Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Top Ten Information Security Thought Leaders

Living in an information age can be daunting. Even if you manage to cut out the noise of social media, and the unceasing barrage of ads, there is still an el
Read More
Article

The Top 5 Penetration Testing Tools and Their Reporting Features

Introduction In the Cybersecurity world today, there is one methodology that has proven to be quite effective in determining the security vulnerabilities of
Read More
Article

The Top Ten IoT Vulnerabilities

Kevin Ashton coined the phrase the "Internet of Things" (also known as "IoT") back in 1999. This term represented the concept of a massive system where every
Read More
Article

Privacy Concerns About Emotional Chatbots

Introduction Artificial Intelligence (AI) is evolving at an enormous speed and takes an increasingly more substantial part of our everyday life (think of the
Read More
Article

Consequences of the Late Announcement of Cyber-security Incidents

Introduction Cyber-security attacks that are becoming more and more common among various types and sizes of organizations may have serious effects on electro
Read More
Article

The Advantages & Disadvantages of Outsourcing Incident Response

Companies usually outsource tasks if they are more cost effective and can produce consistent results. Outsourcing incident response functions ensures a compa
Read More
Article

Top 5 Ways to Reduce the Cost of a Data Breach

Introduction According to the 2017 Cost of Data Breach Study, data breach costs in 2017 averaged $3.62 million. This is a large sum, but depending on factors
Read More
Article

18 extensions for turning Firefox into a Penetration testing tool

Firefox is a popular web browser from Mozilla. Popularity of Firefox is not only because it's a good web browser, it also supports add-ons to enhance the fun
Read More
Article

How to prevent cross-site scripting attacks

Cross-site scripting (XSS) is one of the most dangerous and most often found vulnerabilities related to web applications. Security researchers have found thi
Read More
Article

19 extensions to turn Google Chrome into a Penetration testing tool

Google Chrome is the most popular web browser of the world. It's light weight and comes with a clean interface. This is the main reason of its popularity. It
Read More
Article

How to perform qualitative & quantitative security risk analysis

This article describes two type of risk analysis (quantitative and qualitative) and presents five practical examples of calculating annualized loss expectanc
Read More
Article

Incident Responder Career Roadmap: From Entry Level to Executive

Introduction Finding a career as an incident responder has never been more possible than it is today. Practically every medium- to large-sized company should
Read More
Article

5 Steps to Conducting an Enterprise Security Risk Analysis

In the world of cybersecurity, identifying risks and how they will impact the organization is of paramount importance. In general terms, risk is comprised of
Read More
Article

How to Break Into the Field of Security Risk Management

A career in risk management takes place along the front lines of the ongoing cyber war. You must be logical, analytical and level-headed in order to lead the
Read More
Article

4 Factors to Consider When Calculating the Cost of a Data Breach

Introduction Data breaches are one of the most common types of security incidents. It is quite possible, although it may be hard to prove, that every company
Read More
Article

Cryptocurrency mining botnets on the rise

Introduction The peaks reached by the values of principal cryptocurrencies is attracting criminal organizations, the number of cyber-attacks against the sect
Read More
Article

Top 9 SIEM Software Products of 2017

Introduction Ensuring a proper level of cybersecurity is one of the top challenges facing companies. As the number of protection technologies rises constantl
Read More
Article

How to exploit XSS with an image

Cross-Site Scripting is one of the most common and powerful vulnerabilities on the Web. The OWASP organization has classified it in the third place in the
Read More
Article

CIA triad

In this article, we will learn about the famous CIA Triad i.e. Confidentiality, Integrity, and Availability. Though these terms sound simple, they have good
Read More
Article

The Top 10 Data Breaches of 2017

Introduction As we begin a new year, let’s take a moment to look back on the biggest data breaches in 2018. This is a year-end list no one is excited to be o
Read More
Article

A 10 step post-breach incident response checklist

Any organization with cyber-related assets needs to have a well written incident response (IR) plan. The incident response plan is meant to cover the procedu
Read More
Article

File carving

File carving is a process used in computer forensics to extract data from a disk drive or other storage device without the assistance of the file system that
Read More
Article

Hacking and gaining access to Linux by exploiting SAMBA service

Step 1 First, we need to find out the ports and services running on the target system. To find the open ports and services, the command is: Command: nma
Read More
Article

The role of technology in modern terrorism

Technology is a foundation of modern society, it governs its dynamics, and therefore, it is normal that also the terrorism will benefit from it. We are li
Read More