Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Estimating Projects, Part II

For part 1 of this series, please click here. In the first part, our discussion of the estimation focused primarily on the general principles of creating an
Read More
Article

Estimating Projects, Part I

Each of us who has ever worked in any programming project has had to deal with one of the biggest problems we face when creating projects. It is, of course,
Read More
Article

Filter evasion: Part 2

For part 1 of this series, please click here. Methods for bypassing a filter There is a number of different attack strings that can be used to bypass a
Read More
Article

Filter Evasion: Part 1

1. Introduction First we must talk about vulnerabilities. We know that vulnerabilities that are present in any kind of software can be exploited by acceptin
Read More
Article

Demystifying Dot NET reverse engineering, part 1: Big introduction

Disclaimer This, and all upcoming parts, are made with a strict and pure educational purpose just to gain insights into dot NET programs. What you're going
Read More
Article

Flame: The Never Ending Story

It is not possible to talk about cyber warfare and cyber weapons without mentioning the famous Stuxnet virus and the series of state-sponsored malware develo
Read More
Article

X86 Assembly Language, Part 3.1

For part 2 of this series, please click here. Programming in a high-level language does not require a detailed knowledge of the system hardware. Assembly la
Read More
Article

Apache JMeter Part 4: Testing the Throughput and Performance of InfoSec Institute

For part 3 of this series, click here. 1. Testing the Throughput of InfoSec Institute [pkadzone zone="main_top"] [pkadzone zone="main_top"] 1.1. Running the
Read More
Article

x86 Assembly Language Applicable To Reverse Engineering: The Basics – Part 1

Overview The x86 Assembly language or ASM is the lowest-level programming language understood by human kind and one of the most primitive ones; it can b
Read More
Article

Software Piracy - An Attempt to Assess the Problem

In many countries we are dealing with two very serious problems. These are copyright and piracy. I would like in this article to look a little closer at thes
Read More
Article

Raising a Rogue Access Point

Introduction Before beginning this article I want to clear up some stuff about awareness. Everything that is going to be described in this article must be
Read More
Article

The Rise of Cyber Weapons and Relative Impact on Cyberspace

Once upon a time we lived in a world in which wars were fought by brave soldiers who faced each other in furious combat in a way that today we would find it
Read More
Article

Three Ways to Defeat a ReverseMe

Introduction What is a « ReverseMe »? [pkadzone zone="main_top"] [pkadzone zone="main_top"] Disassembling or debugging commercial programs is usually prohib
Read More
Article

Fuzzing Vulnserver with Sulley: Part 3

1. Introduction Vulnserver is a vulnerable server written by Stephen Bradshaw whose blog is located here: grey-corner. This server was written intentionally
Read More
Article

Fuzzing Vulnserver: Discovering Vulnerable Commands: Part 1

1. Introduction Vulnserver is a Windows TCP server running on port 9999. It was written by Stephen Bradshaw whose blog is located here. The server was intent
Read More
Article

Getting Your Hands Dirty in x86 Assembly Code

For those of you who have been following my eventful career, you already know that this is actually my second published tutorial. Just to bring you up to dat
Read More
Article

Linux TPM encryption: Initializing and using the TPM

Initializing the TPM To secure our data we must first initialize the TPM. What we're actually doing is changing the settings of the hardware TPM chip modu
Read More
Article

Packet Filtering

1. Packet Filtering Introduction This tutorial will talk about packet filtering. First we must define what packet filtering is. Packet filtering is a process
Read More
Article

Security Categories

1. Introduction I've been a security enthusiast for years now, and currently I'm working as a security penetration tester. Over the years it has happened
Read More
Article

Linux TPM encryption: Enabling TPM in BIOS and Kernel

The TPM stands for the Trusted Platform Module, which is a secure microprocessor that can store cryptographic keys that are further used to encrypt/decrypt d
Read More
Article

Good Programming Techniques - S.O.L.I.D. and Three-layer Architecture

A lot of people wonder how to approach writing code. So I decided to write on this topic in a few articles. Here's the first one, I hope that it will be inte
Read More
Article

Manual packet analysis

In this tutorial, we will learn how to read a packet header. It's not very common to inspect packet fields, but it is important to know how to read and inspe
Read More
Article

How to Use Iptables

1. Introduction First we must mention that iptables is a Linux kernel firewall, which is why we can categorize it with the picture below:[pkadzone zone="main
Read More
Article

Penetration Testing with the Joomla Security Scanner

Joomla Security Scanner Joomla Security Scanner Detects file inclusion, sql injection, command execution vulnerabilities of a target Joomla Websites. It wil
Read More