Files
getting-started-in-cybersec/README.md
T

69 lines
1.5 KiB
Markdown

# getting-started-in-cybersec
A guide to go from zero to hero in cyber security
## fundamentals and theory
1. definitions
2. core ideas
a. GRC
- security culture
- budget
- man power
b. CIA triad
c. security in depth + zero trust security vs castle methoddiv. assume compromise
d. assessing threats
- threat actors
e. threat modeling
f. risk analysis
- assets
- financial impact modeling
- heatmap of threats
g. mitigating risk
h. controlls
- administrative
- technical
- detective
- preventitive
- deturrant
i. disaster recovery
- assume compromise
- redundant backups
- hot/cold/warm sites
j. access and authentication
- access
- authentication
- MFA
i. soemthing you know
ii. something you have
iii. something you are
iv. location
3. how security departments usually work
a. SOC
b. NOC
c. IR
d. administrative
4. offensive/defensive aka red team/blue team
a. blue team
b. red team
c. red team informs blue team
d. purple team
## technical concepts and theory
1. networking
a. client-server model
b. network devices
c. ip addresses
d. mac addresses
e. LAN
f. ARP
g. DHCP
h. routing
I. TCP
- packets
J. DNS
2. operating systems
a. windows
b. linux
c. android
d. ios
e. embedded/iot