Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Capture the flag: A walkthrough of SunCSR’s Seppuku

This capture the flag activity is a more challenging one, making it a good activity to enhance your cybersecurity skills and knowledge.
Read More
Article

Colddworld immersion: VulnHub CTF walkthrough

Check out this capture the flag activity to get some knowledge and skill in techniques used to solve capture the flags.
Read More
Article

How to become a CMMC Certified Third-Party Assessor Organization (C3PAO)

Learn what a Certified Third-Party Assessor Organization is, why it is important, and the roles related in and around it.
Read More
Article

Kali Linux: Top 5 tools for sniffing and spoofing

Sniffing and spoofing network traffic can help protect your organization from potential attacks.
Read More
Article

How to design the best cybersecurity training program for your enterprise

How should you determine the return on cybersecurity training investment? Learn how to design a program that fits your organization's needs.
Read More
Article

How to become a CMMC Registered Provider Organization (RPO)

Learn how to become a Cybersecurity Maturity Model Certification provider organization and why that is so important for work with the Department of Defense.
Read More
Article

CMMC marketplace: Understanding C3PAOs, RPOs, LTPs and more

The Cybersecurity Maturity Model Certification framework is designed so that suppliers to the Department of Defense meet an optimized security posture.
Read More
Article

Snort demo: Finding SolarWinds Sunburst indicators of compromise

Use Snort and the indicators of compromise provided by FireEye to detect Sunburst infections.
Read More
Article

Top 19 tools for hardware hacking with Kali Linux

These Kali Linux tools enable hardware hacking.
Read More
Article

Kali Linux: Top 5 tools for penetration testing reporting

Use these Kali Linus tools to perform a penetration test and gather crucial reporting.
Read More
Article

MoneyBox 1: VulnHub CTF walkthrough

This VulnHub capture the flag (CTF) is an easy-level challenge. The goal is to gain the root of the machine and read three flag files.
Read More
Article

DearCry ransomware: How it works and how to prevent it

The DearCry ransomware variant is a threat to users with vulnearble Microsoft Exchange servers. Learn more about it.
Read More
Article

Cybersecurity Weekly: Ransomware affiliates, Cisco ASA flaws, Dell vulnerabilities

Ransomware gangs are now creating websites to recruit affiliates. A Cisco ASA flaw is under attack after a PoC exploit was posted online. 30 million devices are at risk from Dell SupportAssist RCE vulnerabilities. All this, and more, in this week’s edition of Cybersecurity Weekly.
Read More
Article

How to become a Certified CMMC Assessor (CCA)

Becoming a certified CMMC assessor is important to keep sensitive federal-level information safe.
Read More
Article

Kali Linux overview: 14 uses for digital forensics and pentesting

Learn more about Kali Linux forensics and pentesting.
Read More
Article

Memory forensics demo: SolarWinds breach and Sunburst malware

The SolarWinds breach was unprecedented. This case study looks at how and why through a memory analysis lens.
Read More
Article

Clover 1: VulnHub CTF walkthrough, part 1

Take on this capture the flag challenge to learn more about cybersecurity and enrich your skills while completing a fun task.
Read More
Article

Explore Python for MITRE ATT&CK persistence

Persistence is important to protect a penetration tester’s access against remediation attempts. Python can be used for persistence in a variety of ways.
Read More
Article

How to become a Certified CMMC Professional (CCP)

Cybersecurity maturity model certification is an essential role needed to keep the defense industry safe.
Read More
Article

GANANA: 1 VulnHub CTF walkthrough part 2

Use this capture the flag walkthrough to get some experience in cybersecurity and learn some new tricks.
Read More
Article

9 best practices for network security

Network security is important for every organization, no matter how big or small. Here are some best practices.
Read More
Article

Two ways to build a secure software team using the NICE Framework

The NICE Framework can help you run your organization smoothly.
Read More
Article

How criminals are using Windows Background Intelligent Transfer Service

Learn to protect yourself against cybercriminals using BITS for nefarious reasons.
Read More
Article

Explore Python for MITRE ATT&CK defense evasion

Python can impair defenses like antivirus software and hide malicious code from detection. Learn how.
Read More