Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Best PenTest+ certification study resources and training materials

Find out all about the PentTest+ certification and study resources and training materials to help professionals better prepare to pass the exam on their first attempt.
Read More
Article

EMPIRE: LUPINONE VulnHub CTF Walkthrough, Part 1

In this article, we will solve a capture the flag challenge ported on the Vulnhub platform.
Read More
Article

How to specialize in cybersecurity: Find your path and your passion

Cybersecurity provides a variety of career opportunities. Bugcrowd CEO Casey Ellis shares how to kickstart your career — and how to find your niche.
Read More
Article

Learn how to do application security right in your organization

Learn the right way to do security from the guy who literally wrote the book on the subject — best-selling author and cybersecurity expert Ted Harrington.
Read More
Article

Mekotio banker trojan returns with new TTP

Learn about the new features of the last release of Mekotio, how it works and some key points to protect against this malware.
Read More
Article

How to use authorization in Laravel: Gates, policies, roles and permissions

Learn how to use Laravel in authorization to your application.
Read More
Article

Is your company testing security often enough?

Security is an ongoing process: you’ll need to regularly reassess your system for vulnerabilities.
Read More
Article

Red Teaming: Credential dumping techniques

Explore some popular techniques commonly used by red teaming experts and adversaries during their experiments.
Read More
Article

CompTIA PenTest+ exam details and process

PenTest+ is a certification that verifies top-flight penetration testing knowledge and skills. 
Read More
Article

Cybersecurity Weekly: FBI warns about fake job postings, CISA adds to vulnerability list and the zero-trust timer for federal agencies.

Phishing campaigns attempt to steal job seekers’ money, CISA adds more flaws to its vulnerability catalog and how federal agencies are preparing to implement zero-trust. All this, and more, in this week’s edition of Cybersecurity Weekly.
Read More
Article

Making the old new again: The power of experiential learning to build cybersecurity skills

Learning by doing is important. Learn the how and why of experiential learning and its application to cybersecurity education.
Read More
Article

Authentication vs. authorization: Which one should you use, and when?

Take a look at the difference between authentication and authorization and what works best for you.
Read More
Article

3 steps to get your business cybersecurity-ready in 2022

With a new year upon us, here are three steps businesses should take now to mitigate cybersecurity risks and prepare for 2022.
Read More
Article

HOGWARTS: BELLATRIX VulnHub CTF walkthrough

In this article, we will solve a Harry Potter-themed capture the flag (CTF) challenge posted on Vulnhub.
Read More
Article

PenTest+ vs. CEH: Which certification is better? [2022 update]

Find out why the CompTIA PenTest+ or EC-Council's CEH is the certificate for you.
Read More
Article

AI and machine learning career paths, trends and job prospects

Learn about the job prospects for artificial intelligence and how to prepare for a career in it.
Read More
Article

Android malware BrazKing returns

Analyze the main layers of this malware how it operates, and provide some measures to stop threats of this nature.
Read More
Article

Why your company should prioritize security vulnerabilities by severity

You want a system in place to grade severity so you know where to focus your efforts, and in what order.
Read More
Article

CIPP/US: 5 things to know about privacy and cybersecurity law

Certifications are a way to motivate you to study and learn as they can help you expand upon your cybersecurity career.
Read More
Article

How to structure your CSIRT or SOC team

Learn how to structure your computer security incident response team (CSIRT) and security operations center (SOC).
Read More
Article

How to write a vulnerability report

Find out how to write a good vulnerability report and why it's important to do well.
Read More
Article

CompTIA PenTest+ certification: Overview and career path [updated 2022]

Penetration testing is in high demand. Learn more about the CompTIA PenTest+ certificate and exam.
Read More
Article

Cybersecurity Weekly: Social media fraud surges in America, CISA’s ‘Must Patch” list and COVID-19 testing scams

FTC reports a whopping $770 million lost in social media fraud, CISA releases new ‘Must Patch’ list and a 521% COVID-19 testing scams increase. All this, and
Read More
Article

How to hack two-factor authentication: Which type is most secure?

There are many types of two-factor authentication (2FA) or multi-factor authentication your organization can implement, but which one is best? Find out.
Read More