fb1efbdfb8f747ad58572a81b9237376ef8bc6de
getting-started-in-cybersec
A guide to go from zero to hero in cyber security
fundamentals and theory
- definitions
- core ideas a. GRC - security culture - budget - man power b. CIA triad c. security in depth + zero trust security vs castle methoddiv. assume compromise d. assessing threats - threat actors e. threat modeling f. risk analysis - assets - financial impact modeling - heatmap of threats g. mitigating risk h. controlls - administrative - technical - detective - preventitive - deturrant i. disaster recovery - assume compromise - redundant backups - hot/cold/warm sites j. access and authentication - access - authentication - MFA i. soemthing you know ii. something you have iii. something you are iv. location
- how security departments usually work a. SOC b. NOC c. IR d. administrative
- offensive/defensive aka red team/blue team a. blue team b. red team c. red team informs blue team d. purple team
technical concepts and theory
- networking
a. client-server model
b. network devices
c. ip addresses
d. mac addresses
e. LAN
f. ARP
g. DHCP
h. routing
I. TCP
- packets J. DNS
- operating systems a. windows b. linux c. android d. ios e. embedded/iot
Description