Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Webcast & video

How cross-site scripting attacks work | Cyber Work Applied

Cross-site scripting attacks use insecure web apps to send malicious code to users — leading to account compromise, data loss and more.
Watch Now
Webcast & video

Inside Equifax's massive breach | Cyber Work Applied

Equifax was one of the most impactful data breaches of the past few years, affecting nearly half the U.S. population. Learn how it happened.
Watch Now
Webcast & video

Cryptography basics: How does encryption work? | Cyber Work Applied

Learn cryptography basics — from Caesar and Vigenere ciphers to cryptography algorithms and encrypting data using public and private keys.
Watch Now
Webcast & video

How to carry out a watering hole attack | Cyber Work Applied

You could be compromised just by visiting a legitimate website. It's called a watering hole attack. Learn how it happens.
Watch Now
Webcast & video

Using password cracking tools: How to crack a password | Cyber Work Applied

Learn how to use the Cain and Abel password cracker to conduct both a brute-force password attack and a password dictionary attack.
Watch Now
Webcast & video

How to use the MITRE ATT&CK matrix | Cyber Work Applied

The MITRE ATT&CK® enterprise matrix outlines how real-world adversaries operate. Use it to help develop your team's cybersecurity skills.
Watch Now
Webcast & video

Reconnaissance and resource development with MITRE ATT&CK | Cyber Work Applied

Learn the MITRE ATT&CK® techniques adversaries use for reconnaissance and resource development. Then try it yourself in our cyber range.
Watch Now
Webcast & video

Hashing basics: How does hashing work | Cyber Work Applied

What is password hashing? How does a one-way hash function work? Infosec Skills author Mike Meyers uses his sophisticated hashing box to explain.
Watch Now
Webcast & video

Wi-Fi password hack: How to hack into WPA Wi-Fi and WPA2 | Cyber Work Applied

Infosec Skills author Mike Meyers demos a Wi-Fi WPA key hack. He uses Aircrack-ng and Airodump-ng to access 802.11 WPA and WPA2 connections.
Watch Now
Webcast & video

Pivoting with Proxychains with MITRE ATT&CK | Cyber Work Applied

Learn how adversaries leverage hardware to pivot into a protected network. Then try it yourself and master these MITRE ATT&CK® techniques.
Watch Now
Webcast & video

Inside Capital One’s game-changing breach | Cyber Work Applied

The Capital One data breach involved two of the world's largest organizations and new legal precedents that impact how cybersecurity professionals operate.
Watch Now
Webcast & video

Executing the Sandworm APT with MITRE ATT&CK | Cyber Work Applied

Learn the techniques the Sandworm APT hacking group used to compromise, pivot from and destroy a server. Then try to do it yourself.
Watch Now
Webcast & video

Inside a DDoS attack against a bank | Cyber Work Applied

Distributed denial-of-service attacks are often used to disrupt websites. Learn how one bank got attacked and what they did to stop it.
Watch Now
Webcast & video

Privilege escalation via cross-site scripting with MITRE ATT&CK | Cyber Work Applied

Learn how certain cross-site scripting vulnerabilities can be exploited for a privilege escalation attack. Then dive in and try it yourself.
Watch Now
Webcast & video

How Zoom is being exploited for phishing attacks | Cyber Work Applied

Zoom is one of the most popular meeting tools. Learn how threat actors were leveraging that popularity in a successful phishing campaign.
Watch Now
Webcast & video

Persistence: Maintaining a foothold with MITRE ATT&CK techniques | Cyber Work Applied

Learn how threat actors use MITRE ATT&CK® persistence techniques to maintain a foothold in an environment. Then try the techniques yourself.
Watch Now
Webcast & video

Extortion: How attackers double down on threats | Cyber Work Applied

You’ve just been breached or threatened with a cyberattack. Now comes a new extortion demand, pay up now — or it’s only going to get worse.
Watch Now
Webcast & video

Understanding identification, authorization and authentication | Cyber Work Applied

Someone's trying to gain access, but are they who they say they are? That's what the different methods of identification are all about.
Watch Now
Webcast & video

Advanced adversary tactics and defense evasion with MITRE ATT&CK | Cyber Work Applied

Learn how advanced persistent threat groups use defense evasion to stay hidden. Then open our cyber range and test your evasion skills.
Watch Now
Webcast & video

Getting started in cybersecurity | Cyber Work Applied

Cybersecurity is one of the fastest-growing career fields. Learn how to break into the industry — and what you can do to get started now.
Watch Now
Webcast & video

Secure cloud computing: What you need to know | Cyber Work Applied

How do you keep data secure when migrating to the cloud, and who's responsible for that security? Keatron Evans explains.
Watch Now
Webcast & video

How to use Nmap and other network scanners | Cyber Work Applied

What's on your network, or someone else's? Mike Meyers demonstrates how to use free network scanning tools like Nmap, Zenmap and advanced port scanner.
Watch Now
Webcast & video

Password security: Using Active Directory password policy | Cyber Work Applied

How do you enforce a secure password policy? Learn how to implement Windows local and group password policies.
Watch Now
Webcast & video

Using AI to level up phishing attacks | Cyber Work Applied

See a live demo of a phishing attack. Learn how cybercriminals are using AI to make them more effective — and more dangerous.
Watch Now