Cybersecurity

79 topics across 6 chapters

Chapter 1

Foundations: systems, networking, and threat landscape

Operating systems essentials (Linux/Windows) for security work

2 subtopics

Linux permissions, processes, services, and logs

Windows fundamentals: registry, services, event logs, PowerShell

Identity basics: users, groups, authentication, authorization

2 subtopics

AuthN vs AuthZ, sessions, tokens, and MFA basics

Directory services basics (AD/LDAP concepts)

Threats & adversary behavior (malware, phishing, APT, ransomware)

3 subtopics

Malware basics (delivery, persistence, C2 concepts)

Phishing & social engineering mechanics and defenses

Ransomware lifecycle and key defensive controls

Core security concepts: CIA triad, least privilege, defense-in-depth

1 subtopics

Security control types: preventive/detective/corrective

Chapter 2

Security engineering: secure design and architecture

Security architecture & reference models (zero trust, layered design)

Cryptography fundamentals & applied crypto

4 subtopics

Symmetric vs asymmetric crypto; hashing and MACs

Key management basics (rotation, storage, HSM concepts)

Certificates, PKI, and common TLS failure modes

Applied crypto mistakes to avoid (nonce reuse, weak randomness)

Application security fundamentals (web, APIs, secure coding)

2 subtopics

Web vulnerabilities (OWASP Top 10)

Secure coding patterns (input validation, output encoding, secrets)

Cloud & container security fundamentals

2 subtopics

Cloud shared responsibility model and core services

Container security basics (images, registries, runtime)

Endpoint hardening & configuration management

1 subtopics

Endpoint protection basics (EDR concepts, allowlisting)

Chapter 3

Offensive security: finding and validating weaknesses

Reconnaissance and enumeration (legal/authorized)

1 subtopics

OSINT fundamentals and operational security (OPSEC)

Vulnerability analysis & exploit fundamentals

1 subtopics

Exploit concepts: memory safety, mitigations (DEP/ASLR)

↗ Web vulnerabilities (OWASP Top 10) (see Chapter 2)

Wireless and network attack techniques (authorized)

1 subtopics

Wi‑Fi security basics (WPA2/WPA3, common misconfigurations)

Reporting, remediation guidance, and ethics

2 subtopics

Rules of engagement, legal constraints, and responsible disclosure

Write a clear technical report (steps, impact, evidence, fixes)

Chapter 4

Defensive security: monitoring, detection, and response

Logging & telemetry fundamentals

1 subtopics

Log parsing and normalization basics (timestamps, fields, schemas)

SIEM basics and detection engineering

3 subtopics

SIEM concepts (data onboarding, correlation, alerts)

Detection logic basics: IOCs vs behaviors; false positives/negatives

Write detections (Sigma/KQL/SPL basics)

Incident response lifecycle & playbooks

2 subtopics

Triage: scope, contain, eradicate, recover

Evidence handling and chain of custody basics

Threat hunting & purple teaming

Digital forensics fundamentals

2 subtopics

Disk and file system forensics basics

Memory forensics basics (what it can reveal, high-level workflow)

Chapter 5

Governance, risk, compliance, and privacy (GRC)

Risk management and security program basics

2 subtopics

Security roadmaps and prioritization (quick wins vs long-term)

Business continuity & disaster recovery basics

Security policies, standards, and frameworks

3 subtopics

Control frameworks overview (CIS Controls, NIST CSF concepts)

Policy writing basics (acceptable use, password, access, logging)

Asset inventory and data classification

Compliance & audits (SOC 2, ISO 27001, PCI DSS)

Privacy fundamentals and data protection

2 subtopics

PII and data lifecycle (collect, use, share, retain, delete)

Privacy-by-design and data minimization

Vendor, third-party, and supply-chain risk

1 subtopics

Secure procurement and vendor monitoring

Chapter 6

Career, practice labs, and specialization tracks

Build a safe home lab and practice environment

1 subtopics

Set up virtualization: VirtualBox/VMware, networks, snapshots

Portfolio projects (defensive + offensive, documented)

Interview readiness and security communication

1 subtopics

Role expectations: SOC analyst, pentester, security engineer, GRC

Certifications map and study strategy

4 subtopics

Entry-level: Security+ style fundamentals plan

Blue team: SOC/IR cert path (e.g., CySA+/GCIA-style domains)

Red team: pentest cert path (e.g., eJPT/PNPT/OSCP-style domains)

GRC: audit/risk cert path (e.g., CISA/ISO 27001)

Choose a specialization track