Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Ashley Madison Revisited: Legal, Business and Security Repercussions

Forward Timeline of Ashley Madison data breach For Ashley Madison, the whole mess began on the morning of July 12, 2015, when several employees received a me
Read More
Article

Cyber-Attack on Worldwide Nuclear Facilities

Critical infrastructure under attack The protection of critical infrastructure is a pillar of the cyber security strategy of any government. Cybercriminal, h
Read More
Article

General HTML5 Security, Part 2

To read the first part of the General HTML5 Security series, please visit: /general-html5-security/ In the second part of the General HTML5 Security series,
Read More
Article

Top 5 Cyber Security Awareness Tips

[download]Download the BEST PRACTICES FOR DEVELOPING AN ENGAGING SECURITY AWARENESS PROGRAM whitepaper[/download] Are you worried about cyber security? Every
Read More
Article

QARK – A tool for automated android app assessments

There has been a need for automated tools for Android Application Assessments for quite some time. Though there are some frameworks here and there, most of t
Read More
Article

Beta Bot Analysis: Part 2

Extracting the Botnet Configuration: The bot configuration is encrypted inside the bot and decrypted while the bot is running. In 1.0.2.5, 1.5 and 1.6 versi
Read More
Article

Top 5 snapchat security vulnerabilities

 How the app learned its lessons Snapchat is a popular mobile application that allows instant photo and video messaging. The feature that distinguishes Snap
Read More
Article

How Harmful Can a Data Breach Be?

There is this belief that businesses that have suffered a data security breach very often do not recover. But is that really so? What does it take to actuall
Read More
Article

Reverse engineering virtual machine protected binaries

In code obfuscation, a virtual machine is a mechanism used to execute a different instruction set than the one used by machine that runs the program. For exa
Read More
Article

Online Rental Scams

Section 1. Introduction The technology today enables us to perform a big part of our activities online. Finding a romantic partner, working, doing weekly gro
Read More
Article

Challenges Faced By CISOs: Balancing Security versus Manpower

Cybersecurity is not about buying the latest security monitoring and automation tools to solve the day-to-day problems. Government and banking organizati
Read More
Article

Andromeda Bot Analysis part 2

Bot Analysis: Now, you get the original Andromeda build file. Load the unpacked sample at OllyDBG. As before, after the stack frame at the EP, you see that t
Read More
Article

What's Worse: APTs or Spear Phishing?

In this article, we are going to look into advance persistent threat (APT) and spear phishing, the role of spear phishing in APT attacks, the level of diffic
Read More
Article

Andromeda Bot Analysis part 1

Introduction: Andromeda, also known as Win32/Gamarue, is an HTTP based botnet. It was first spotted in late 2011, and is still at this moment used a lot in h
Read More
Article

Exploiting corporate printers

Printer exploitation and vulnerability in printers are serious problems, similar to those faced with computers and other hard drive devices, since they are c
Read More
Article

General HTML5 Security

HTML5 is a living standard and new features are being added as we speak. New features will continue to arrive and browsers will keep becoming better and bett
Read More
Article

Crowdsourcing Cybersecurity: How to Raise Security Awareness Through Crowdsourcing

Editor’s note: Rasa Juzenaite also contributed to this article. Section 1. Introduction Public involvement in the investigation of the Boston Marathon
Read More
Article

Help Every End User to Enjoy Their Security Awareness Training

[download]Download the BEST PRACTICES FOR DEVELOPING AN ENGAGING SECURITY AWARENESS PROGRAM whitepaper[/download] Have you ever wondered why some security aw
Read More
Article

End User Security Awareness Best Practices: 12 Experts Weigh In

As security awareness continues to become an increasing focal point for the modern enterprise, security experts need to do everything in their power to stay
Read More
Article

Attacks over DNS

DNS is a naming system used for all devices connected to the Internet or a network. DNS is easy to remember instead of IP addresses for users. It is a method
Read More
Article

Powerful security awareness quotes

[download] CLICK HERE TO DOWNLOAD THE PDF[/download] [pkadzone zone="main_top"] or Share this Image On Your Site <p><strong>Please in
Read More
Article

Establishing a Secure IPSec Connection to the Cloud Server

Introduction It's a common occurrence. Enterprises are shifting all or part of their infrastructure to the cloud. This has been going on for a number of year
Read More
Article

Writing Exploit for Mini Share Software: Introduction

In this article, we will analyze another software and develop our own working exploit for it. The software which we will be discussing in this article is cal
Read More
Article

Incidents Happen; So Should Incident Response Planning

In the IT world, "Target" doesn't bring to mind great deals from the retail giant, and "Ashley Madison" doesn't conjure up the married dating service. Instea
Read More