コマンドインジェクションとは?

OS command injection is a web application vulnerability that allows attackers to execute arbitrary commands on the underlying operating system.

ディレクトリトラバーサルとは?

Directory traversal, also known as “path traversal” (and identified with CWE-22), is a web application vulnerability that enables attackers to access unintended files on an underlying filesystem.

クラウドファイアウォールとは?

A cloud firewall acts as a virtual shield, protecting the digital boundaries of your cloud infrastructure from unauthorized access and cyberattacks.

シングルサインオン (SSO) とは?

Single Sign-On (SSO) is an authentication method that enables users to access multiple applications or services using a single set of credentials managed by a trusted provider.

What is a secure web gateway?

A Secure Web Gateway (SWG) is a cybersecurity solution that serves as a gateway between an organization's private network and the rest of the internet.

ID プロバイダー (IdP) とは?

An IdP Identity Provider is a service that creates, maintains, and manages users' identity information while providing authentication to your dependent systems.

What is a DNS amplification attack?

A DNS amplification attack is a reflection-based DDoS attack that uses open DNS resolvers to flood targets with amplified UDP traffic.

What is RDP?

Remote Desktop Protocol (RDP) is a software standard developed by Microsoft that allows users to connect to and use another computer remotely.

What are credential stuffing attacks?

Credential stuffing is a type of cyberattack where stolen usernames and passwords are used to gain unauthorized access to multiple websites.

ブルートフォース攻撃とは?

A brute force attack is a cyberattack where a hacker uses software to systematically test different password combinations to gain access to an account without authorization.