Episode 183 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss some training resources that you can use in your security program free of charge!
News:
Autopatch is now Available
https://thehackernews.com/2022/07/microsoft-windows-autopatch-is-now.html
'Callback' Phishing Campaign Impersonates Security Firms
https://threatpost.com/callback-phishing-security-firms/180182/
Resources Discussed:
Portswigger Web Security Academy
https://portswigger.net/training
XSS, Cross Site Request Forgery, SQL Injection, HTTP Request Smuggling
Burp Suite Training - All free & high quality
HacktheBox, TryHackMe, OverTheWire
Offensive Security - Metasploit Unleashed.
Also currently doing free OSCP classes via Twitch. Monday and Friday at 12:00 PM ET
https://www.offensive-security.com/metasploit-unleashed/
FRSecure CISSP mentorship
https://frsecure.com/cissp-mentor-program/
Federal Virtual training Environment
https://fedvte.usalearning.gov/
Free training for all Federa, State, Local, Tribal and Territorial government employees.
Using ATT&CK for CTI Training
https://attack.mitre.org/resources/training/cti/
Understand what ATT&CK is and how to use it to make defensive decisions.
SANS Cheat Sheets!
https://www.sans.org/blog/the-ultimate-list-of-sans-cheat-sheets/
PicoCTF
https://picoctf.org/resources.html
Learning Guides for General Skills, Crypto, Web Exploitation, Forensics, Binary Exploitation, Reversing
Infosecinstitute
https://resources.infosecinstitute.com/topic/13-cyber-security-training-courses-you-can-take-now-for-free/
$300 Annual
Cybrary
https://www.cybrary.it/
Some free courses or $60 a month
Give episode 183 a listen or watch and send any questions, comments, or feedback to
unsecurity@protonmail.com. Don't forget to like and subscribe!
