Final Exam Review

These are questions that may appear on the final exam, in one form or another. I reserve the right to ask you questions not explicitly on this review document.

This is a living document. You can view diffs between the most up-to-date version and older versions on github.

12/5/2017: Diff between the original version and this one

12/14/2017: Diff between last version version and this one

P.S. – all slides are available here

Threat modeling

Symmetric encryption and hashing

Digital Certificates

Vulnerability Scanning


Authentication and Passwords

Password Cracking

SQLi and XSS

Network Security Monitoring


Social Engineering

Information Security in Organizations

Security and Terrorism


Some of the most important things to remember from this class: