Acronyms

Because they're everywhere and kind of overwhelming.

Acronym	Meaning
ACL	Access Control List
ADFS	Active Directory Federation Services
AP	Access Point
API	Application Programming Interface
APNS	Apple Push Notification Service
APT	Advanced Persistent Threat
ASLR	Address Space Layout Randomization
BPA	Business Partnership Agreement
CA	Certificate Authority
CAPEC	Common Attack Patterns Enumeration Classification
CERT	Computer Emergency Response Team
CGI	Common Gateway Interface
CIFS	Common Internet File System
CIRT	Computer Incident Response Team
CORS	Cross-Origin Request Scripting
COTS	Commercial Off-The-Shelf
CRL	Certificate Revocation List
CSRF	Cross-Site Request Forgery
CVE	Common Vulnerabilities Exposures
CVSS	Common Vulnerability Scoring System
CWE	Common Weakness Enumeration
DAST	Dynamic Application Security Testing
DCOM	Distributed Component Object Model
DFD	Data Flow Diagram
DLL	Dynamic Link Library
DNS	Domain Name Service
DOM	Document Object Model
DoS	Denial of Service
DTP	Dynamic Trunking Protocol
ECDSA	Elliptic Curve Digital Signature Algorithm
EULA	End User License Agreement
FTP	File Transfer Protocol
GPO	Group Policy Object
GPP	Generic Packetized Protocol
GRE	Generic Routing Encapsulation
HSTS	HTTP Strict Transport Security
HTML	HyperText Markup Language
I/O	Input/Output
ICMP	Internet Control Message Protocol
ICS	Industrial Control Systems
IDOR	Indirect Object Reference
IoT	Internet of Things
IPS	Intrusion Prevention System
IV	Initialization Vector
JPCERT	Japan Computer Emergency Response Team
JTAG	Joint Test Action Group
LAPS	Local Administrator Password Solution
LFI	Local File Inclusion
LLMNR	Link-Local Multicast Name Resolution
LPE	Local Privilege Escalation
LSASS	Local Security Authority Subsystem Service
MDM	Mobile Device Management
MFA	Multifactor Authentication
MITM	Man-in-the-Middle
MSA	Master Service Agreement
NAC	Network Access Control
NBNS	Net Bios Name Service
NDA	Non-Disclosure Agreement
NFC	Near-Field Communication
NIST	National Institute of Standards and Technology
NOP	No Operation
NSE	Network Service Engine
OS	Operating System
OSINT	Open Source Intelligence
OWASP	Open Web Application Security Project
PII	Personally Identifiable Information
POS	Point of Sale
PS	PowerShell
RCE	Remote Code Execution
RDP	Remote Desktop Protocol
RFI	Remote File Inclusion
RFID	Radio Frequent ID
RFP	Request for Proposal
ROE	Rules of Engagement
ROP	Return-oriented Programming
RPC	Remote Procedure Call
RSH	Remote Shell
RTOS	Real Time Operating System
SAM	Security Account Manager
SAN	Subject Alternative Name
SAST	Static Application Security Testing
SCADA	Supervisory Control and Data Acquisition
SCEP	Simple Certificate Enrollment Protocol
SCP	Secure Copy
SDK	Software Development Kit
SGID	Set Group ID
SID	Secure Identifier
SIEM	Security Incident Event Manager
SLA	Service Level Agreement
SMB	Server Message Block
SMTP	Simple Mail Transfer Protocol
SNMP	Simple Network Management Protocol
SOAP	Simple Object Access Protocol
SOC	Security Operation Center
SOW	Statement of Work
SPN	Service Principle Name
SQL	Structured Query Language
SSH	Secure Shell
SSL	Secure Sockets Layer
STP	Spanning Tree Protocol
SUID	Set User ID
TCP	Transmission Control Protocol
TLS	Transport Layer Security
TOTP	Time-Based One-Time Password
TPM	Trusted Platform Module
TTP	Tactics, Techniques and Procedures
UDP	User Diagram Protocol
VLAN	Virtual Local Area Network
VM	Virtual Machine
VNC	Virtual Network Connection
VPN	Virtual Private Network
WADL	Web Application Description Language
WAF	Web Application Firewall
WAR	Web Application Archive
WEP	Wired Equivalency Protocol
WinRM	Windows Remote Management
WMI	Windows Management Instrumentation
WPAD	Web Proxy Auto-Discovery
WPS	WiFi Protected Setup
WSDL	Web Services Description Language
XSD	XML Schema Document
XSS	Cross-Site Scripting
XST	Cross-Site Tracing
XXE	External Entity