✊ Hi everyone!
For the last six years, this channel has been growing steadily, but I'd love it if you could share it with your friends to help us grow even more. A small growth of subscribers will mean a lot to me, and I know that if you can share the link, you'll be helping out a lot. Thanks for being here!
/channel/hacking_group_channel ⏰
🟩
Free Risk Assessment Resources
𝟭. 𝗜𝗦𝗢 𝟮𝟳𝟬𝟬𝟱 <https://lnkd.in/gMKsx-uj>
The ISO standard on security risk assessments. Appendix includes a list of things your should ask leadership as well as a list of threats, vulnerabilities, and attack vectors.
𝟮. 𝗡𝗜𝗦𝗧 𝟴𝟬𝟬-𝟯𝟬 <https://lnkd.in/gWTm3mxG>
The federal standard for risk assessment referenced by almost everyone. This is foundational thinking that everyone should have a basic understanding.
𝟯. 𝗖𝗜𝗦 𝗥𝗔𝗠 - 𝗥𝗶𝘀𝗸 𝗔𝘀𝘀𝗲𝘀𝘀𝗺𝗲𝗻𝘁 𝗠𝗲𝘁𝗵𝗼𝗱 <https://lnkd.in/grxJE3vw>
I love CIS. I find everything they do to be practical and actionable. They also include templates you can pick up and use right away.
𝟰. 𝗙𝗮𝗶𝗿 𝗜𝗻𝘀𝘁𝗶𝘁𝘂𝘁𝗲 <https://lnkd.in/g8AwNaCK>
I have heard great things about FAIR from other security leaders I trust. This one comes highly recommended, especially if you are looking for guidance on how to quantify risk.
𝟱. 𝗛𝗜𝗣𝗔𝗔 𝗥𝗶𝘀𝗸 𝗔𝗻𝗮𝗹𝘆𝘀𝗶𝘀 <https://lnkd.in/gxfN7-rc>
If you are required to be HIPAA compliance, this is mandatory reading. Also great for tools and templates.
𝟲. 𝗜𝗦𝗔𝗖𝗔 𝗚𝘂𝗶𝗱𝗮𝗻𝗰𝗲 𝗼𝗻 𝗥𝗶𝘀𝗸 𝗔𝘀𝘀𝗲𝘀𝘀𝗺𝗲𝗻𝘁𝘀 <https://lnkd.in/g5kMF2mE>
ISACA offers tons of guidance on risk assessments written by professionals across the industry.
𝟳. 𝗣𝗖𝗜 𝗗𝗦𝗦 𝗚𝘂𝗶𝗱𝗮𝗻𝗰𝗲 𝗼𝗻 𝗥𝗶𝘀𝗸 𝗔𝘀𝘀𝗲𝘀𝘀𝗺𝗲𝗻𝘁 <https://lnkd.in/gYnqBERW>
PCI is such a big compliance standard, that I had to include their perspective on the list. We expect the recently released version 4.0 to shake things up a lot.
𝟴. 𝗛𝗲𝗮𝗹𝘁𝗵 𝗜𝗧 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗥𝗶𝘀𝗸 𝗔𝘀𝘀𝗲𝘀𝘀𝗺𝗲𝗻𝘁 𝗧𝗼𝗼𝗹 <https://lnkd.in/g5eSnvuH>
Free tools and templates directly from the government.
𝟴. 𝗖𝗹𝗼𝘂𝗱 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗔𝗹𝗹𝗶𝗮𝗻𝗰𝗲 𝗢𝗰𝘁𝗮𝗴𝗼𝗻 𝗠𝗼𝗱𝗲𝗹 <https://lnkd.in/gRSxDKHp>
If you are in the cloud, this should be mandatory reading.
HackingSimplifiedAS/videos" rel="nofollow">https://www.youtube.com/@HackingSimplifiedAS/videos
Читать полностью…🟩 Microsoft 4 SC-100 Exam Practice Test 🟩
https://www.udemy.com/course/exam-sc-100-microsoft-cybersecurity-architect-practice-test/?couponCode=9648D02DC8B10E4B1F4B
Cyber Labs
1. Alert to win - https://alf.nu/alert1
2. Attack-Defense - https://attackdefense.com
3. Bancocn - https://bancocn.com
4. Certified Secure - https://lnkd.in/gBKK-i-s
5. CMD Challenge - https://cmdchallenge.com
6. CryptoHack - https://cryptohack.org/
7. CTF Komodo Security - https://ctf.komodosec.com
8. Ctftime - https://ctftime.org/
9. Cyberdefenders - https://lnkd.in/gCf8v4Ju
10. CyberSecLabs - https://lnkd.in/gmyzMXju
11. EchoCTF - https://echoctf.red/
12. Explotation Education - https://exploit.education
13. Google CTF - https://lnkd.in/e46drbz8
14. Hack The Box - https://lnkd.in/ggfAMdQ8
15. Hackaflag BR - https://hackaflag.com.br/
16. Hacker Security - https://lnkd.in/gJbSaY3f
17. Hacker101 - https://ctf.hacker101.com
18. Hacking-Lab - https://hacking-lab.com/
19. Hacksplaining - https://lnkd.in/gVd9dNkK
20. HackTheBox - https://www.hackthebox.com
21. Hackthis - https://www.hackthis.co.uk
22. HackXpert - https://hackxpert.com/
23. HSTRIKE - https://hstrike.com
24. ImmersiveLabs - https://immersivelabs.com
25. LetsDefend- https://letsdefend.io/
26. NewbieContest - https://lnkd.in/gZ4UjDhy
27. OSBOXES - http://www.osboxes.org/
28. OverTheWire - http://overthewire.org
29. Penetration Testing Practice Labs - https://lnkd.in/grQev9Kk
30. PentestIT LAB - https://lab.pentestit.ru
31. Pentestlab - https://pentesterlab.com
32. PicoCTF - https://picoctf.com
33. PortSwigger Web Security Academy - https://lnkd.in/gAPq2ezr
34. Practical Pentest Labs - https://lnkd.in/gUSqv6xS
35. Pwn college - https://dojo.pwn.college/
36. PWNABLE - https://lnkd.in/gNcyqG64
37. RangeForce - https://lnkd.in/gGy3feqt
38. Root in Jail - http://rootinjail.com
39. Root-Me - https://www.root-me.org
40. SANS Challenger - https://lnkd.in/gG-5_ZPF
41. SmashTheStack - https://lnkd.in/gMFNTURc
42. The Cryptopals Crypto Challenges https://cryptopals.com
43. Try Hack Me - https://tryhackme.com
44. Vulnhub - https://www.vulnhub.com
45. Vulnmachines https://vulnmachines.com/
46. W3Challs - https://w3challs.com
47. WeChall - http://www.wechall.net
48. Zenk-Security - https://lnkd.in/g_y_p5ha
49. Webgoat - https://lnkd.in/gjsgegYw
Engineering
1. Secure Software Development
https://lnkd.in/ebGpA4wG
2. Maryland Software Security
https://lnkd.in/e3z4zFmJ
3. Stanford Cyber Resiliency
https://lnkd.in/eg9BM5Bv
Hacking
1. PortSwigger Web Hacking
https://lnkd.in/eEa-fNfu
2. CodeRed Hacking Essentials
https://lnkd.in/eJbyZp_9
3. RedTeaming
https://lnkd.in/et_T2DEa
4. Free Cyber Security course from Udacity
https://lnkd.in/dnh4s6Z7
5. Ethical Hacking - SQL Injection Attack
https://lnkd.in/d8n_h5Sh
6. Cyber Security for Beginners Free Book
https://lnkd.in/dBYnyPwf
🟩
Free Certifications - Source LinkedIn
*Governance *Risk * Compliance *Cybersecurity *IT *Vulnerability
1. Vulnerability Management: https://www.qualys.com/training/course/vmdr/
2. Global IT Asset Inventory:
https://www.qualys.com/training/course/global-it-asset-inventory/
3. Scanning Strategies:
https://www.qualys.com/training/course/scanning-strategies/
4. Reporting Strategies: https://www.qualys.com/training/course/reporting-strategies/
5. Patch Management: https://www.qualys.com/training/course/patch-management/
6. Policy Compliance: https://www.qualys.com/training/course/policy-compliance/
7. PCI Compliance: https://www.qualys.com/training/course/pci-compliance/
8. Endpoint Detection & Response: https://www.qualys.com/training/course/endpointdetection-and-response/
9. Vulnerability Management: https://www.qualys.com/training/course/vulnerabilitymanagement-foundation/
10. Cloud Security Assessment & Response:
https://www.qualys.com/training/course/cloud-security-assessment-and-response/
11. API Fundamentals: https://www.qualys.com/training/course/qualys-api-fundamentals/
12. Cloud Agent: https://www.qualys.com/training/course/qualys-api-fundamentals/
13. Container Security: https://www.qualys.com/training/course/container-security/
14. File Integrity Monitoring: https://www.qualys.com/training/course/container-security/
15. Web Application Scanning: https://www.qualys.com/training/course/web-applicationscanning/
Courses taught by ISC(2)
1. Incident Detection & Response
https://lnkd.in/g533zGgp
2. Security Operations and Administration
https://lnkd.in/gAY5cW76
3. Systems and application security
https://lnkd.in/gN3eXFEM
4. Securing software, data and end points
https://lnkd.in/gmR__e7g
5. Networks and communications security
https://lnkd.in/ghmGniry
6. Cryptography
https://lnkd.in/gdHGiEDY
7. Identifying, monitoring and analyzing risk and incident response and recovery
https://lnkd.in/gUF4zMsa
8. Cloud and wireless security
https://lnkd.in/ggF8-eBH
9. Maturing Risk Management
https://lnkd.in/gQqkERpE
10. Network Security
https://lnkd.in/gCMwqY-5
11. Access controls
https://lnkd.in/gJ_dbvA7
12. Security Awareness Training
https://lnkd.in/gS5uZah6
Core Skills
1. Cisco Network Essentials
https://lnkd.in/eJQFjmcA
2. AWS Cloud
https://lnkd.in/e_auX7VE
3. Azure Cloud
https://lnkd.in/e4UacMGK
4. GCP Cloud
https://lnkd.in/eDNWnVsD
SOC
1. Lets Defend
https://lnkd.in/esC8Ftfi
2. Splunk
https://lnkd.in/et5bkjeY
3. Cisco CyberOps
https://lnkd.in/dPK2jFhZ
4. AttackIQ Mitre Att&ck Courses
https://lnkd.in/dcfmSPEJ
5. Microsoft SC-200 Course
https://lnkd.in/dbCn3k4n
6. Awesome OSINT Courses
https://lnkd.in/dTCaCf-u
7. CSILinux Forensic Trainings
https://lnkd.in/dhjwx_5h
8. Cybrary Trainings
https://www.cybrary.it/
9. Pluralsight Trainings
https://www.pluralsight.com/teach/resource/vips
Cyber Foundations
1. ISC(2) Certified in Cyber
https://lnkd.in/e6jB_6af
2. Cyber Security
https://lnkd.in/eueCSF6A
3. Cisco Cyber Introduction
https://lnkd.in/e8C3jacc
4. Cisco Cyber Essentials
https://lnkd.in/eTQNsbyF
5. Fortinet NSE
https://lnkd.in/es3c_Q6E