Firewall 3

Intrusion Prevention System (IPS)

Intrusion Prevention System (IPS)

A security device that actively monitors and takes actions to prevent intrusions in real-time.

Host-Based Intrusion Prevention System (hIPS)

A type of IPS that is installed on individual devices to monitor and protect against threats targeting host system resources.

Network-Based Intrusion Prevention System (NIPS)

An IPS that monitors network traffic for malicious activity and can discard or modify packets.

Anomaly Detection

A method used to identify unusual patterns in network traffic that differ from established baselines.

Signature Detection

A technique that compares incoming data against a database of known attack signatures to detect malicious activity.

Privilege Escalation Exploit

An attack in which a regular user attempts to gain elevated access to resources that are normally protected from the user.

Buffer Overflow Exploit

A type of attack that targets system resources by overflowing a memory buffer, potentially enabling unauthorized actions.

Sandbox Environment

A controlled and isolated environment where code or applications can be executed and their behavior monitored without risk to other systems.

Unified Threat Management (UTM)

A comprehensive security solution that consolidates multiple security functions, including IPS, firewall, and antivirus, into a single device.

Pattern Matching

A method used by NIPS to scan incoming packets for specific byte sequences that match known attack signatures.