[RESOURCES]
Resources
Careers
CyberSeek
Empowering Careers in Cybersecurity - Close the cybersecurity talent gap with interactive tools and data
To guide cybersecurity career and skills development, CyberSeek provides detailed, actionable data, metrics and pathways across the cybersecurity workforce. CyberSeek lets you explore trends in cybersecurity job openings and the wide variety of available positions out there, with the categories of Oversight & Governance, Design & Development, Implementation & Operation, Protection & Defense, and Investigation.
Visit ResourcePlatform
HackTheBox
Gamified, hands-on upskilling from cybersecurity fundamentals to advanced scenarios.
A cybersecurity education platform with free and paid subscription options and a focus on penetration testing skills development. HackTheBox Academy is more geared towards complete beginners in cybersecurity, with guided courses available, while HackTheBox Labs has a range of virtual labs/machines for beginners to professionals to practice their skills and techniques on.
Visit ResourcePlatform
pwn.college
The pwn.college DOJO, an education platform for learners to develop and practice core cybersecurity skills in a hands-on fashion.
This is a free cybersecurity education platform from Arizona State University (ASU). The platform offers hands-on education through interactive challenges, designed around the concept of capture-the-flag competitions. Topics range from introductory cybersecurity concepts to advanced vulnerability research, with a focus on reverse engineering and binary exploitation.
Visit ResourceCertification
OffSec Certified Professional+ (OSCP+)
Designed for cybersecurity professionals to validate practical, hands-on skills in ethical hacking and penetration testing.
Successful candidates demonstrate proficiency in identifying vulnerabilities, exploiting systems, escalating privileges, and documenting their findings in a real-world environment. The certification is relevant to roles such as penetration testers, security analysts, and consultants, confirming their ability to conduct comprehensive security assessments.
Visit ResourceNewsletter
tl;dr sec
Keep up with Cybersecurity in 7 min/week. Join >90,000 security professionals getting the best tools, talks, and resources right in their inbox for free.
This newsletter from Clint Gibler, the Head of Security Research @ Semgrep, is released every Thursday morning with the latest releases and news in the areas of application security, cloud security, supply chain, blue & red teaming, AI security, and more.
Visit ResourcePlatform
picoCTF
picoCTF gamifies learning hacking with capture-the-flag puzzles created by trusted computer security and privacy experts at Carnegie Mellon University.
picoCTF and its picoGym is a non-competitive practice space where you can explore and solve challenges from previously released picoCTF competitions, find fresh challenges, and build a knowledge base of cybersecurity skills in a safe environment. Whether you are a cybersecurity professional, competitive hacker, or new to CTFs, you will find interesting challenges in the picoGym that you can solve at your own pace. picoCTF typically runs in March every year, but old challenges are available 24/7.
Visit ResourcePlatform
TryHackMe
Hands-on cybersecurity training through real-world scenarios.
A security education platform offering both free and paid subscription options, featuring a wide range of topics for both new and seasoned cybersecurity professionals to explore through over 900 training labs and learning pathways.
Visit ResourceTool
CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression, and data analysis.
CyberChef is a simple, intuitive web app for carrying out all manner of "cyber" operations within a web browser. These operations include simple encoding, such as XOR and Base64, as well as more complex encryption methods like AES, DES, and Blowfish. They also involve creating binary and hexadecimal dumps, compressing and decompressing data, calculating hashes and checksums, changing character encodings, and more. The tool is designed to enable both technical and non-technical analysts to manipulate data in complex ways without having to deal with complex tools or algorithms.
Visit Resource