#fundamentals

Authentication Attacks: Passwords, Sessions, and Tokens

How login systems break - brute force, credential stuffing, session hijacking, token flaws, and MFA bypass. The complete beginner's guide to auth attacks.

tutorial fundamentals ground-up +2

Jan 30, 2026 · 10 min read

Read

Tutorial

INFO

Cybersecurity Career Paths: Finding Your Direction

Offensive, defensive, GRC, cloud security, AppSec - the major cybersecurity career paths explained. What each role does, what skills you need, and how to choose.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 8 min read

Read

Tutorial

INFO

Certifications, Learning Resources, and Next Steps

A practical guide to cybersecurity certifications, free and paid learning resources, communities, and building a plan for your first year in security.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 8 min read

Read

Tutorial

INFO

Encryption Explained: Keeping Secrets on the Internet

Symmetric vs asymmetric encryption, how AES and RSA work conceptually, key exchange, and why encryption matters for security. No math required.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 11 min read

Read

Tutorial

INFO

Building Your First Security Lab

How to set up a safe, isolated environment for practicing cybersecurity skills - from a simple VM setup to a full attack-and-defend lab.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 7 min read

Read

Tutorial

INFO

Hardening 101: Practical Steps to Secure Systems

Practical system hardening for Linux and Windows - reducing attack surface, configuring firewalls, applying least privilege, and closing the gaps attackers exploit.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 9 min read

Read

Tutorial

INFO

Hashing, Certificates, and TLS: Trust on the Internet

How hashing proves integrity, certificates prove identity, and TLS ties it all together. The second half of practical cryptography for beginners.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 11 min read

Read

Tutorial

INFO

How Web Applications Work (Before You Break Them)

Client-server architecture, request flow, cookies, sessions, and APIs. You need to understand the machine before you can find the cracks.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 10 min read

Read

Tutorial

INFO

Incident Response: What Happens When Things Go Wrong

The structured process for handling security incidents - from detection to recovery. How IR teams contain breaches, investigate root cause, and prevent recurrence.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 10 min read

Read

Tutorial

INFO

The Cyber Kill Chain: How Attacks Actually Work

The step-by-step anatomy of a cyberattack - from reconnaissance to objectives. Understanding the full chain so you know where to defend and where to break it.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 9 min read

Read

Tutorial

INFO

Linux for Security: Your First 20 Commands

The essential Linux commands every security beginner needs - navigation, files, processes, and networking. No fluff, just what you'll actually use.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 10 min read

Read

Tutorial

INFO

Logs and Monitoring: Your First Line of Defense

Understanding log types, where to find them, what to look for, and how SIEM tools turn raw data into actionable alerts. The foundation of every detection strategy.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 7 min read

Read

Tutorial

INFO

Networking Basics: How Computers Find Each Other

IP addresses, MAC addresses, DNS, and routing - explained from scratch. The networking foundation every security beginner needs.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 8 min read

Read

Tutorial

INFO

Privilege Escalation: From User to Admin

How attackers go from low-privilege access to full system control. Linux and Windows techniques, common misconfigurations, and how defenders detect it.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 9 min read

Read

Tutorial

INFO

Ports, Protocols, and Why They Matter for Security

What ports and protocols actually are, which ones matter, and how attackers and defenders use this knowledge. The final networking fundamental.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 9 min read

Read

Tutorial

INFO

Reconnaissance: What Attackers See Before They Strike

Passive and active recon techniques - OSINT, DNS enumeration, port scanning, and attack surface mapping. The first stage of every attack.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 7 min read

Read

Tutorial

INFO

Reverse Shells Explained: The Complete Foundation

What reverse shells are, why attackers use them, how they work under the hood, and where they fit in the attack chain. The foundation before you touch a terminal.

tutorial pentest detection +2

Jan 30, 2026 · 10 min read

Read

Tutorial

INFO

Social Engineering: Hacking Humans

Phishing, pretexting, vishing, and why the human layer is the hardest to patch. The psychology behind social engineering and how to defend against it.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 9 min read

Read

Tutorial

INFO

SQL Injection Explained: Talking to Databases You Shouldn't

How SQL injection works, why it's devastating, and how to prevent it. From basic injection to blind SQLi, explained for beginners.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 9 min read

Read

Tutorial

INFO

Users, Permissions, and Why Root Is Dangerous

How Linux access control works - users, groups, file permissions, SUID, and sudo. Understanding this is understanding half of privilege escalation.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 9 min read

Read

Tutorial

INFO

What Actually Happens When You Visit a Website

The full chain from URL to rendered page - DNS, TCP handshake, HTTP, and TLS. Understanding the request lifecycle is key to understanding web security.

tutorial fundamentals ground-up +1

Jan 30, 2026 · 9 min read

Read