What are the essential components of a disaster recovery plan, and how do they ensure resilience?

How do man-in-the-middle attacks intercept communications, and what measures can prevent them?

How does a security audit differ from a vulnerability assessment in scope and objectives?

What are the differences between white hat, black hat, and grey hat hackers in terms of their actions and intent?

What role do cryptographic algorithms play in securing data through encryption and authentication?

How does a denial-of-service (DoS) attack differ from a distributed denial-of-service (DDoS) attack in scope and impact?

How do advanced persistent threats (APTs) operate, and what strategies counteract them?

What is the principle of least privilege in access control, and how does it enhance security?

How do buffer overflow attacks exploit system vulnerabilities, and what measures can prevent them?

What is the primary role of a security operations center (SOC) in detecting and responding to threats?