Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Memory and volatility

In this article series, we will learn about how processes reside in memory and various ways to find and enumerate them. I will be using Volatility plugins to
Read More
Article

US Presidential Elections: Hackers - the Third Actor Between Contenders

Introduction In February of this year, Director of National Intelligence James Clapper told Congress that intelligence officials were already seeing targetin
Read More
Article

Biometrics in the Cloud and Penetration Testing

Introduction Our last article provided a review into what Biometric Technology is generally about. There is no doubt that there are a lot of security tools o
Read More
Article

Privacy concerns about Pokémon GO

Section 1. Introduction Pokémon Go, an augmented reality smartphone game which has recently become a sensation, is created and operated by the software devel
Read More
Article

SDL for C/C++ code in Visual Studio 2013: overview

Introduction Over the years Microsoft had invested heavily into security, successfully changing market perception of own products from one of most insecure i
Read More
Article

How to Become a Penetration Tester - Resume and Interview Questions

Looking for a job as a penetration tester? If so, this article is for you. Searching for a job is a process which can sometimes be a lengthy one as it involv
Read More
Article

Phishing Test for Employees

Businesses and organizations today face a barrage of threats. They range from economic concerns to physical security worries to sabotage and electronic theft
Read More
Article

Purple Teaming: A Security-Testing Collaborative

Introduction The Red Tem term was born in the military environment to represent the highly specialized groups, able to play the role of opponents in contra
Read More
Article

Attacking Gaming Systems: A Dangerous Trend

Introduction The gaming industry is one of the most lucrative markets, for this reason, is becoming even more attractive to cybercriminals. Hackers are emplo
Read More
Article

Pokemon Go: A new Rising Cyber Threat

Earlier this month people have encountered the new mobile gaming pop culture phenomenon that is Pokemon Go. It is being downloaded by millions of users aroun
Read More
Article

Penetration Testing Resources: CTFs and Contests

Introduction Our last article provided a substantial background into what Penetration Testing is all about. Specifically, the following topics were covered:
Read More
Article

BioCryptography and Biometric Penetration Testing

Introduction In the world of security, there are many tools at the IT Staff's disposal which can be used to fight Cybercrimes of all types and levels. Regard
Read More
Article

Petya Ransomware Analysis Part I

Introduction What makes Petya a special ransomware is that it doesn't aim to encrypt each file individually, but aims for low-level disk encryption. In this
Read More
Article

Bitcoin May Turn from Cybercriminals’ Biggest Asset into Their Biggest Liability

Why is Bitcoin the cybercriminals' most favorite payment method? Adam Kujawa is the head researcher at the antivirus company Malwarebytes, and he estimates
Read More
Article

Law Enforcement and the Dark Web: A Never-Ending Battle

Illegal activities in the Dark Web continue to grow The Dark web is a privileged place for cyber criminals that, under specific conditions, could operate in
Read More
Article

Riffle Anonymity Network

Everyone wants to maintain privacy while surfing the internet and most of them rely on TOR network to achieve anonymity while online. As we all know TOR has
Read More
Article

The Cyber Enemy within: Rise of Insider Threat

Around the world, many countries are spending millions of dollars to protect themselves from cyber crime/fraud. Unfortunately, attackers seem to be succeedin
Read More
Article

Introduction to debugging Android apps using AndBug

Introduction: In the previous article of this series, we discussed how to write Cydia substrate extensions to hook into Android Applications. In this article
Read More
Article

Entry Level Risk Management: Creating a First Security Risks Register

Organizations of all sizes apply risk management to their operations. In larger ones, this will normally be through a formal Enterprise Risk Management (ERM)
Read More
Article

DLL hijacking attacks revisited

This article is all about different DLL hijacking attacks techniques used by malware to achieve persistence. We will be discussing DLL search order hijacking
Read More
Article

Why Security Awareness Training in Healthcare Must be Part of Your Security Strategy

1. What is Security Awareness Training? The healthcare industry is arguably one of the most information-intensive. Personal health data is part of a critical
Read More
Article

Ransomware Authors Flunk Again and Again

It turns out that some crypto ransomware samples are not as sophisticated as they appear. The black hat hackers are just as error-prone as everyone else. Sec
Read More
Article

Ransomware Attacks on Law Firms

1. Introduction Since 2015, information security specialists have been stressing that the number of ransomware attacks against law firms has increased signif
Read More
Article

Mr. Robot Challenge

Based on the TV show, Mr. Robot.[pkadzone zone="main_top"] This VM has three keys hidden in different locations. The main goal is to find all three tokens
Read More