getting-started-in-cybersec

A guide to go from zero to hero in cyber security

fundamentals and theory

  1. definitions
  2. core ideas
    1. GRC
      • security culture
      • budget
      • man power
    2. CIA triad
    3. security in depth + zero trust security vs castle methoddiv. assume compromise
    4. assessing threats
      • threat actors
    5. threat modeling
    6. risk analysis
      • assets
      • financial impact modeling
      • heatmap of threats
    7. mitigating risk
    8. controlls
      • administrative
      • technical
      • detective
      • preventitive
      • deturrant
    9. disaster recovery
      • assume compromise
      • redundant backups
      • hot/cold/warm sites
    10. access and authentication
      • access
      • authentication
      • MFA
        1. soemthing you know
        2. something you have
        3. something you are
        4. location
  3. how security departments usually work
    1. SOC
    2. NOC
    3. IR
    4. administrative
  4. offensive/defensive aka red team/blue team
    1. blue team
    2. red team
    3. red team informs blue team
    4. purple team

technical concepts and theory

  1. networking
    1. client-server model
    2. network devices
    3. ip addresses
    4. mac addresses
    5. LAN
    6. ARP
    7. DHCP
    8. routing
    9. TCP
    • packets
    1. DNS
  2. operating systems
    1. windows
    2. linux
    3. android
    4. ios
    5. embedded/iot
S
Description
No description provided
Readme 36 KiB