Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Proteus: 1 - CTF Walkthrough

Proteus is a relatively new machine that came on VulnHub. Created by Ivanvza, it surfaced on June 7th, 2017. It can be downloaded from https://www.vulnhub.co
Read More
Article

Situational awareness and ICS Using GRASS MARLIN

Introduction Situational awareness within the industrial control system (ICS) realm is a hot topic, with the recent release of commercial products targeting
Read More
Article

What is Phishing and How to Deal with It?

What is phishing? Phishing is sending fraudulent emails, phone calls or websites by manipulating the unsuspecting users that it is from a reputable company o
Read More
Article

Average IT Administrator Salary in 2018

IT is a huge field that requires a wide set of knowledge in several areas. When you work in server administration or network administration, you will likely
Read More
Article

Average Web Developer Salary in 2018

With most businesses moving to the cloud, web developers are in high demand. Web developers are the programmers who create web pages and web apps that drive
Read More
Article

Security+: Risks Related to Third Parties (SY0-401)

NOTE: This article reflects an older version of the Security+ Exam – please see the current Security+ Certification page for the most up-to-date information.
Read More
Article

Security+: Application Attacks (SY0-401) [DECOMMISSIONED ARTICLE]

NOTE: This article reflects an older version of the Security+ Exam – please see the current Security+ Certification page for the most up-to-date information.
Read More
Article

The Certified Computer Forensics Examiner (CCFE)

Do You Need Computer Forensics Certification? If you are keen being part of a criminal examination group or working with organizations to examine and recoup
Read More
Article

Major Ways of Stealing Sensitive Data

Description: We all are aware that there's an almost infinite number of hackers out there whose absolute goal it to steal and misuse any sensitive data they
Read More
Article

Email spoofing and Spams

What is email spoofing? Email spoofing is the technique of sending email to others with a forged sender's address. What is spamming? Spamming is an automate
Read More
Article

NDG Pt. 2: Government Views On Opting Out - Health Data and Security in The UK

Other articles in this series: Pt. 1: Data security standards and opt-out models in health and social care[pkadzone zone="main_top"] Pt. 3: The Impact of new
Read More
Article

Forensic Techniques

The main goal of the forensic investigation is to handle a large amount of data, gather as much evidence as possible, and uncover all the hidden and untraced
Read More
Article

Best practices for implementing an IT/cybersecurity policy

An essential part of a company's cybersecurity program is the creation and implementation of a workplace security policy, a document that outlines all plans
Read More
Article

Security+: Social Engineering Attacks (SY0-401) [DECOMMISSIONED ARTICLE]

NOTE: This article reflects an older version of the Security+ Exam – please see the current Security+ Certification page for the most up-to-date information.
Read More
Article

Phishing Attacks in the Telecommunications Industry

Of late, the telecom companies have been battling to stay up to speed with the security challenges as they operate in a highly risk-laden environment, especi
Read More
Article

NDG Pt. 1: Data security standards and opt-out models in health and social care

Other articles in this series: Pt. 2: Government Views On Opting Out – Health Data and Security in The UK[pkadzone zone="main_top"] Pt. 3: The Impact of new
Read More
Article

Bad Rabbit: A New Ransomware Campaign Rapidly Spreading Worldwide

October 24, Bad Rabbit is spreading in the wild On October 2017, a new massive ransomware campaign rapidly spread across Europe, the malware dubbed Bad Rabbi
Read More
Article

8 Tips for CISSP Exam Success

CISSP certification is one of the most desired information security credentials, and for good reason. With an exam length of 250 questions, a six-hour testin
Read More
Article

16 Common WordPress Security Questions & Answers

We sat down with security expert and Incsub CTO Aaron Edwards to learn more about WordPress security and the steps administrators can take to keep their Word
Read More
Article

The Complete Guide to IT Security Salaries in 2018

With 96% of HR managers now using IT certifications as screening or hiring criteria during recruitment, getting certified is an essential step in reaching yo
Read More
Article

Security+ Domain #6: Cryptography (SY0-401) [DECOMMISSIONED ARTICLE]

NOTE: This article reflects an older version of the Security+ Exam – please see the current Security+ Certification page for the most up-to-date information.
Read More
Article

Security+ Domain #4: Application, Data, and Host Security (SY0-401) [DECOMMISSIONED ARTICLE]

NOTE: This article reflects an older version of the Security+ Exam – please see the current Security+ Certification page for the most up-to-date information.
Read More
Article

Security+ Domain #2: Compliance and Operational Security (SY0-401) [DECOMMISSIONED ARTICLE]

NOTE: This article reflects an older version of the Security+ Exam – please see the current Security+ Certification page for the most up-to-date information.
Read More
Article

CCFE Exam Overview: What To Expect

The Certified Computer Forensics Examiner (CCFE) is the most prestigious certification for computer forensics professionals. It will test your fundamental kn
Read More