Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Top Cyber Security Challenges in Smart Cities

In the recent past, the idea of smart cities was only conceptualized in sci-fi movies and books of fiction. Today, however, that idea is rapidly transitionin
Read More
Article

The components of a successful security awareness program

According to the European Network and Information Security Agency, "Awareness of the risks and available safeguards is the first line of defense for the secu
Read More
Article

Zico 2: 1 CTF Walkthrough

In this article, we will learn to solve another Capture the Flag (CTF) challenge posted on VulnHub by Rafael. As you may know from previous articles, Vulnhub
Read More
Article

Deserialization Attacks for Crypto-Mining

During the year 2017, an increased popularity in Deserialization Attack methods and a more than significant rise in the value of cryptocurrencies, some over
Read More
Article

Hacking tools with Python: Part one

Python is a brilliant language. It is known to be a lazy programming language that can be used to write codes small in number of lines, but able to do huge t
Read More
Article

Hacker tools: Sniffers

In this article we will take a look at the well known the concept of hacker tools - packet sniffing, how do they work, what are their common uses and then we
Read More
Article

Expert Interview: Security & IT Risk Management Best Practices

There is a certain correlation between a risk and an issue. To put it in simple terms, an issue is the result of a risk being realized. Therefore, risk manag
Read More
Article

Understanding the Role of Threat Modeling in Risk Management

The increasing number of new security threats, breaches and regulations that have taken place in the past years has moved the process of threat modeling from
Read More
Article

How to Create an Effective Incident Response Plan

Introduction An organization’s incident response plan (IRP) should be their first line of defense against attacks and threats. IRPs are manuals that describe
Read More
Article

Computer Forensics: The Computer Hacking Forensics Investigator (CHFI) Certification

Introduction In today’s Cyber security world, the ability to conduct a proper forensics investigation at the scene of a crime is of utmost importance. It ta
Read More
Article

Top 10 database security tools you should know

How secure is your data? Explore 10 of the most popular database security tools used by IT and cybersecurity professionals.
Read More
Article

Threat hunting – Malware/angler EK analysis with security onion - GOOFUS AND GALLANT

This is a lab analysis based on the resources available on malware.trafficanalysis.net and publicly available information on threat hunting/malware analysis.
Read More
Article

OWASP top ten testing and tools for 2013

In 2013 OWASP completed its most recent regular three-year revision of the OWASP Top 10 Web Application Security Risks. The Top Ten list has been an importan
Read More
Article

How to Use Security Incident & Event Management (SIEM) for Early Threat Detection

Introduction As businesses continue to embrace more and more technologies, IT environments become increasingly complex and distributed. This scenario is not
Read More
Article

Top 20 security awareness slogans, catchphrases, and taglines

This article presents the top 20 popular security awareness slogans, catchphrases and taglines with short explanations and remarks. Whether you’re looking fo
Read More
Article

An Enterprise Guide to Using Threat Intelligence for Cyber Defense

Cybercrime has evolved significantly in recent years. While security teams struggle to ensure businesses remain protected, cyber attacks not only increase in
Read More
Article

5 Ways Hackers Can Breach Your Company Undetected

Security breaches are, quite unfortunately, a common presence in corporate environments. Even companies making effective use of the most recent security solu
Read More
Article

Computer Forensics: Civil Investigations

The Role of Computer Forensics in Civil Investigations The use of Computer forensics in civil investigations is a little different when compared to criminal
Read More
Article

Computer Forensics: Criminal Investigations

Computer Forensics: An Inseparable Part of Criminal Investigations Computer Forensics has become an increasingly important element in cyber inquiry. Its use
Read More
Article

How to Secure Data With A Data Loss Prevention Prevention Plan

Data loss prevention has become increasingly more important over the past few decades. Access to information systems that contain confidential, private and p
Read More
Article

Public Cloud Penetration Testing from the Customer Viewpoint

Public cloud computing has evolved into a mainstream solution for data storage, on-demand service, and infrastructure. Garter forecasts the total revenue fro
Read More
Article

Threat Hunting – Malspam –Japan Office Infected

This is a lab that is conducted in a test bed. The resources were downloaded from malware.trafficanalysis.net. The samples provided came from a case study of
Read More
Article

10 Steps Leaders Can Take to Improve Cybersecurity in their Organization

As revealed by an executive opinion survey in the World Economic Forum's (WEF) Global Risk Report, the top concern for business leaders moving into 2018 is t
Read More
Article

The Top 25+ Information Security Events and Conferences of 2018

Information security (InfoSec) conferences are a great way to become familiar with new developments and later trends in technology, as well as be made aware
Read More