Embarking on a journey into cybersecurity can seem overwhelming, but with the right resources and guidance, it becomes an exciting and achievable goal. Below, I’ve compiled some essential resources and tips to help you get started and progress in the field of cybersecurity.
1. IT Basics
Before diving deeper, make sure you’ve got the IT essentials down. Here’s a great place to begin:
CompTIA A+
CompTIA A+ is an entry-level certification that serves as a foundational credential for aspiring IT professionals. It covers essential knowledge and skills related to hardware, software, networking, and troubleshooting, making it an ideal starting point for those new to the field.
- There are free YouTube videos available that cover the syllabus in about 10–11 hours. You can also check out this informative video from one of my favorite channels on YouTube: CompTIA A+ Certification Video Course by PowerCert Animated Videos
- Even if you don’t intend to take the certification exam, I recommend completing the topics and syllabus it offers. This will significantly advance your knowledge and clarify basic IT terms and technologies.
- There is also a free course launched by TCM Security called Practical Help Desk. It is amazing; the topics are well organized, and there are ticket questions between the lectures that help you prepare for real-life scenarios. They also provide a certificate at the end of the course, so be sure to check it out!
- Here is the link to the course: https://academy.tcm-sec.com/p/practical-help-desk
2. Networking Basics
Understanding networking is crucial for any cybersecurity professional. Here’s where you can get started:
CompTIA Network+
CompTIA Network+ is a certification that focuses on the essential networking skills required to design, manage, and troubleshoot wired and wireless networks. It covers a broad range of topics, including network architecture, network operations, network security, and network troubleshooting.
- There are many online resources for learning networking. I would again suggest PowerCert’s video for a good introduction. Check it out here: CompTIA Network+ by PowerCert Animated Videos
3. Kali Linux
It’s important to familiarize yourself with Kali Linux as it is widely regarded as the go-to operating system for ethical hacking.
Virtualization: Before diving into Kali Linux, it’s important to understand the concept of virtualization, especially since most of us use Windows or macOS. Virtualization allows you to install Linux on a virtual machine, which is both convenient and cost-effective. Additionally, you can set up virtual hacking labs and virtual victim computers, enabling you to practice hacking without any legal issues. I recommend using VMware or Oracle VirtualBox as your hypervisor to install Kali. Personally, I prefer VMware because I find it smoother; although it typically requires a license, it can be installed for free for personal use. You can find numerous YouTube videos that walk you through the installation of Kali Linux as a VM. Hopefully, I’ll also be posting a guide on this in my future blogs, so stay tuned!
A hypervisor is software that allows you to create and run virtual machines (VMs) on a single physical computer, enabling multiple operating systems to operate simultaneously.
There are plenty of courses available on YouTube, but check out this one from HackerSploit, which I consider to be one of the best Kali Linux series: Linux Essentials for Hackers
4. Scripting and Programming
Knowledge of scripting or programming languages, especially Python, is invaluable in cybersecurity. Python is widely used for automating tasks and developing security tools. Learn it!
Check these out for learning bash scripting:
For Python:
- The internet is full of Python courses — find one that suits you best. But remember, don’t fall into tutorial hell. Learn the basics first, and then start coding mini projects for your hacking career. Check out this one by HackerSploit: Python3 for Penetration Testing
5. Useful Websites for Cybersecurity
Here are some websites to enhance your learning and knowledge in cybersecurity:
- Network Academy: Focuses on networking concepts in an insightful way — must check it out!
- Study CCNA: CCNA blog website of Neil Anderson, creater of the highest rated CCNA course on Udemy
- W3Schools: Known for its comprehensive guides on programming languages, it’s a valuable resource when building or editing custom scripts and for quickly reviewing a language.
- Hack The Box: One of the leading platforms in cybersecurity training. Be sure to check out their Tier 0 modules — they’re designed for beginners and are free of charge.
- TryHackMe: Offers interactive cybersecurity learning.
- PortSwigger Web Security Learning Paths: Provides structured learning paths in web security. (It will also help you a lot if you want to pursue a career as a bug bounty hunter ;))
- Hacksplaining: Offers top web vulnerabilities to learn according to OWASP Top 10 — this will also help you in bug bounty hunting.
https://www.hacksplaining.com/lessons
- OverTheWire: Offers games that teach security concepts in a fun and practical way.
- Hack This Site: Another training ground for hackers to test their skills
- The Hacker News: Stay updated on events happening in the cybersecurity world.
6. Recommended YouTube Channels
Here are some excellent YouTube channels to follow for cybersecurity content:
- zSecurity (Zaid also offers some excellent courses on cybersecurity and ethical hacking on Udemy. If you’re willing to spend a few bucks, definitely check them out.)
7. Further Practice and Professional Development
Once you start gaining confidence with the basics, consider diving into practical experiences:
- Capture The Flag (CTF): Participate in CTF challenges to test and improve your skills. Check out PicoCTF.
- Bug Bounty Programs (BBP): Engage in bug bounty programs to find and report vulnerabilities. Explore opportunities on HackerOne.
8. Building Your Online Presence
Finally, don’t forget to build and showcase your skills:
- GitHub: Regularly upload mini-projects, code samples, and security scripts to your GitHub repository. This not only showcases your programming skills but also demonstrates your commitment to cybersecurity best practices and continuous learning.
- LinkedIn: Showcase your growth by adding completed certifications, courses, and experiences to your LinkedIn profile for recruiters to see.
By following these steps and utilizing these resources, you’ll be well on your way to a successful career in cybersecurity. Stay curious, keep learning, and embrace the challenges along the way. Happy hacking!