Tech Skills
Cybersecurity
Ethical hacking, penetration testing, network security, CTFs and defensive security
Skills in this topic
8 skills — Sign in to track your progress
Security Basics
beginner
Fix OWASP top 10 vulnerabilities
AI Security
intermediate
Identify and patch prompt injection vulnerabilities
Network Security
intermediate
Configure a firewall with proper inbound/outbound rules
Ethical Hacking & Pen Testing
intermediate
Conduct a full pen test with Kali Linux
Cloud Security
intermediate
Implement IAM least-privilege policies on AWS/GCP
Incident Response
intermediate
Build an incident response playbook
Security Compliance
intermediate
Map controls for SOC 2 Type II compliance
Defensive AI
advanced
Build an AI-powered log anomaly detector

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
The Spy Group Hiding Their Orders Inside a Dropbox Folder
In March 2025, a North Korean spy crew emailed activists a poster, the download link pointed to Dropbox, and so did every secret command… Continue reading on Me

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Is Your AI secretly exposing or Defending You? Part 2: Building Your Shield
The Sovereign Clean-Pipe Protocol Continue reading on Medium »

Medium · DevOps
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Making CrowdSec and Shorewall Work Together Without Breaking Each Other
By default, crowdsec-firewall-bouncer injects its own chain into iptables. That works fine on a simple system where nothing else is… Continue reading on Medium

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Detecting Atomic Arch Before the eBPF Rootkit Loads
Atomic Arch (Sonatype-2026–003775) backdoored around 1,500 AUR packages on June 11–12, 2026. The credential stealer it ships is… Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
The CIA Triad: The Three Words Every Security Decision Comes Back To
I’ve taught cybersecurity to enough beginners now to know that the term “CIA Triad” sounds like it belongs in a spy movie, not a textbook… Continue reading on M

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Triaging My First Phishing Alerts: A SOC Simulator Walkthrough
Most of my recent work has been offensive or IR-focused tracing a fileless malware infection through an Active Directory lab, running… Continue reading on Mediu

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Spent Years Trying to Forecast Cyberattacks Like Weather Systems
For the last few years, I’ve been working on a problem that sits between cybersecurity, mathematics, and large-scale systems : Can… Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Reconnaissance: Why the Best Hackers Look Before They Touch Anything
When new students start learning ethical hacking, almost all of them want to skip straight to the exciting part: running a scan, finding a… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Maritime Cyber Resilience Brief — Charting the USCG Cybersecurity Rule: Implementation Timeline and…
A follow‑up to the 3‑Part Comparative Series. Part 3 mapped the conceptual bridge between IACS UR E26/E27 and the U.S. Coast Guard’s new… Continue reading on Me
Medium · Startup
🔐 Cybersecurity
⚡ AI Lesson
2w ago
What is RDP? Complete Beginner’s Guide (2026)
What is RDP? Complete Beginner's Guide (2026) Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Your Browser as a Weapon — Understanding and Stopping CSRF
The attack that exploits trust to make you do things you never intended Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Anonymous — TryHackMe Walkthrough
What’s up everyone! So this is my very first writeup on Medium, and I figured why not kick it off with the Anonymous room on TryHackMe… Continue reading on Me

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Cybersecurity Job Market Breakdown (UK 2026)
The UK cybersecurity job market is booming, but many career changers and beginners struggle to understand where demand truly lies ,which… Continue reading on Me

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
How I Turned One Admin Account Into a Full Org Takeover
Note: The target’s name has been withheld and replaced with example.com, since this report is still under responsible disclosure / private… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Mastering Passive Recon: How to Map an Attack Surface Without Leaving a Trace
Why the best hackers start in total silence: A deep dive into passive footprinting, threat intelligence search engines, and defensive… Continue reading on InfoS

Medium · Python
🔐 Cybersecurity
⚡ AI Lesson
2w ago
I Ported an Old Shellshock PoC to Python 3 So the Bug Class Is Easier to Study Again
Shellshock is one of those bugs that everyone in security has heard of, but a lot of younger workflows only know it as a story. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
PortSwigger Lab Write-Up: User ID Controlled by Request Parameter with Data Leakage in Redirect
Category: Access Control Vulnerabilities Difficulty: Apprentice Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Business Logic Attacks Explained Using a Banking App
How Attackers Abuse Perfectly Working Features Without Hacking the Code Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
WhatsApp Plus Explained: What It Really Is and the Risks Nobody Tells You
WhatsApp Plus means two different things in 2026. Here is the full breakdown of the official Meta subscription, the unofficial mod APK… Continue reading on Medi

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
The Counterfeit Self and the Fight to Reclaim Digital Trust
A Room Where Everyone Was a Ghost Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Write Up PortSwigger Lab: Detecting NoSQL injection
NoSQL injection is an attack where we slip extra characters or commands into the input that gets sent to the database. In this lab, the… Continue reading on Med

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Building a Zero-Knowledge Note Vault: What I Learned by Getting It Wrong First
How a simple “encrypted message” demo turned into a real lesson in what end-to-end encryption actually means — and the mistakes along the… Continue reading on M

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Part 3: Configuring and Validating the Windows 11 Domain Client
With the domain controller fully operational and the cyber lab network established, the next step was to integrate a client workstation… Continue reading on Med

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Part 2: Configuring the Cyber Lab Environment — Windows Server 2022
With the network infrastructure now in place via pfSense, the next phase of the project focuses on configuring the systems that make up… Continue reading on Med

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Understanding Converter and AttributeConverter In Java: Transparent AES Encryption at the Database…
Java applications often need to perform repetitive transformations when reading from or writing to a database. Common examples include: Continue reading on Medi
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Stop Phishing with Zero Infrastructure: Building an AI Gmail Threat Scanner with Google Apps Script…
Email security architectures usually require complex deployments: MX record modifications, third-party mail gateways, or dedicated servers… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Beginner picoMini 2022 Writeup
My writeup for the Beginner picoMini 2022 challenges! It consists of pretty simple general skills challenges that serve as a good starting… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Insecure Direct Object Reference (IDOR) — TryHackMe IDOR Room
1. Overview Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Before You Click That Link: The 3-Second AI Scam Check That Could Save You Everything
AI scams move fast because panic moves fast. This simple pause can protect your money, accounts, and identity before one click gives… Continue reading on Medium
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Open Redirect on via GET parameter “redirect”
Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
CyberDefenders — Web Investigation Lab
I investigate Network PCAP file on the Wireshark. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Neighbour-TryHackMe Walkthrough
https://tryhackme.com/room/neighbour Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Congress Uses the Word “Cybersecurity” Hundreds of Times. It Never Actually Defines It.
Spend enough time reading federal law, and you start to notice something odd. The word “cybersecurity” is everywhere. It funds programs… Continue reading on Med
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Corridor-TryHackMe Walkthrough
https://tryhackme.com/room/corridor Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
The Fake Video That Almost Destroyed a Family: A Deepfake Warning Story
A story about trust, panic, and why the next family crisis you see on video may not be real. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Zero Trust: The Executive Mandate for Modern Cybersecurity
The End of the “Castle and Moat”: Why Zero Trust is Today’s Most Relevant Security Mandate Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
One month into my cybersecurity journey through the TechRise Cohort 2 program, and the experience…
Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
I. Executive Summary
This report consolidates all captured browser‑level, network, and vault telemetry from your recent sessions. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Tryhackme writeup: Dav machine
Phase 1: Reconnaissance (Recon) Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Demystifying Network Security Basics: A Hands-On Guide for Beginners
Stepping into the world of cybersecurity can feel like trying to drink water from a firehose. Between confusing acronyms, complex tool… Continue reading on Medi
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Personal Reflection on Security & Risk Management Concepts
Personal Reflection on Security & Risk Management Concepts Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Suspicious USB Stick(BTLO) writeup
Question 1; Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Password Security 101: Why we should never store raw password (FT. Bcrypt)
When you’re first learning to build databases, storing a password as plain text feels natural. It’s right there, it’s easy to test, and… Continue reading on Med

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
HackAstra 2026 · Digital Forensics (Qualifier Round)
Digital forensics challenges are rarely about a single artifact. They are about connecting small traces across memory, disk, applications… Continue reading on M

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
The Dark Web Marketplace That Made Millions and Changed Cybercrime Forever
It Looked Like Amazon. It Ran on Bitcoin. And It Became One of the Biggest Cybercrime Stories Ever. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
How a Broken Instagram Link Led to a Social Media Account Takeover Risk
Introduction Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
Deferred Procedure Calls — DPCs : A Real Deep Dive Internals, WinDbg, and Exploitation
IRQLs → KDPC internals → WinDbg live analysis → vulnerable driver code → ROP-based exploitation → BYOVD → mitigations breakdown Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
2w ago
From a Simple Input Field to Stored XSS — A Realistic Bug Bounty Journey
Introduction Continue reading on Medium »
DeepCamp AI