Tech Skills
Cybersecurity
Ethical hacking, penetration testing, network security, CTFs and defensive security
Skills in this topic
8 skills — Sign in to track your progress
Security Basics
beginner
Fix OWASP top 10 vulnerabilities
AI Security
intermediate
Identify and patch prompt injection vulnerabilities
Network Security
intermediate
Configure a firewall with proper inbound/outbound rules
Ethical Hacking & Pen Testing
intermediate
Conduct a full pen test with Kali Linux
Cloud Security
intermediate
Implement IAM least-privilege policies on AWS/GCP
Incident Response
intermediate
Build an incident response playbook
Security Compliance
intermediate
Map controls for SOC 2 Type II compliance
Defensive AI
advanced
Build an AI-powered log anomaly detector

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
We Didn’t Lose to Hackers. We Lost to Complexity.
What Salesloft Drift, Change Healthcare, CrowdStrike, M&S, and JLR teach us about secure AI-by-design. Continue reading on Medium »

Medium · Programming
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Your SSL Cert Expired Saturday at 2 A.M. Customers Notified You at 9.
Synthetic monitoring was green. Browsers were not. Seven hours of checkout revenue, gone. Continue reading on Medium »

Hackernoon
🔐 Cybersecurity
⚡ AI Lesson
2d ago
The 32-Bit Integer That Leaks Your Neighbor's GPU Memory: A Deep Dive Into CVE-2026-53923 in vLLM
vLLM reuses GPU memory across users for throughput. In its GGUF dequantize kernels, the output tensor is allocated full-size with torch::empty (uninitialized),

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
How Attackers Weaponize PHP-FPM to Steal Your .env File
You’ve done everything right. Your .env file lives safely outside your public web root. You even added an explicit Nginx rule to block any… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
The MSP Landscape in 2026: A Defining Year for the Industry
I’ve spent enough time in the MSP world to know that every January, people say it’s a pivotal year. But 2026 might really deserve that… Continue reading on Medi

Dev.to · CVE Reports
🔐 Cybersecurity
⚡ AI Lesson
2d ago
GHSA-CGFV-JRFP-2R7V: GHSA-cgfv-jrfp-2r7v: Authenticated SQL Injection in OpenRemote Datapoint Crosstab Export
GHSA-cgfv-jrfp-2r7v: Authenticated SQL Injection in OpenRemote Datapoint Crosstab...
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Top 10 SIEM Solution Providers in the GCC for Banks (2026 Guide)
The banking sector across the GCC is facing an unprecedented rise in cyber threats. From ransomware and insider threats to advanced… Continue reading on Medium

Dev.to · CVE Reports
🔐 Cybersecurity
⚡ AI Lesson
2d ago
GHSA-QRWJ-VH9X-GW5V: GHSA-QRWJ-VH9X-GW5V: Cross-Agent Server-Side Request Forgery and Remote Code Execution in Coder Workspace Agent
GHSA-QRWJ-VH9X-GW5V: Cross-Agent Server-Side Request Forgery and Remote Code Execution in...

Dev.to · Paulo Victor Leite Lima Gomes
🔐 Cybersecurity
⚡ AI Lesson
2d ago
incident response is becoming an agent review workflow
AWS DevOps Agent diagnosing EKS control-plane issues is not interesting because AI fixes Kubernetes. It is interesting because incident response is becoming evi
TechCrunch AI
🔐 Cybersecurity
⚡ AI Lesson
2d ago
The ‘first’ AI-run ransomware attack still needed a human
An AI agent carried out the technical execution of a real-world ransomware attack for the first known time, but new details show a human still chose the victim,
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Someone Was Testing My Live App While I Was Asleep
I want to start with the comment, because the comment set the tone for everything that followed. Continue reading on Medium »

Dev.to · TiltedLunar123
🔐 Cybersecurity
⚡ AI Lesson
2d ago
DAC, MAC, RBAC, ABAC: the Security+ access control models people keep swapping
Four access control models show up on the SY0-701 exam, and they blur together fast. DAC, MAC, RBAC,...

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
The Google Cybersecurity Certificate: Know What You’re Paying For
The cert has value — just not the kind most people expect. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
The Rise of Unified Detection: Where NDR Fits in XDR Platforms
The field of cybersecurity is continuously changing due to the advanced level of cyber threats, ransomware attacks, insider threats, and… Continue reading on Me

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
HTB Sherlock — Telly (Writeup)
Telnet Authentication Bypass, Persistence via linper.sh, and Credit Card Exfiltration Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
API Security Is the New Frontline of Cyber Warfare
In 2024, 83% of organizations suffered an API security incident. Attackers are no longer kicking down the front door — they’re sliding… Continue reading on Info

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Writing Code to Watch the Watchers: Log Aggression and Digital Self-Defense
The modern internet isn’t run by omniscient gods. It’s run by overworked sysadmins, bloated enterprise suites, and automated scrapers… Continue reading on Mediu

Dev.to · CVE Reports
🔐 Cybersecurity
⚡ AI Lesson
2d ago
CVE-2026-55792: CVE-2026-55792: Sensitive File Disclosure in Craft CMS via Twig Sandbox Bypass
CVE-2026-55792: Sensitive File Disclosure in Craft CMS via Twig Sandbox...

Dev.to · soy
🔐 Cybersecurity
⚡ AI Lesson
2d ago
.git/config Crawler, Fable 5 Stealth Attacks, & Clojure Key Validation
.git/config Crawler, Fable 5 Stealth Attacks, & Clojure Key Validation ...

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Building SkyVault: A 100% Local, AI-Powered Private NAS
By Harris Saeed, Hadi Ahmad, Muhammad Abdullah bin Khalid, and Muhammad Rafay Nabeel— Final Year Project, Department of Computer… Continue reading on Medium »

Dev.to · Dipesh Thapa
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Hardening my own Nmap web UI: the security holes I shipped, and what actually saved me
I built a web front end for an Nmap-based port scanner: a FastAPI backend, a React dashboard,...

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Day 6: Who Are You, and What Can You Do? Kubernetes Auth, Demystified
Every command you run against a cluster goes through one door: the API server. Continue reading on Medium »

Medium · Python
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Making a wazuh server in python from scratch for fun and maybe profit
Hi, souzo here, today I will show you how I created a wazuh server from scratch with python analysing wazuh agent request and wazuh server… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Your Phone Is Not Listening to You. The Truth Is Actually Much Creepier.
You talked about running shoes out loud and ten minutes later saw an ad for them. Here is what is actually happening and why the real… Continue reading on ILLUM

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Stop Blocking Domains. Here’s How to Actually Protect Yourself.
The old defense of blocking known malicious domains is easily bypassed. Learn why — and the new strategies you need now. Continue reading on Medium »

Reddit r/webdev
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Permission denied :: Reason ≔ none
Well that’s not very helpful. Anyone maybe know why this submitted by <a href="https:/

Forbes Innovation
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Who Gets Left Behind In Traditional Brand Protection?
Domain attacks against SMBs don’t always make the news. But domain attacks can devastate SMBs nonetheless.

Medium · AI
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Protecting Your Digital Life: The Ultimate Guide to Cybersecurity
The internet is a massive part of our daily lives, but it also comes with risks. Hackers and scammers are constantly finding new ways to… Continue reading on Me

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Your Scanner Reads One Workflow at a Time. The Attack Lives in the Chain.
A new class of CI/CD vulnerability exposes the difference between a detection control and a governance decision, and a regulatory clock is… Continue reading on
Dev.to AI
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Oracle Manipulation: How a $392K Silo Finance Loss Happened in 2026
While the nine-figure hacks of 2026 grabbed headlines, the smaller ones are more instructive because they are the bugs you and I might actually write. On April

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Beyond MFA: Why Identity Security Has Become the Foundation of Modern Cyber Resilience
Every week, organizations invest millions in firewalls, endpoint protection, cloud security, and AI-powered threat detection. Continue reading on All About Cybe

Dev.to · BeyondMachines
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Texas Hearing Institute Reports Ransomware Attack Impacting 30,000 Residents
The Texas Hearing Institute suffered a ransomware attack claimed by the Interlock group, resulting in the alleged theft of 540 GB of data and compromising the p

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Fools Mate Pair
Two new Capture-the-Flag rooms, the Fools Mate and its sequel Fools Mate, Revenge. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Beyond Compliance: What Earning the ISO/IEC 27701:2025 Lead Auditor Certification Means to Me
In today’s digital world, data has become one of the most valuable assets organizations possess. Every online transaction, registration… Continue reading on Med

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Fool’s Mate: When the Engine Bluffs
Room: Fool’s Mate — TryHackMe Difficulty: Easy | Category: Web / Client-Side Bypass Author: Abdul Rehman | LinkedIn | TryHackMe Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Top 5 Cybersecurity Interview Questions (2026) | Perfectnotes
Cybersecurity is one of the fastest-growing fields in the world, with millions of unfilled roles. However, passing a technical security… Continue reading on Med

Dev.to · Etairos.ai
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Max-Severity Adobe ColdFusion RCE (CVE-2026-48282) Is Now Under Active Attack
TL;DR what: Adobe ColdFusion's maximum-severity flaw CVE-2026-48282 is being actively...
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Essential Cybersecurity Guide for Small Business Owners
MicroTech Systems offers an essential cybersecurity guide for small business owners seeking stronger protection against evolving cyber… Continue reading on Medi

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Cloud-Based Cybersecurity Solutions: Benefits, Features, and Best Practices
A few years ago, “cybersecurity” mostly meant a firewall sitting in a server closet somewhere, quietly doing its job while nobody thought… Continue reading on M

Medium · Programming
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Understanding RELRO and the Global Offset Table (GOT): A Hands-On Linux Deep Dive
Learn how Linux dynamically links functions, how the GOT works, what RELRO protects, and how to inspect everything yourself using GDB… Continue reading on Mediu

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Understanding RELRO and the Global Offset Table (GOT): A Hands-On Linux Deep Dive
Learn how Linux dynamically links functions, how the GOT works, what RELRO protects, and how to inspect everything yourself using GDB… Continue reading on Mediu

Medium · Programming
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Understanding DEP/NX and PIE in Linux: A Hands-On Deep Dive Into Modern Memory Protections
Learn how Linux prevents code execution from data memory, randomizes executable code, and why modern binaries are much harder to attack… Continue reading on Med

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Understanding DEP/NX and PIE in Linux: A Hands-On Deep Dive Into Modern Memory Protections
Learn how Linux prevents code execution from data memory, randomizes executable code, and why modern binaries are much harder to attack… Continue reading on Med

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Managed Cybersecurity for NZ Small Businesses: What You Actually Need in 2026
Managed cybersecurity combines 24/7 network monitoring, endpoint protection, staff phishing training, and Privacy Act compliance reporting… Continue reading on
Medium · Programming
🔐 Cybersecurity
⚡ AI Lesson
2d ago
Natas Challenge Username & Password
Natas teaches the basics of server-side web security. I successfully solved the Natas wargame Continue reading on Medium »

Medium · AI
🔐 Cybersecurity
⚡ AI Lesson
3d ago
India Just Joined an Elite Club. Here’s Why That Matters for Global Infrastructure Security
India is now the 7th country to master Gallium Nitride semiconductor technology a capability once denied to it, now developed… Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
3d ago
India Just Joined an Elite Club. Here’s Why That Matters for Global Infrastructure Security
India is now the 7th country to master Gallium Nitride semiconductor technology a capability once denied to it, now developed… Continue reading on Medium »

Dev.to · FabrizioPerezPeralta
🔐 Cybersecurity
⚡ AI Lesson
3d ago
Shifting Mobile Security Left: Applying SAST to Android Apps with MobSF
TL;DR — I took an intentionally vulnerable Android application, ran the static analysis engine of...
DeepCamp AI