Security Knowledge Index

Cybersecurity glossary: terms, concepts & definitions

Clear, practical definitions for ethical hacking, Linux security, SOC operations, compliance, cloud, DevSecOps, networking, malware, and security tools.

Browse all glossary termsStart cybersecurity basics
ABCDEFGHIJKLMNOPQRSTUVWXYZ

Each term connects to examples, tools, tutorials, and labs — not just dictionary text.

Popular Cybersecurity Terms

Start with the most important cybersecurity concepts every learner and professional should understand.

SQL Injection

A web application attack where malicious SQL queries are inserted into input fields to access, modify, or delete database information.

Learn SQL Injection

SIEM

A Security Information and Event Management system collects, analyzes, and correlates logs to detect suspicious activity and security incidents.

Learn SIEM

CVE

Common Vulnerabilities and Exposures is a public identifier system used to track known cybersecurity vulnerabilities.

Learn CVE

Zero Trust

A security model based on the principle of “never trust, always verify,” where every user, device, and request must be continuously validated.

Learn Zero Trust

SOC 2

A compliance framework used to evaluate how service organizations manage security, availability, confidentiality, processing integrity, and privacy.

Learn SOC 2

Malware

Malicious software designed to damage systems, steal data, disrupt operations, or gain unauthorized access.

Learn Malware
Browse all glossary terms

Explore Glossary by Cybersecurity Category

Browse cybersecurity terms by topic area and build structured knowledge across security domains.

Cybersecurity Fundamentals

Core security terms every beginner should know.

Example terms

    ConfidentialityIntegrityAvailabilityThreatVulnerabilityRiskAttack SurfaceDefense in DepthLeast Privilege
Browse Fundamentals Terms

Ethical Hacking & Penetration Testing

Terms related to offensive security, testing, exploitation, and reporting.

Example terms

    ReconnaissanceEnumerationExploitPayloadPrivilege EscalationSQL InjectionXSSCSRF
Browse Ethical Hacking Terms

Web Application Security

Terms related to secure web applications and OWASP risks.

Example terms

    AuthenticationAuthorizationSession HijackingXSSCSRFSSRFCORSContent Security Policy
Browse Web Security Terms

SOC & Blue Team

Terms related to security monitoring, detection, alert triage, and incident response.

Example terms

    SOCSIEMAlert TriageThreat HuntingIOCLog CorrelationFalse PositivePlaybook
Browse SOC Terms

Malware & Threats

Terms related to malicious software, attacker behavior, and threat activity.

Example terms

    MalwareRansomwareTrojanPhishingBotnetRootkitCommand and Control
Browse Malware Terms

Linux Security

Terms related to Linux systems, hardening, permissions, logging, and audit readiness.

Example terms

    chmodchownsudoPAMSSHauditdiptablesSUIDSGID
Browse Linux Security Terms

Networking Security

Terms related to networks, protocols, traffic inspection, and firewall concepts.

Example terms

    TCPUDPDNSNATVPNFirewallIDSIPSTLS
Browse Networking Terms

Cloud Security

Terms related to cloud identity, storage, logging, and misconfigurations.

Example terms

    IAMSecurity GroupCloudTrailKMSShared Responsibility ModelCloud Misconfiguration
Browse Cloud Security Terms

DevSecOps

Terms related to secure software delivery, CI/CD, containers, secrets, and automation.

Example terms

    CI/CDSASTDASTSCASBOMSecrets ManagementShift Left Security
Browse DevSecOps Terms

Compliance & GRC

Terms related to governance, risk, compliance, controls, audits, and evidence.

Example terms

    SOC 2ISO 27001PCI DSSGDPRRisk RegisterControlEvidenceAudit Trail
Browse Compliance Terms

Incident Response & Forensics

Terms related to incident handling, containment, investigation, evidence, and recovery workflows.

Example terms

    IncidentContainmentEradicationRecoveryChain of CustodyForensicsRoot Cause AnalysisLessons Learned
Browse Incident Response Terms

Identity & Access Security

Terms related to authentication, authorization, identity management, privileged access, and directory security.

Example terms

    IAMMFASSORBACActive DirectoryKerberosPrivileged AccessIdentity Provider
Browse Identity Security Terms

Cybersecurity Term of the Day

Recently Added Glossary Terms

Explore the latest cybersecurity terms added to PentesterWorld's growing knowledge base.

Most Searched Cybersecurity Terms

Quick links to the definitions learners look up most — from offensive basics to compliance and cloud security.

Go Beyond Definitions with Full Tutorials

Glossary terms help you understand concepts quickly. Tutorials help you learn the complete topic with chapters, examples, labs, quizzes, assignments, and practical workflows.

Cybersecurity Fundamentals

Understand core cybersecurity concepts, threats, risks, controls, and defense principles.

Start Tutorial →

OWASP Top 10 Complete Guide

Learn the most common web application security risks with real examples and prevention techniques.

Start Tutorial →

SOC Analyst Foundation

Learn logs, SIEM, alerts, incident response, and detection workflows.

Start Tutorial →

Linux Security Hardening

Learn Linux permissions, SSH security, PAM, auditd, firewall rules, and compliance checks.

Start Tutorial →

Practice Concepts with Cybersecurity Tools

Use PentesterWorld tools to understand and apply glossary concepts in real-world scenarios.

JWT Decoder

Related terms: JWT · Token · Authentication · Authorization

Open Tool →

Hash Generator

Related terms: Hashing · SHA256 · MD5 · Integrity

Open Tool →

SSL/TLS Checker

Related terms: TLS · HTTPS · Certificate · Web Security

Open Tool →

Chmod Calculator

Related terms: Linux Permissions · chmod · Read · Write · Execute

Open Tool →

Log Parser

Related terms: Logs · SIEM · Parsing · Incident Response

Open Tool →

Password Strength Checker

Related terms: Password Policy · Entropy · MFA · Authentication

Open Tool →

Understand Terms Through Hands-On Labs

Many cybersecurity terms are easier to understand when practiced. Explore featured labs connected with glossary concepts and learn how they work in real environments.

How PentesterWorld Glossary Terms Are Written

Each glossary term is designed to be practical, clear, and useful for real-world cybersecurity learning.

Simple Definition

A short explanation written in beginner-friendly language.

Detailed Explanation

A deeper breakdown of the term, how it works, and where it is used.

Real-World Example

Practical examples from cybersecurity, IT operations, SOC, Linux, cloud, or compliance environments.

Attack and Defense Context

Where applicable, terms explain both attacker perspective and defender perspective.

Related Tools and Labs

Each term connects to relevant tools, tutorials, labs, quizzes, and learning paths.

Compliance Relevance

Important terms include SOC 2, ISO 27001, CIS, PCI DSS, GDPR, or audit-related context where relevant.

Why a Cybersecurity Glossary Matters

Cybersecurity includes many technical terms from networking, operating systems, cloud platforms, application security, malware analysis, compliance, risk management, and security operations. A structured glossary helps learners and professionals understand these concepts clearly and connect them with real-world usage.

PentesterWorld's glossary is built to go beyond short definitions. Each term connects with related tutorials, tools, labs, quizzes, and practical examples so users can move from understanding a term to applying it in real security scenarios.

Unlike a basic dictionary, this glossary is designed to help you move from definition to practical understanding. Whether you are learning about SQL Injection, SIEM, Linux permissions, SOC 2, Zero Trust, malware, or cloud IAM, each term helps you understand what it means, why it matters, how it is used, and where to learn more.

Cybersecurity Glossary FAQs

What is a cybersecurity glossary?

A cybersecurity glossary is a collection of security-related terms, definitions, concepts, and explanations used in cybersecurity, ethical hacking, SOC operations, compliance, cloud security, and IT infrastructure.

Who should use this glossary?

This glossary is useful for students, beginners, SOC analysts, ethical hackers, IT administrators, DevOps engineers, GRC professionals, and anyone learning cybersecurity.

Are the glossary terms beginner-friendly?

Yes. Terms include simple definitions, detailed explanations, real-world examples, related concepts, and links to tutorials or labs for deeper learning.

Does this glossary cover compliance terms?

Yes. It includes compliance and audit-related terms such as SOC 2, ISO 27001, CIS Controls, PCI DSS, GDPR, risk register, evidence, controls, and audit trails.

Can I learn cybersecurity only from glossary terms?

Glossary terms help you understand concepts, but full learning requires tutorials, labs, tools, quizzes, and practical exercises. PentesterWorld connects glossary terms with deeper learning resources.

How often is the glossary updated?

The glossary is updated regularly with new cybersecurity terms, emerging threats, tools, compliance concepts, cloud security topics, and DevSecOps terminology.

Get Weekly Cybersecurity Terms, Tools & Learning Resources

Subscribe to receive beginner-friendly cybersecurity explanations, practical labs, tools, checklists, and tutorials directly in your inbox.

No spam. Only practical cybersecurity learning, tools, and resources.

Start Learning Cybersecurity Beyond Definitions

Explore tutorials, labs, tools, quizzes, and roadmaps to turn cybersecurity concepts into practical skills.

Explore TutorialsPractice LabsUse Free Tools