Blog Archives

AppSec

• An Intro to Bug Bounty Programs
• Buffer Overflows
• Cross Site Request Forgery (CSRF)
• Cross Site Scripting
• SQL Injection
• Types of Hacks

Cryptography

• Block and Stream Ciphers
• Encryption Algorithms
• How to Send Secret Messages

Incident Response

• Dealing with Botnets
• Protecting Against DDoS Attacks

Networking Protocols

• How Does Email Work?
• What You Need to Know About DNS
• What's in an email header, and why should you care?
• WTF is HTTPS?
• Traceroute and Ping
• Attacks on TLS/SSL

Passwords

• How Did Someone Get My Password?
• How to Crack Passwords
• Why a little salt can be great for your passwords (but not pepper!)

Security Awareness

• Running an Effective Phishing Simulation Program, Part 1
• Running an Effective Phishing Simulation Program, Part 2
• Types of Threat Actors
• A Guide to Online Privacy

Threat Intelligence

• Creating a Sock Puppet
• Developing a Sock Puppet's Persona
• The Case for Corporate (Human) Honeypots
• (A History of) Stuxnet
• An Abbreviated History of Infrastructure Attacks

Career

Certifications

• How to Pass the CISSP Exam
• An Overview of Cyber Security Certifications

Interviewing

• Learn to Speak the Security Lingo (a rough primer on introductory information security interview questions)

Job Hunting

• Getting Your First Job in InfoSec
• How to Write a Resume Hiring Managers Will Actually Read
• 10 Mistakes Technologists Make While Job Hunting - And How to Fix Them
• 10 Ways to Improve Your Cover Letter

Learning

• How to Learn Constantly (Without Burning Out)
• Setting Goals That Actually Stick
• What I Learned My First Year Working in Cybersecurity (On Hacker Noon)
• Why Soft Skills Are Key to Success in Tech

Public Speaking

• Congrats, You're Giving a Conference Talk! So...Where Do You Start?
• How to Conquer Your Fear of Public Speaking Once and For All
• So You Want to Break into Conference Speaking? Here's My Advice.