Tech Skills
Cybersecurity
Ethical hacking, penetration testing, network security, CTFs and defensive security
Skills in this topic
8 skills — Sign in to track your progress
Security Basics
beginner
Fix OWASP top 10 vulnerabilities
AI Security
intermediate
Identify and patch prompt injection vulnerabilities
Network Security
intermediate
Configure a firewall with proper inbound/outbound rules
Ethical Hacking & Pen Testing
intermediate
Conduct a full pen test with Kali Linux
Cloud Security
intermediate
Implement IAM least-privilege policies on AWS/GCP
Incident Response
intermediate
Build an incident response playbook
Security Compliance
intermediate
Map controls for SOC 2 Type II compliance
Defensive AI
advanced
Build an AI-powered log anomaly detector

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Healthcare Cybersecurity Services: Protecting Modern Healthcare Systems from Digital Threats
Healthcare cybersecurity services are essential for protecting sensitive patient information, hospital systems, and digital health records… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Cybersecurity Isn’t as Complicated as It Sounds — But Most Beginners Learn the Wrong Things First
Most people hear “cybersecurity” and picture a hoodie-wearing hacker typing furiously in a dark room. That image has done a lot of damage… Continue reading on M

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Active Directory Enumeration & Attacks — Skills Assessment Part I
In this blog, I walk you through the steps and thought process I follow while solving the skill assessment part 1 for the Active Directory… Continue reading on
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
ENISA — SBOM Adoption in 2026: From Security Best Practice to Regulatory Imperative (Part I)
Intro Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
At LionSec Hub, we exist to help secure Africa’s digital economy, strengthen organizational…
Introducing LionSec Hub: Learn. Build. Protect. Continue reading on Medium »

Forbes Innovation
🔐 Cybersecurity
⚡ AI Lesson
1w ago
O2 Warns Customers Not To Fall For Convincing New Phone Text Scam
Convincing text message has forced U.K. carrier O2 to warn its users to be on high alert. The text is designed to look like it comes from the carrier itself.

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
The Digital Secret Handshake: A Beginner’s Guide to SSL and HTTPS
Imagine Sending a Secret Letter in a Crowded Market Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
The Thieves Who Skip Your Password and Your Two-Factor Code
Infostealers like Lumma don’t crack your login. They steal the ‘you’re already signed in’ wristband your browser holds — and with it, your… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Cyber Briefing: 2026.06.19
Welcome to Cyber Briefing, your daily source for all things cybersecurity. We bring you the latest advisories, alerts, incidents, and news… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
HTTP Request Smuggling vs HTTP Request Pipelining: Why They’re Often Confused
Stop screenshotting every double response in Burp Repeater. Here’s how to separate harmless protocol features from actual queue poisoning. Continue reading on M

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Social Engineering: Fake “Human Verification”
The most dangerous cyber attacks do not always rely on sophisticated software exploits, often, they simply exploit human behavior (social… Continue reading on M

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Chain of Custody: Know What’s In Your Image
SBOMs, Syft, and Trivy — because your base image made dependency decisions you never signed off on. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Walang CS Degree? Pwede Ka Pa Ring Maging Cybersecurity Professional (Here’s How)
The Philippines is under attack, and companies are desperately looking for people like you to stop it. Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
How a Loose Regex in a File Upload Component Led to a $12,000 Remote Code Execution (RCE)
If you ask any bug hunter what their holy grail vulnerability is, the answer is almost always the same: Remote Code Execution (RCE). It is… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
CISSP Chapter 5 — Part 1: Classification Is Not Bureaucracy. It Is How Assets Become Defensible.
Sensitive data, PII, PHI, proprietary information, data states, and the judgment required to classify assets in a way that actually… Continue reading on Medium

Forbes Innovation
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Moscow Refinery Attack Is A Landmark In Complex Drone Strikes
The attack involved several types of drone and targeted the refinery's crucial AVT unit. The scale and sophistication are as significant as Russia's defensive f

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Why “Decrypting” a Password Is the Wrong Word
A technical tour of hashing, salt, pepper, and why your SHA-256 password store is already broken Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
The Cybersecurity Risk in Vendor Partnerships That Boards Ask About Too Late
Turn vendor noise into ownership, exit plans, and board-ready decisions. Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Learning Linux basics on Kali Linux today!
Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Write Up PortSwigger Lab : Accessing private GraphQL posts
GraphQL is a way for a website to get data from the server, where we can pick exactly what data we want in one request. In this lab, one… Continue reading on Me

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Latest Incident Response Strategies to Strengthen Cybersecurity
Due to sophisticated cyber incidents being committed frequently, conventional preventative security controls cannot be relied upon to… Continue reading on MeetC

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
QUICK PRIVACY CHECKLIST
Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Hidden in Plain Sight: Zero-Day Exploitation Meets Ransomware’s New Cover
Executive Summary Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Best VPN for Android: Complete Security & Privacy Guide for Android Users in 2026
A VPN for Android was once considered a tool only for tech experts, but today that’s no longer true. Think about how much of your life… Continue reading on Medi
InfoQ AI/ML
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Article: Designing Continuous Authorization for Sensitive Cloud Systems
Most cloud systems make one authorization decision at login. Everything after runs on trust established at authentication time. For systems handling regulated d

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
”We’re Too Small to Be Targeted” is Why They Never Saw It Coming
SMBs experience more severe impacts of cyber incidents due to their limited resources. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Still in the DOM: My Fourth XSS Lab on PortSwigger
After the document.write lab, I jumped straight into another DOM-based XSS challenge, this time using innerHTML as the sink. The… Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Diving into the DOM: My Third XSS Lab on PortSwigger
After working through reflected and stored XSS, this lab introduced me to a different flavor of the same vulnerability class: DOM-based… Continue reading on Med

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Cracking NASA’s Mail Edge: NTLM Relay, Leaks & a Misconfigured Exchange
Sometimes you don’t break in… you just knock weird enough and the server spills everything. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
HTB_Labs:Sau
Enumeration Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
CSRF where token is tied on non-session cookie
When we talk about CSRF (Cross site request forgery), what comes in our mind? Obviously, a website where unauthorized commands are… Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
OT Environments Are Drowning in Logs. Here’s What Security Teams Need to Understand.
After years of debate, OT log overload remains a major challenge for critical infrastructure security teams, but AI is finally… Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Reconnaissance: The First Phase of Penetration Testing — Knowing Your Target Before the Attack
“The more you know about your target, the easier it becomes to identify its weaknesses.” Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
General Security Recommendations for the Safe Use of AI Tools at home and at work.
Here are some of the recommendations I share with my family and coworkers when asked how they can use AI in safe manners. Of course, these… Continue reading on

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Put a Bouncer on the Door
AI made the fakes flawless. So I quit vetting repos myself and put something on the door that actually reads them. Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Why Cybersecurity Job Seekers With Certifications Still Can't Get Interviews - What Works in 2026!
The hiring game changed. Here's the version of it that's actually being played right now. Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Inside a Multi-Stage PowerShell RAT: From Obfuscated VBS Downloader to WebSocket C2 Backdoor
In this report, we analyzed a multi-stage malware campaign that follows the infection chain: Email → Google Drive → PDF → Google Cloud… Continue reading on Medi
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
MobileHackingLabs — IOT Connect writeup
So our goal for this lab is to exploit a vulnerability in the application in a broadcast receiver that allows us to activate the master… Continue reading on Med

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Deepfake Vishing Secrets Revealed
What Hackers Don’t Want Your Executive Team to Know Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Why Security Teams Are Switching to EDR?
As cyber threats continue to evolve in sophistication, traditional security tools such as antivirus software, firewalls, and intrusion… Continue reading on Medi

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Performing OS Discovery
Introduction Continue reading on Medium »
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Building Muscle Memory in Cybersecurity: Understanding the Sentences, Missing the Paragraph
Today, I want to talk about a hidden struggle in cybersecurity: developing “reflexes and muscle memory.” Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Your Staff Aren’t the Problem. The Missing Alternative Is.
A nurse pastes a patient’s clinical notes into ChatGPT to get a summary before the next shift. A billing specialist drops a name, a… Continue reading on Medium

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Dead Drops on the Blockchain: A Cross-Family Taxonomy of On-Chain C2, with First-Hand Reversal and…
How four malware families store and retrieve command-and-control through EtherHiding — a per-scheme extraction method, a static reversal… Continue reading on Me
Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Why Organizations Are Shifting to Managed Security Services
The Economics and Operational Reality Behind the MSSP Movement — 2025 Reality Check Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Why “MCP is Dead” is the Wrong Question
I recently read an interesting take on the Model Context Protocol (MCP) being “dead.” While I agree with the author’s diagnosis of the… Continue reading on Medi

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
Identity Verification for Everyone, Sold as Child Safety: What Ireland’s Social Media Poll Really…
The Irish government is following the UK’s lead, using opinion polls to justify identity verification for everyone in the country… Continue reading on Medium »

Medium · Cybersecurity
🔐 Cybersecurity
⚡ AI Lesson
1w ago
When a Debug Log Hands Out Every Password You Type
A forgotten debug statement and a default password are all it takes. Continue reading on Medium »
DeepCamp AI