more on the outline, reformatted nested lists to be prettier
This commit is contained in:
@@ -1,37 +1,34 @@
|
|||||||
# getting-started-in-cybersec
|
# getting-started-in-cybersec
|
||||||
A guide to go from zero to hero in cyber security
|
A guide to go from zero to hero in cyber security
|
||||||
|
|
||||||
Outline of core fundamentals (mostly blue team)
|
## fundamentals and theory
|
||||||
* fundamentals
|
1. definitions
|
||||||
1. definitions
|
2. core ideas
|
||||||
2. core ideas
|
a. GRC
|
||||||
i. GRC
|
|
||||||
- security culture
|
- security culture
|
||||||
- budget
|
- budget
|
||||||
- man power
|
- man power
|
||||||
ii. CIA triad
|
b. CIA triad
|
||||||
iii. security in depth + zero trust security vs castle method
|
c. security in depth + zero trust security vs castle methoddiv. assume compromise
|
||||||
iv. assume compromise
|
d. assessing threats
|
||||||
v. assessing threats
|
|
||||||
- threat actors
|
- threat actors
|
||||||
vi. threat modeling
|
e. threat modeling
|
||||||
vii. risk analysis
|
f. risk analysis
|
||||||
- assets
|
- assets
|
||||||
- financial impact modeling
|
- financial impact modeling
|
||||||
- heatmap of threats
|
- heatmap of threats
|
||||||
viii. mitigating risk
|
g. mitigating risk
|
||||||
|
h. controlls
|
||||||
ix. controlls
|
|
||||||
- administrative
|
- administrative
|
||||||
- technical
|
- technical
|
||||||
- detective
|
- detective
|
||||||
- preventitive
|
- preventitive
|
||||||
- deturrant
|
- deturrant
|
||||||
x. disaster recovery
|
i. disaster recovery
|
||||||
- assume compromise
|
- assume compromise
|
||||||
- redundant backups
|
- redundant backups
|
||||||
- hot/cold/warm sites
|
- hot/cold/warm sites
|
||||||
xi. access and authentication
|
j. access and authentication
|
||||||
- access
|
- access
|
||||||
- authentication
|
- authentication
|
||||||
- MFA
|
- MFA
|
||||||
@@ -39,29 +36,33 @@ Outline of core fundamentals (mostly blue team)
|
|||||||
ii. something you have
|
ii. something you have
|
||||||
iii. something you are
|
iii. something you are
|
||||||
iv. location
|
iv. location
|
||||||
3. how security departments usually work
|
3. how security departments usually work
|
||||||
i. SOC
|
a. SOC
|
||||||
ii. NOC
|
b. NOC
|
||||||
iii. IR
|
c. IR
|
||||||
iv. administrative
|
d. administrative
|
||||||
|
4. offensive/defensive aka red team/blue team
|
||||||
|
a. blue team
|
||||||
|
b. red team
|
||||||
|
c. red team informs blue team
|
||||||
|
d. purple team
|
||||||
|
|
||||||
4. offensive/defensive aka red team/blue team
|
## technical concepts and theory
|
||||||
i. blue team
|
1. networking
|
||||||
ii. red team
|
a. client-server model
|
||||||
iii. red team informs blue team
|
b. network devices
|
||||||
iv. purple team
|
c. ip addresses
|
||||||
|
d. mac addresses
|
||||||
5. Look ahead to technical concepts
|
e. LAN
|
||||||
i. networking
|
f. ARP
|
||||||
- client-server model
|
g. DHCP
|
||||||
- ip addresses
|
h. routing
|
||||||
- mac addresses
|
I. TCP
|
||||||
- LAN
|
- packets
|
||||||
- ARP
|
J. DNS
|
||||||
- DHCP
|
2. operating systems
|
||||||
- routing
|
a. windows
|
||||||
ii. networking contd
|
b. linux
|
||||||
- TCP
|
c. android
|
||||||
i. packets
|
d. ios
|
||||||
- UDP
|
e. embedded/iot
|
||||||
- DNS
|
|
||||||
|
|||||||
Reference in New Issue
Block a user