Hands-On Training

Resources

For those interested in pursuing cybersecurity careers, hands on training is a key component and potential differentiator in establishing your skills and confidence. It bridges the gap between theory and practice and provides a potential pathway for breaking into the field despite your lack of ‘real world’ experience. It’s also an important solution to help alleviate the common ‘chicken and egg’ dilemma (needing experience to gain experience) that so many people face.

Hands on training provides:

  • Active learning and skill development – active application of concepts and reinforcement leads to better understanding and retention
  • Critical thinking and adaptability–Tackling real world problems with critical thinking and analysis prepares you to think on your feet and respond effectively in dynamic environments
  • Muscle memory and confidence– Hands on repetition creates muscle memory and creates an ingrained knowledge to help you respond quickly and with confidence
  • Actual results and proof of competence–Tangible results from your work. Can provide proof of competence and experience critical for interviews and personal branding
  • Continuous learning and relevance – You already know cybersecurity is a dynamic, ever changing field.  Stay up to date and practice continually to adapt and prepare for the ever-evolving threat landscape.

CTF (Capture the flag)

CTF (Capture the flag) is a competition where teams or individuals have to solve a number of challenges. The one that solves/collects most flags the fastest wins the competition. Once each challenge has been solved successfully, the user will find a "flag" within the challenge that is proof of completion. If teams are tied, the one that finishes the challenges the fastest will appear higher on the scoreboard.

Hack the box

Hack The Box is a leading gamified cybersecurity upskilling, certification, and talent assessment software platform enabling individuals, businesses, government institutions, and universities to sharpen their offensive and defensive security expertise.

The ideal solution for cybersecurity professionals and organizations to continuously enhance their cyber-attack readiness by improving their red, blue, and purple team capabilities.

TCM Security

Designed to be practical, our training and certifications help level up your hacker skills without teaching you fluff or burning a hole in your bank account. Stop spending thousands on training when you can prove your skillset to HR and hiring managers at a fraction of the cost.

OverTheWire Wargames

The wargames offered by the OverTheWire community can help you to learn and practice security concepts in the form of fun-filled games.

CTF Time host

Capture the Flag (CTF) is a special kind of information security competitions. There are three common types of CTFs: Jeopardy, Attack-Defence and mixed. Jeopardy-style CTFs has a couple of questions (tasks) in range of categories. For example, Web, Forensic, Crypto, Binary or something else. Team can gain some points for every solved task. More points for more complicated tasks usually. The next task in chain can be opened only after some team solve previous task. Then the game time is over sum of points shows you a CTF winer. Famous example of such CTF is Defcon CTF quals. Well, attack-defence is another interesting kind of competitions. Here every team has own network(or only one host) with vulnarable services. Your team has time for patching your services and developing exploits usually. So, then organizers connects participants of competition and the wargame starts! You should protect own services for defence points and hack opponents for attack points. Historically this is a first type of CTFs, everybody knows about DEF CON CTF - something like a World Cup of all other competitions. Mixed competitions may vary possible formats. It may be something like wargame with special time for task-based elements (e.g. UCSB iCTF). CTF games often touch on many other aspects of information security: cryptography, stego, binary analysis, reverse engeneering, mobile security and others. Good teams generally have strong skills and experience in all these issues.

TryHackMe

TryHackMe is a browser-based cyber security training platform, with learning content covering all skill levels from the complete beginner to the seasoned hacker.

Hacker101

Hacker101 is a free class for web security. Whether you’re a programmer with an interest in bug bounties or a seasoned security professional, Hacker101 has something to teach you