Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

HACKATHONCTF: 2 VulnHub CTF Walkthrough

In this article, we will solve a Capture the Flag (CTF) challenge posted on the VulnHub website by an author named ‘somu sen.’
Read More
Article

Will immersive technology evolve or solve cybercrime?

Immersive technology like virtual reality and augmented reality can be used for cybersecurity training and exploited by threat actors.
Read More
Article

Passwords and people: Your secret weapons against cybercriminals

Passwords and people continue to be low-hanging fruit for both organizations and cybercriminals. According to Verizon’s 2021 Data Breach Investigations Repor
Read More
Article

Vendor-specific versus vendor-neutral: Best cybersecurity certifications

Confused about vendor-neutral vs. vendor-specific IT and cyber security certifications? We break them down in detail.
Read More
Article

PenTest+ certification job titles and career outlook

Find out what your career outlook is like and what jobs you can get with a PenTest+ certification.
Read More
Article

Emotet malware returns

Learn about the main features introduced by criminals into this new Emotet release, how it is being disseminated and practical measures to avoid malware in general.
Read More
Article

What is penetration testing, anyway?

The most commonly referenced type of security testing is “penetration testing.” That has become a catchall term, and, unfortunately, it’s misleading. 
Read More
Article

Red Teaming: Persistence Techniques

Let's explore some of the most popular persistence techniques used during red teaming assessments.
Read More
Article

Maintaining your PenTest+ certification: CPE and renewal requirements

Find out how to maintain your PenTest+ certification and explore questions related to CPE (continuing professional education) and renewal requirements
Read More
Article

Cybersecurity Weekly: Framing security with leadership, ransomware advisories continue and biological models for cybersecurity predictions.

Showing the corporate board why cybersecurity is mission-critical, CISA, FBI and NSA add additional ransomware advisories and biology-based models to increase security protections. All this, and more, in this week’s edition of Cybersecurity Weekly.
Read More
Article

EMPIRE: LUPINONE VulnHub CTF Walkthrough, Part 2

In the previous part of the CTF, we began completing the capture of the flag.
Read More
Article

Collaboration is key: IBM and Booz Allen Hamilton weigh in on attracting and retaining cyber talent

Learn about some of the best ways to keep your worker pool full of talented individuals.
Read More
Article

Finding the right MSSP for securing your business and training employees

To learn more about the value MSSPs should and can bring to the table, I spoke with Frank Rauch and Shay Solomon at Check Point Software Technologies.
Read More
Article

Laravel authorization best practices and tips

Learn best practices for authorization in Laravel, such as only authorizing against permissions, not roles.
Read More
Article

Best PenTest+ certification study resources and training materials

Find out all about the PentTest+ certification and study resources and training materials to help professionals better prepare to pass the exam on their first attempt.
Read More
Article

EMPIRE: LUPINONE VulnHub CTF Walkthrough, Part 1

In this article, we will solve a capture the flag challenge ported on the Vulnhub platform.
Read More
Article

How to specialize in cybersecurity: Find your path and your passion

Cybersecurity provides a variety of career opportunities. Bugcrowd CEO Casey Ellis shares how to kickstart your career — and how to find your niche.
Read More
Article

Learn how to do application security right in your organization

Learn the right way to do security from the guy who literally wrote the book on the subject — best-selling author and cybersecurity expert Ted Harrington.
Read More
Article

Mekotio banker trojan returns with new TTP

Learn about the new features of the last release of Mekotio, how it works and some key points to protect against this malware.
Read More
Article

How to use authorization in Laravel: Gates, policies, roles and permissions

Learn how to use Laravel in authorization to your application.
Read More
Article

Is your company testing security often enough?

Security is an ongoing process: you’ll need to regularly reassess your system for vulnerabilities.
Read More
Article

Red Teaming: Credential dumping techniques

Explore some popular techniques commonly used by red teaming experts and adversaries during their experiments.
Read More
Article

CompTIA PenTest+ exam details and process

PenTest+ is a certification that verifies top-flight penetration testing knowledge and skills. 
Read More
Article

Cybersecurity Weekly: FBI warns about fake job postings, CISA adds to vulnerability list and the zero-trust timer for federal agencies.

Phishing campaigns attempt to steal job seekers’ money, CISA adds more flaws to its vulnerability catalog and how federal agencies are preparing to implement zero-trust. All this, and more, in this week’s edition of Cybersecurity Weekly.
Read More