Infosec Skills release: New hands-on learning paths and cyber ranges, plus team reporting and custom branding

Three new learning paths and two new cyber ranges are live in Infosec Skills. Additional team training features were also released, giving admins insight into their team’s boot camp training progress as well as the ability to brand Infosec Skills with their company logo.

Jump ahead

• Web Application Pentesting Learning Path
• Vulnerability Assessment Learning Path
• Security Architecture Learning Path
• Computer Forensics and RHCSA Cyber Ranges
• New team reporting and custom branding
• See what’s coming next

Web Application Pentesting

Learn how to discover and responsibly disclose vulnerabilities in the new hands-on Web Application Pentesting Learning Path. You’ll build your web app pentesting experience as you explore: 

• Real-world examples of OWASP Top Ten vulnerabilities impacting web applications
• Common Burp Suite extensions used by pentesters, such as Turbo Intruder, Intruder File Payload Generator and SQLMap
• Troubleshooting issues while looking to exploit vulnerability types
• Fixing or preventing various types of web app vulnerabilities

The learning path also includes a hands-on Purple Team Web Application Security Project. You’ll play the part of both the red and the blue team as you attempt to exploit and mitigate a machine running a vulnerable version of a content management system.

To learn more about the new project, check out our recent blog and video.

Vulnerability Assessment

What’s the difference between doing a vulnerability assessment for a fitness tracker and an internet-connected pacemaker? Quite a bit! The new Vulnerability Assessment Learning Path, includes seven courses and a project to help build your skills around:

• How to identify, classify and prioritize vulnerabilities based on real-world criticality measures
• How to define the actual risk of the vulnerabilities in your specific environment
• How to create and execute an actionable remediation plan
• How to document and maintain a vulnerability assessment

In the Vulnerability Assessment Project, you’ll put your new skills to the test by using SNYK, static application security testing and a risk assessment template to discover, identify and rate CWEs and CVEs. Then you’ll attempt to find the most appropriate fixes for the two vulnerabilities with the highest risk to the organization.

Security Architecture

The Security Architecture Learning Path teaches you how to solve security problems by first understanding the impact on the business and then using a risk-driven model to prioritize and mitigate security risks. Seven courses explore the unique skill set of a security architect, including: 

• Understanding security architecture as a business-enabling discipline
• Implementing common enterprise security architecture frameworks
• Melding security design principles with business requirements
• Using threat modeling and risk assessments to reduce risk

Learn by doing in our new cyber ranges

Two new cyber ranges are live in Infosec Skills, Computer Forensics and RHCSA. Infosec Skills now includes unlimited access to 11 cyber ranges containing more than 180 cloud-hosted labs.

Computer Forensics Cyber Range

The Computer Forensics Cyber Range provides a hands-on environment to build and reinforce your forensics skills. As you progress through the labs, you’ll gain practical experience creating and examining forensic images, performing memory forensics to identify malware activity and using poplar forensics tools, such as Volatility and Foremost.

RHCSA Cyber Range

Develop your Linux skills and prepare for the Red Hat Certified System Administrator (RHCSA) exam with the RHCSA Cyber Range. Practice various tasks covered in the exam objectives, gain experience as you progress through more than 30 hands-on labs, and go into your RHCSA exam with confidence.

New team reporting and custom branding

Track your team’s boot camp progress

Team admins now have additional reporting around live boot camps. The new boot camp report gives instant insight into your team’s past and present Infosec Skills boot camps, including:

• Enrolled students, start and end dates, and training location
• Student attendance, practice exam score, and completion of pre-study and other supporting materials
• Administrative details, such as payment and certificates of completion

The new boot camp report sits alongside other Infosec Skills reporting, making it easy to track your entire team’s progress in one place — from skills assessments to ongoing training to live certification boot camps.

Add a custom logo to your team account

Team admins now have the ability to brand Infosec Skills with their company logo. Assure your learners they’re training in the right place and build goodwill associated with employer-sponsored training by adding your company logo today.

See what’s coming next

Want a preview of the upcoming content for Infosec Skills? Check out our LX Labs content roadmap to see what learning paths, cyber ranges and boot camp updates are coming next.