Tech Skills

Cybersecurity

Ethical hacking, penetration testing, network security, CTFs and defensive security

18,367
lessons
Skills in this topic
View full skill map →
Security Basics
beginner
Fix OWASP top 10 vulnerabilities
AI Security
intermediate
Identify and patch prompt injection vulnerabilities
Network Security
intermediate
Configure a firewall with proper inbound/outbound rules
Ethical Hacking & Pen Testing
intermediate
Conduct a full pen test with Kali Linux
Cloud Security
intermediate
Implement IAM least-privilege policies on AWS/GCP
Incident Response
intermediate
Build an incident response playbook
Security Compliance
intermediate
Map controls for SOC 2 Type II compliance
Defensive AI
advanced
Build an AI-powered log anomaly detector
All Reads (11,454) Articles (5718)Blog Posts (4416)Tutorials (424)Research Papers (37)News (859)
The Duck Stops Here: Building hid_guard — Catching Keystroke Injection at the Kernel Level
Dev.to · Krish Gulati 🔐 Cybersecurity ⚡ AI Lesson 1d ago
The Duck Stops Here: Building hid_guard — Catching Keystroke Injection at the Kernel Level
This is the index post for a series on building hid_guard, a HID-BPF security monitor for the Linux...
Medium · Deep Learning 🔐 Cybersecurity ⚡ AI Lesson 2d ago
SafeMath Is Not Dead. It Just Became a Review Mindset.
For years, SafeMath was one of the first smart contract security patterns developers learned. Continue reading on Medium »
Who signs what: a Security+ walkthrough of PKI and certificates
Dev.to · TiltedLunar123 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Who signs what: a Security+ walkthrough of PKI and certificates
PKI is one of those Security+ topics that feels simple until the exam hands you four answers that all...
"The credential handoff that keeps your client's secrets out of Slack DMs"
Dev.to · projectnomad 🔐 Cybersecurity ⚡ AI Lesson 2d ago
"The credential handoff that keeps your client's secrets out of Slack DMs"
Disclosure: I'm Claude, running as @projectnomad — an autonomous AI entrepreneur experiment, clearly...
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
The Most Important Word in Cybersecurity Isn’t "Firewall." It’s Entropy
Why the idea behind "password123 is a bad password" quietly underpins almost everything that keeps your data safe and the real bug that… Continue reading on Med
Privacy isn't encryption: what building on Midnight actually taught me
Dev.to · Tminus1sec base.eth 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Privacy isn't encryption: what building on Midnight actually taught me
When I started building on Midnight, I had the wrong mental model, and I suspect most people arriving...
Why Cyber Security Is Critical to India’s Digital Future
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Why Cyber Security Is Critical to India’s Digital Future
India’s digital economy has scaled at a pace few countries have matched. Payments move instantly, identity verification happens in seconds… Continue reading on
Threat Hunting
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Threat Hunting
Threat Hunting is also known as Cyber Threat Hunting. Continue reading on Medium »
Hardware-Secured Trading Bots: D'CENT Integration for High-Value DeFi Operations
Dev.to · Wallet Guy 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Hardware-Secured Trading Bots: D'CENT Integration for High-Value DeFi Operations
Hardware-Secured Trading Bots: D'CENT Integration for High-Value DeFi...
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
What Is a CISO? A Simple Guide to the Person Who Keeps Your Company Safe from Hackers
If you’ve ever wondered who’s actually responsible when a company gets hacked — or who makes sure it doesn’t — the answer is usually one… Continue reading on Me
THREAT HUNTING
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
THREAT HUNTING
Threat hunting : It is also know as cyber threat hunting ,is proactive approach to identifying previously unknow or currently ongoing… Continue reading on Mediu
Royal Loyalty Bellingcat Challenge Walkthrough
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Royal Loyalty Bellingcat Challenge Walkthrough
In this walkthrough, I will explain the steps I took to solve the Royal Loyalty Bellingcat challenge and identify the street shown in the… Continue reading on M
Active Directory Mastery: From Zero to Full Enterprise Compromise
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Active Directory Mastery: From Zero to Full Enterprise Compromise
If you’ve ever heard terms like “Kerberoasting,” “DCSync,” or “Golden Ticket” thrown around and felt completely lost, this is written for… Continue reading on M
Threat Hunting
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Threat Hunting
Threat Hunting is also known as cyber threat hunting, is a proactive approach to identifying previous unknown or currently ongoing cyber… Continue reading on Me
What exactly is CYBERSECURITY?
Dev.to · Shanaya Dimri 🔐 Cybersecurity ⚡ AI Lesson 2d ago
What exactly is CYBERSECURITY?
Cybersecurity is the process of protecting networks, systems, applications and digital assets from...
OPNsense Patches Critical Root Vulnerability in GeoIP Alias Importer
Dev.to · BeyondMachines 🔐 Cybersecurity ⚡ AI Lesson 2d ago
OPNsense Patches Critical Root Vulnerability in GeoIP Alias Importer
OPNsense released critical security updates to fix a root remote code execution vulnerability (CVE-2026-57155) in its GeoIP alias importer. The update also patc
Breach At The Beach: The Ultimate Entra ID Training Experience
Hackernoon 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Breach At The Beach: The Ultimate Entra ID Training Experience
Breach at the Beach is a free Capture the Flag (CTF) built by Varonis Threat Labs to teach defenders how modern attackers abuse Microsoft Entra ID. Based on rea
EvilTokens: How “Ghost” Code Threatens US and European Businesses
Hackernoon 🔐 Cybersecurity ⚡ AI Lesson 2d ago
EvilTokens: How “Ghost” Code Threatens US and European Businesses
EvilTokens conceals its phishing workflow behind browser-side AES-GCM decryption, making static URL analysis insufficient for detecting Microsoft 365 device cod
Kioptrix 2: Walkthrough and Write-up
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Kioptrix 2: Walkthrough and Write-up
In this write-up, we will walk through the step-by-step penetration testing process for the classic Kioptrix vulnerable machine. This lab… Continue reading on M
Even Cybercriminals Can’t Trust Their Service Providers
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Even Cybercriminals Can’t Trust Their Service Providers
If another company had an incident this size, it would be catastrophic. But for StealC, it’s just another day. Continue reading on Medium »
Malware Deep Dive: Swisyn
Dev.to · jordanricky1604-ship-it 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Malware Deep Dive: Swisyn
Deep Dive: Swisyn (Trojan_Generic) Today we are analyzing the Swisyn malware family, which...
How Attackers Think: Why Modern Cybercrime Is More Psychology Than Programming
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
How Attackers Think: Why Modern Cybercrime Is More Psychology Than Programming
For decades, popular culture has painted a very specific picture of a cybercriminal: a lone hacker in a dark room, furiously typing green… Continue reading on M
Smart Contract Security: Lessons Learned from Building Fintech Payment Systems
Dev.to · PerfectionGeeks 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Smart Contract Security: Lessons Learned from Building Fintech Payment Systems
Blockchain payment systems promise transparency, speed, and lower transaction costs — but they also...
How I Recovered My Kali Linux Machine After Forgetting My Password
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
How I Recovered My Kali Linux Machine After Forgetting My Password
Forgetting your password doesn’t mean reinstalling your operating system. Here’s how understanding the Linux boot process helped me regain… Continue reading on
ServeHub-2: A Self-Hosted Two-Server VPN Architecture
Dev.to · Roman Frolov 🔐 Cybersecurity ⚡ AI Lesson 2d ago
ServeHub-2: A Self-Hosted Two-Server VPN Architecture
It all started when I became dissatisfied with my approach to deploying personal services. I decided...
Splunk Enterprise for Beginners: Your First Step into SIEM and Log Analysis
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Splunk Enterprise for Beginners: Your First Step into SIEM and Log Analysis
Splunk Enterprise for Beginners: Your First Step into SIEM and Log Analysis Continue reading on Medium »
How to get a dedicated IP address: Complete guide
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
How to get a dedicated IP address: Complete guide
Learn how to get a dedicated IP address via a VPN, ISP, or hosting provider. Find out which option fits your needs and how to purchase one. Continue reading on
Investigating a Phishing Email: A Step-by-Step Analysis
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Investigating a Phishing Email: A Step-by-Step Analysis
I Almost Fell for This “Dream Job” Scam — Here’s How I Analyzed It Continue reading on Medium »
Disabling Direct Root SSH Login — Complete Guide
Medium · DevOps 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Disabling Direct Root SSH Login — Complete Guide
Linux Level 1 Certification Challenge — Day 7 Continue reading on Medium »
iOS 27—Apple’s New Software Will Allow Apps To Alert You About Scams
Forbes Innovation 🔐 Cybersecurity ⚡ AI Lesson 2d ago
iOS 27—Apple’s New Software Will Allow Apps To Alert You About Scams
New iOS 27 framework helps apps detect when people are being scammed and alert them in real time. Here's what you need to know.
Why does your local database data leave your network for a query?
Dev.to · Finn 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Why does your local database data leave your network for a query?
Sending production database credentials or raw data to a cloud-based SQL platform creates an...
OWASP Top 10 #1: Understanding Broken Access Control (Beginner's Guide)
Dev.to · Vimal Mudalagi 🔐 Cybersecurity ⚡ AI Lesson 2d ago
OWASP Top 10 #1: Understanding Broken Access Control (Beginner's Guide)
Disclaimer: I'm currently learning web security through OWASP and PortSwigger Web Security Academy....
What actually breaks in your MCP server on 2026-07-28
Dev.to · fernforge 🔐 Cybersecurity ⚡ AI Lesson 2d ago
What actually breaks in your MCP server on 2026-07-28
The 2026-07-28 MCP spec is the biggest revision since the protocol launched, and it is not backward...
Secure, Stable, and Reliable: The Benefits of Dedicated Servers
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Secure, Stable, and Reliable: The Benefits of Dedicated Servers
Cloud technology has transformed the way businesses build and scale their digital infrastructure. It’s flexible, convenient, and… Continue reading on Medium »
# Building an Active Directory Security Lab — Part 2: Users, Groups, and the First GPO
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
# Building an Active Directory Security Lab — Part 2: Users, Groups, and the First GPO
In [Part 1] (https://medium.com/@ahmednaoum/cybersecurity-lab-7278776f731d) I got the domain controller running and verified it with… Continue reading on Medium
LLMNR/NBT-NS Poisoning — Capturing NTLMv2 Hashes in Active Directory
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
LLMNR/NBT-NS Poisoning — Capturing NTLMv2 Hashes in Active Directory
Part 2 of the Active Directory Home Lab Series (https://medium.com/@keskarshrishailya/active-directory-home-lab-setup-4b6acb321035) Continue reading on Medium »
OSI AND TCP/IP MODEL IN DETAIL.
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
OSI AND TCP/IP MODEL IN DETAIL.
The OSI Model is a 7-layer conceptual model used to understand and standardize network communication. The TCP/IP Model is a 4-layer… Continue reading on Medium
Not Sure Which Cybersecurity Course to Choose? Start Here.
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Not Sure Which Cybersecurity Course to Choose? Start Here.
Cybersecurity is one of the fastest-growing career fields, but many beginners have the same question: Continue reading on Medium »
How Hackers Actually Think — And What Developers Miss
Medium · JavaScript 🔐 Cybersecurity ⚡ AI Lesson 2d ago
How Hackers Actually Think — And What Developers Miss
You’ve been building for users. Hackers have been building for your blind spots. Continue reading on InfoSec Write-ups »
Demystifying SSH Key Pairs: The Silent Guardians of Modern Infrastructure
Dev.to · Karthik Korrayi 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Demystifying SSH Key Pairs: The Silent Guardians of Modern Infrastructure
Every DevOps engineer has typed this command countless times: ssh ubuntu@my-server Enter...
OAuth Challenges now Available
Dev.to · Hamza 🔐 Cybersecurity ⚡ AI Lesson 2d ago
OAuth Challenges now Available
OAuth’s core purpose is secure delegation of access, but when apps blindly trust any valid token...
Low-Cost EDR for Modern Security Teams
Dev.to · Pramod PR 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Low-Cost EDR for Modern Security Teams
Enterprise-grade endpoint security doesn't have to come with an enterprise price tag. 🔐 Many...
How to audit an MCP server: 6 layers from static analysis to gVisor sandbox
Dev.to · Edison Flores 🔐 Cybersecurity ⚡ AI Lesson 2d ago
How to audit an MCP server: 6 layers from static analysis to gVisor sandbox
The problem Model Context Protocol servers are powerful — they let AI agents call external...
ArXiv cs.AI 🔐 Cybersecurity 📄 Paper ⚡ AI Lesson 2d ago
JavaVulBench: A Java Vulnerability Benchmark with Realistic Splits, a Unified Multi-Backend Harness, and a Leakage-Aware Evaluation Mode
arXiv:2607.02825v1 Announce Type: cross Abstract: We release \textsc{JavaVulBench}, a benchmark dataset and evaluation harness for Java vulnerability detection.
ArXiv cs.AI 🔐 Cybersecurity 📄 Paper ⚡ AI Lesson 2d ago
Enhanced Feature Extraction for IoT Network Intrusion Detection Using GNNs and KAN
arXiv:2607.02981v1 Announce Type: cross Abstract: Recent advancements in the Internet of Things (IoT) emphasize the urgent need for advanced network security, a
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Data Privacy is Essential, And Often Neglected
When was the last time you DOXXED yourself, or had a professional dox you, build an opposition file, dossier, or otherwise build a profile… Continue reading on
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
Auditing My Own Accounts Like an Attacker Would: A Practical Security Assessment
Inside the Breach: Auditing My Accounts, Dissecting Real Malware, and Why Entropy Is the Quiet Backbone of Security Continue reading on Medium »
How to Recover Data From a Corrupted BitLocker Drive
Medium · Cybersecurity 🔐 Cybersecurity ⚡ AI Lesson 2d ago
How to Recover Data From a Corrupted BitLocker Drive
A BitLocker password isn’t always enough to get your files back. Continue reading on Medium »