Looking for some courses on security testing. Do you have any in mind that you can recommend?

Looking for some courses on security testing. Do you have any in mind that you can recommend?

Would be interested in Web Security to start with and it can be free or paid.

3 Likes

This might be helpful @restertest , had a rating of 4.6 :star:
https://www.udemy.com/share/107i2Q/

1 Like

Hi there.

What I can recommend on this topic:

Then - check out the OWASP

4 Likes

There’s a similar thread :thread: here with lots of resources in the replies: Security Testing - Where on earth do you start?

2 Likes

Hi there!

  • hackthebox
  • offensive-security .com/courses/pen-200/ and achieving related OSCP certification would be a really good goal. Cisco CCNA for basic networking understanding.
  • tcm-sec .com – tcm-sec .com/so-you-want-to-be-a-hacker-2023-edition/
  • TCM’s 2023 Ethical Hacking course (free on youtube); it’s easy to understand, set up, and follow. The explanations are clear.
  • tryhackme

A realistic career course in ethical hacking/pentesting/security testing needs to cover a wide range of tools, even if you won’t use them all immediately in a job. Understanding various tools will give you a good start and prevent missing out on opportunities due to lack of knowledge. Learning about standards and policies, unfortunately, is important for maintaining integrity in the cybersecurity field (I kinda skipped this step for now). While it’s tempting to rush through learning, doing so could result in knowledge gaps (this is where I am). Having strengths and weaknesses in different areas is normal, but accurately assessing your knowledge is key to effective learning.

The advice is to get to grips with networking and just read a couple of solid books about cybersecurity. Doesn’t matter if you don’t understand everything, it’s okay. You retain some of what you read for future practical tasks and learnings. At the same time start the basics on the aforementioned resources, and also consider a subscription to some resources with cybersecurity info. If you do theory and practical side by side it’s the best.

Good luck :wink:

2 Likes

Portswigger web security academy.

Note I felt it got quite tough very quickly and I was jumping ahead looking at solutions when I started but I found content good.

1 Like

Sure, I can help you with that! Security testing is a critical skill in today’s digital world, and there are many great courses available to help you learn the ropes. Here are a few recommendations to get you started:

  • Certified Ethical Hacker (CEH): Offered by the EC-Council, this certification covers various aspects of ethical hacking, including security testing methodologies and techniques.

  • Offensive Security Certified Professional (OSCP): Offered by Offensive Security, this certification focuses on penetration testing skills, including hands-on labs and exams.

  • Certified Information Systems Security Professional (CISSP): Offered by (ISC)², this certification covers a wide range of cybersecurity topics, including security testing, and is highly respected in the industry.

  • Certified Web Application Security Tester (C-WAST): Offered by the International Council of E-Commerce Consultants (EC-Council), this certification focuses specifically on web application security testing.

  • Advanced Web Attacks and Exploitation (AWAE): Offered by Offensive Security, this course focuses on advanced web application security testing and exploitation techniques.

1 Like

I use this sometimes for my learning. Has some decent list to start with.

Also Burpsuite’s Port Swigger academy is free to start with and a good learning source

1 Like