Recourses

OWASP (Open Web Application Security Project)

OWASP is a non-profit organization that provides numerous free resources related to web application security. They offer guides, cheat sheets, tools, and best practices for securing web applications - owasp.org

NIST (National Institute of Standards and Technology) Special Publications

NIST publishes a wide range of cybersecurity resources that are available for free. Their publications cover various topics such as risk management, secure coding, network security, and more - nist.gov

NIST also offers a pocket guide there offers a overview of incident response procedures and best practices. It provides a step-by-step approach to handling cybersecurity incidents. The PDF version of the guide can be downloaded from the NIST website: nvlpubs.nist.gov/nistpubs/ir/2018/NIST.IR.8188.pdf

Center for Internet Security - CIS

Making the Connected World a Safer Place

At CIS®, we’re harnessing the power of global IT community to safeguard public and private organizations against cyber threats.

www.cisecurity.org

Hackerone

Preemptive security

Outmatch cybercriminals with a legion of ethical hackers who work for you to continuously protect your attack surface.

www.hackerone.com

The #1 cybersecurity upskilling platform

Hack The Box gives individuals, businesses and universities the tools they need to continuously improve their cybersecurity capabilities.

Hacker101

Hacker101 is a free class for web security. Whether you’re a programmer with an interest in bug bounties or a seasoned security professional, Hacker101 has something to teach you.

www.hacker101.com

OPENVPN

Secure access and network connectivity reimagined

Kali Linux

The most advanced Penetration Testing Distribution Kali Linux is an open-source, Debian-based Linux distribution geared towards various information security tasks, such as Penetration Testing, Security Research, Computer Forensics and Reverse Engineering.

www.kali.org

PARROTSEC

Parrot Security provides a huge arsenal of tools, utilities and libraries that IT and security professionals can use to test and assess the security of their assets in a reliable, compliant and reproducible way. From information gathering to the final report. The Parrot system gets you covered with the most flexible environment.

www.parrotsec.org

ROOT ME

The fast, easy, and affordable way to train your hacking skills.

www.root-me.org

OWASP SAMM

SAMM stands for Software Assurance Maturity Model

Our mission is to provide an effective and measurable way for all types of organizations to analyze and improve their software security posture. We want to raise awareness and educate organizations on how to design, develop, and deploy secure software through our self-assessment model.

SAMM supports the complete software lifecycle and is technology and process agnostic.

We built SAMM to be evolutive and risk-driven in nature, as there is no single recipe that works for all organizations.

owaspsamm.org

247CTF

Join a free capture the flag hacking environment

247ctf.com

Courses

Cybersecurity 101

www.khanacademy.org/partner-content/nova/nova-labs-topic/cyber/v/cybersecurity-101

Capture The Flag 101

Capture The Flags, or CTFs, are a kind of computer security competition.

Teams of competitors (or just individuals) are pitted against each other in a test of computer security skill.

Very often CTFs are the beginning of one’s cyber security career due to their team building nature and competetive aspect. In addition, there isn’t a lot of commitment required beyond a weekend.

In this guide/wiki/handbook you’ll learn the techniques, thought processes, and methodologies you need to succeed in Capture the Flag competitions.

ctf101.org

OpenSecurityTraining2

OpenSecurityTraining2’s mission is to provide the world’s deepest and best cybersecurity training.

That our classes are free is just a bonus!

opensecuritytraining.info

Learn Cybersecurity

The most beginner-friendly way to get into hacking.

ctflearn.com

MIT OpenCourseWare

Computer Science and Artificial Intelligence Laboratory (CSAIL)

CSAIL offers a collection of free cybersecurity courses online. These courses cover topics like network security, cryptography, software security, and more. Students can access lecture notes, assignments, and even video lectures from the courses - ocw.mit.edu/courses/electrical-engineering-and-computer-science

SANS Institute - Webcasts and Whitepapers

SANS offers free webcasts and whitepapers on cybersecurity topics. These resources provide insights into the latest trends, best practices, and emerging threats. You can access recordings of past webcasts and download whitepapers from their website: sans.org

The Bits and Bytes of Computer Networking

This course is part of the Google IT Support Professional Certificate offered by Coursera.

This course is designed to provide a full overview of computer networking. We’ll cover everything from the fundamentals of modern networking technologies and protocols to an overview of the cloud to practical applications and network troubleshooting - The Bits and Bytes of Computer Networking

A Graduate Course in Applied Cryptography

Cryptography is an indispensable tool used to protect information in computing systems. It is used everywhere and by billions of people worldwide on a daily basis. It is used to protect data at rest and data in motion

Download Book version 0.6

Books

The Ransomware Threat Landscape: Prepare for, recognise and survive ransomware attacks

Ransomware will cost companies around the world $20 billion in 2021. Prepare for, recognise, and survive ransomware attacks with this essential guide, which sets out clearly how ransomware works, to help business leaders better understand the strategic risks, and explores measures that can be put in place to protect the organisation.

You can get it as an Audio book on Books 24x7 - 1 Hour, 36 minutes

NIST Cybersecurity Framework: A Pocket Guide

The NIST CSF is a framework for organizations to manage and mitigate cybersecurity risk based on existing standards, guidelines, and practices. This audio guide aims to help you take a structured, sensible, risk-based approach to cybersecurity - Link

You can get it a an Audio book on Books 24x7 - 1 Hour, 22 Minutes

Cybersecurity All-in-One For Dummies

Cybersecurity All-in-One For Dummies covers a lot of ground in the world of keeping computer systems safe from those who want to break in. You can get it on Books 24x7.

Link

Hacking for Dummies, 7th Edition

Hacking For Dummies takes you on an easy-to-follow cybersecurity voyage that will teach you the essentials of vulnerability and penetration testing so that you can find the holes in your network before the bad guys exploit them. You can get it on Books 24x7.