Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

NPK: Free tool to crack password hashes with AWS

Find out why an NPK can be a beneficial tool when it comes to password cracking in penetration testing.
Read More
Article

LOOZ 1 VulnHub CTF Walkthrough

Let's solve a capture the flag (CTF) challenge posted on Vulnhub to increase our cybersecurity skills.
Read More
Article

Malware analysis arsenal: Top 15 tools

Here are some of the popular tools used by malware experts to defeat and reverse the most advanced and sophisticated pieces of malware
Read More
Article

Why a skills shortage is one of the biggest security challenges for companies

Your company can’t have adequate security without skilled individuals making it happen, so what can you do to build the right security team?
Read More
Article

Best CGRC certification study resources and training materials

Find the best study resources and training materials for the Certified in Governance, Risk and Compliance credential.
Read More
Article

Most valuable cybersecurity skills to learn in 2022

Find out what some of the most valuable skills in cybersecurity are forecasted to be in 2022.
Read More
Article

New Cybersecurity Weekly: Log4j vulnerability, Guarding against smishing and Navigating privacy laws

Log4j vulnerability impacts hundreds of millions of devices. Navigating privacy laws. Guarding against phone smishing attacks. All this, and more, in this we
Read More
Article

DIGITALWORLD.LOCAL: FALL Vulnhub CTF walkthrough

Let's solve a capture the flag challenge posted on the Vulnhub platform to increase our cybersecurity skills.
Read More
Article

Top 10 CRISC Interview Questions [updated 2021]

Pursuing a career with your CRISC certification? Prep for CRISC interviews with these 10 tips.
Read More
Article

CRISC certification: Overview & career path [updated 2021]

Learn what the CRISC certification is and how it can help your career in cybersecurity.
Read More
Article

HACKER KID 1.0.1: VulnHub CTF walkthrough part 2

In the previous part of this article, we identified open ports on the target machine and enumerated the HTTP service running through port 80.
Read More
Article

Top tools for mobile android assessments

Explore some of the most used tools by security experts during mobile Android assessments.
Read More
Article

How should your company think about investing in security?

Security isn’t cheap because it’s not easy. It requires a unique skill set, and it takes effort. But how much should you be investing in cybersecurity?
Read More
Article

ISC2 CGRC certification exam: Overview of domains

The Certified in Governance, Risk and Compliance certification validates an advanced professional understanding of risk management frameworks.
Read More
Article

Cybersecurity Weekly: Malvertising campaigns, Wi-Fi router vulnerabilities and holiday-themed resources

Magnat malvertising campaigns spread malicious Chrome extensions. Hundreds of vulnerabilities were found in common Wi-Fi routers affecting millions of users. Infosec launches free holiday-themed resources. All this, and more, in this week’s edition of Cybersecurity Weekly.
Read More
Article

HACKER KID 1.0.1 VulnHub CTF Walkthrough Part 1

In this article, we will solve a capture the flag (CTF) challenge posted on Vulnhub.
Read More
Article

The ransomware paper (part 2): Real-life scenarios and lessons learned

The current IT and cybersecurity culture is part of the underlying problems with ransomware. Keatron Evans explains using case studies from the trenches.
Read More
Article

Compromise assessment or threat hunting? What do organizations need?

Compromise assessment and threat hunting are two rising techniques of implementing network security. Figure out what your organization needs.
Read More
Article

HACKSUDO: THOR VulnHub CTF walkthrough

In this article, we will solve a capture the flag (CTF) challenge from Vulnhub.
Read More
Article

The 5 biggest cryptocurrency heists of all time

The biggest crypto heists of all time include MT.GOX, Poly Network and KuCoin. How did the hacks occur, and what can we learn from them?
Read More
Article

Pay GDPR? No thanks, we’d rather pay cybercriminals

Ransomware attackers use stolen data to add pressure to pay the ransom. Will organizations be forced to pay or suffer the consequences of GDPR fines?
Read More
Article

10 biggest cybersecurity fines, penalties and settlements of 2021 (so far)

Learn about the largest fines given to companies when it comes to cybersecurity penalties and settlements in 2021.
Read More
Article

Fixing the cybersecurity skills gap: Draw on wider talent pools

In order to fill open cybersecurity positions, organizations need to focus on recruiting from new and underrepresented talent pools.
Read More
Article

Will a Digital Bill of Rights solve machine learning and privacy issues?

Will the Digital Bill of Rights fix the machine learning algorithm and privacy conundrum?
Read More