Textual markup of a cybersecurity roadmap

[AlbusNoir]

This might be a possible duplicate of another issue, but not sure.

I've used these roadmaps for a while and figured I'd contribute in some way to give back since I noticed it was expanding away from just development.

Please let me know if I need to go back and add anything to this or if anything needs changing

Cyber Security Learning Roadmap

Fundamental IT skills

• Understanding hardware components and how they work together in a computer
• Understand different connection types and how they function
  • Examples include: bluetooth, IR, NFC
• Understand basic OS-independent troubleshooting steps and terms
• Understand basic configuration and function of popular suites
  • iCloud, Google Suite, Microsoft Office Suite
• Understand basics of computer networking (expanded on in networking section)

  Windows OS

• Understand how to install and configure Windows
• Understand key differences between Windows versions
• Understand groups and their differences
• Understand permissions
• Understand installing software and applications
• Understand how to perform CRUD operations on files
• Understand how to navigate Windows in both the GUI and CLI
• Understand how to perform troubleshooting and use common Windows tools and services
• Understand common commands

  Linux OS

• Understand basic differences between Linux distro families
  • Debian, Fedora, RedHat
• Understand key differences between various popular distros (e.g. Ubuntu, RHEL, CentOS)
• Understand how to install and configure Linux
• Understand groups and permissions
• Understand how to perform CRUD operations on files
• Understand installing software and applications
• Understand basic troubleshooting and common tools and services
• Understand common directories and their structures and uses
• Understand how to navigate Linux in both the GUI and CLI
• Understand common commands

  [Optional] Mac OS

• Understand installing and configuring Mac OS
• Understand file structure and permissions
• Understand how to perform CRUD operations on files
• Understand how to navigate Mac OS using GUI and CLI
• Understand common commands
• Understand how to perform troubleshooting and use common Mac OS tools and services

Network skills and knowledge

• Understand the OSI model
• Understand purposes and uses of common ports and protocols
• Understand terminology such as:
  • VLAN
  • DMZ
  • ARP
  • VM(Virtual Machine)
  • NAT
  • IP
  • DNS
  • DHCP
  • Router
  • Switch
  • VPN
• Understand IP ranges: public vs private and IP terminology
  • loopback
  • localhost
  • subnet mask
  • default gateway
• Understand the basics and concepts behind subnetting
• Understand network topologies such as:
  • star
  • mesh
  • ring
  • bus
• Understand SSL and TLS fundamentals
• Understand wireless and wired terminology such as:
  • MAN
  • LAN
  • WAN
  • WLAN
• Understand functions of network services such as:
  • DHCP
  • DNS
  • NTP
  • IPAM
• Understand how to troubleshoot networks using tools and commands such as:
  • packet sniffers
  • port scanners
  • protocol analyzers
  • ping
  • tracert
  • nslookup
  • ipconfig/ifconfig
  • iptables
  • netstat
  • tcpdump
  • nmap
  • route
  • arp
  • dig
• Understand basics of NAS and SAN
• Understand basics of virtualization such as:
  • hypervisor
  • vm
  • guest OS
  • host OS
• Understand common virtualization technologies and how to use them:
  • VMWare
  • VirtualBox
  • [Optional] esxi
  • [Optional] proxmox
• Understand protocols such as SSH, RDP, FTP, SFTP, HTTP/HTTPS, SSL/TLS
• Understand the basics of authentication methodologies such as:
  • kerberos
  • LDAP
  • SSO
  • Certificates
  • Local auth
  • RADIUS
• Understand the basics of common network-based attacks:
  • DoS vs DDoS
  • Evil Twin
  • MITM
  • DNS Poisoning
  • ARP Poisoning
  • Spoofing
  • Deauth attack
  • VLAN hopping
  • Rogue access point
  • War-driving/war-dialing

Security skills and knowledge

• Understand various attack types and the differences:
  • phishing vs vishing vs spear phishing vs whaling vs smishing
  • spam vs spim
  • shoulder surfing
  • dumpster diving
  • tailgating
  • social engineering
  • reconnaissance
  • impersonation
  • watering hole attack
  • drive by attack
  • typosquatting
  • brute force vs password spray
  • zero day
• Understand basics of how malware operates and the different types
• Understand web based attacks and the OWASP top 10
• Understand network based attacks
• Understand privilege escalation and user based attacks
• Understand additional attacks such as:
  • buffer overflow
  • memory leak
  • SQL injection
  • XSS
  • request forgery
  • pass the hash
  • directory traversal
  • replay attack
• Understand CIA triad
• Understand handshakes
• Understand basics of threat intel, vulnerabilities, osint
• Understand the differences between false positive, false negative, true negative, true positive
• Understand blue team vs red team vs purple team
• Understand stages of an attack (cyber kill chain)
• Understand how to harden operating systems via configuration, MFA, 2FA
• Understand MFA and 2FA
• Understand Authentication (AuthN) vs Authorization (AuthZ)
• Understand backups and resiliency
• Understand the roles and responsibilities of compliance and auditors
• Understand backup plans and business continuity
• Understand the definition of risk
• Understand basics of cryptography:
  • salting
  • hashing
  • key exchange
  • pki
  • private key vs public key
  • obfuscation
• Understand secure protocols and how they differ from unsecure protocols such as:
  • FTP vs SFTP
  • SSL vs TLS
  • IPSec
  • DNSSEC
  • LDAPS
  • SRTP
  • SSH
  • S/MIME
• Understand concepts such as:
  • antivirus
  • antimalware
  • endpoint detection and response (EDR)
  • DLP
  • firewall and next gen firewall
  • HIPS
  • NIDS
  • NIPS
  • host based firewall
  • sandboxing
  • ACL
  • WPA vs WPA2 vs WPA3 vs WEP
  • WPS
  • EAP vs PEAP
• Understand the basics and core concepts of zero trust
• Understand how to use tools to perform incident response and discovery such as:
  • nmap
  • tracert
  • nslookup
  • dig
  • ipconfig/ifconfig
  • hping
  • ping
  • arp
  • curl
  • head
  • tail
  • cat
  • grep
  • wireshark
  • memdump
  • dd
  • ftk imager
  • autopsy
  • tcpdump
  • winhex
• Understand the incident response process:
  • preparation
  • identification
  • containment
  • eradication
  • recovery
  • lessons learned
• Understand frameworks:
  • ATT&CK
  • Kill chain
  • Diamond Model
• Understand terminology such as:
  • SIEM
  • SOAR
• Understand common standards:
  • ISO
  • NIST
  • RMF
  • CIS
  • CSF
• Understand basics of performing attacks against targets
• Understand the two distros commonly used for hacking:
  • ParrotOS
  • Kali Linux
• Understand how to use tools for unintended purposes:
  • LOLBAS
• Understand various log sources, where to find them and how to use them:
  • event logs
  • syslogs
  • netflow
  • packet captures
  • firewall logs
• Understand the difference between perimeter, DMZ, and segmentation
• Understand the basics and concepts of IDS and IPS
• Understand the concept of honeypots
• Understand the concept of isolation
• Understand hardening concepts such as:
  • MAC-based
  • patching
  • port blocking
  • Group policy
  • ACLs
  • sinkholes
  • NAC-based
  • jump box/server
  • endpoint security
• Understand penetration testing rules of engagement
• Understand basics of reverse engineering
• Understand basics and concepts of vulnerability management
• Understand basics and concepts of threat hunting
• Understand threat classification:
  • zero day
  • known vs unknown
  • APT
• Understand basics and concepts of forensics and how to perform memory and hard drive forensics
• Understand audiences:
  • stakeholders
  • HR
  • legal
  • compliance
  • management
• Understand communication and how it varies depending on audience
• Understand common tools such as:
  • virustotal
  • joesandbox
  • any.run
  • urlvoid
  • urlscan
  • whois
• Understand the concept of runbooks
• Understand the concept of defense in depth
• Understand common exploit frameworks
• Understand common hacking tools

Cloud skills and knowledge

• Understand cloud services:
  • SaaS
  • PaaS
  • IaaS
• Understand cloud models:
  • private
  • public
  • hybrid
• Understand common cloud environments:
  • AWS
  • GCP
  • Azure
• Understand concepts of security in the cloud
• Understand the basics and general flow of deploying in the cloud
• Understand the differences between cloud and on-prem
• Understand common cloud storage:
  • Dropbox
  • Box
  • OneDrive
  • S3
  • iCloud
  • Google Drive
• Understand the concept of infrastructure as code
• Understand the concept of serverless
• Understand the concept of CDN

[Optional] Programming skills and knowledge

Python

Bash

Powershell

Go

JavaScript

C++

[perezthedev]

A great list so far, completely agree a cybersecurity roadmap would be beneficial for the community. Something I would consider important for the security roadmap would be:

• Understand and support business continuity planning (BCP) and disaster recovery planning (DRP)

[kamranahmedse]

Thank you @AlbusNoir that's really helpful -- we will draft it in the visual format soon.

Could you please help with the following points?

Understanding hardware components and how they work together in a computer

Could you please list some of the important components, and maybe mention a resource that could be put in the roadmap?

Understand basic OS-independent troubleshooting steps and terms

Could you list down some of the items or sub-nodes (what are those steps and terms) for this point? Any resource that could be added to the roadmap is going to be really helpful.

Understand basic configuration and function of popular suites Any links/resources we could add here?

Also, do you think we could add certifications or CTFs added to the roadmap?

Once again, thank you @AlbusNoir for the contribution.

[AlbusNoir]

For sure

Understanding hardware components and how they work together

Important components: CPU, RAM, Harddrives (the different types and differences: HDD, SSD, NvME), GPU are the most important. Optional would be Motherboard(the types and differences: ITX, mATX, ATX, E-ATX), PSU.
Resources: Parts and functions Motherboard Types

Understand basic OS-independent troubleshooting steps and terms

Basic steps: determining the issue, searching for solutions, check connections, look for updates, reboot, run AV scan
Terms: router, modem, various cable types(network cable, display cable, USB cable) Resources: Basic tshooting Basic tshooting2

Understand basic configuration and function of popular suites

iCloud
Google Suite
Microsoft Office Suite

As for certifications, those could be done at the various stages. So something like:
Fundamental Skills: CompTIA ITF+, CompTIA A+, Google IT Support Certificate, ITL 4 Foundation, Microsoft 365 Fundamentals, Microsoft Technology Associate, CompTIA Linux+, Apple Certified Support Specialist

Network Skills: CompTIA Network+, Cisco CCNA, VMWare Certified Technical Associate

Security Skills: CompTIA Security+, CompTIA CySA+, Cisco CyberOps Associate, GIAC GSEC, ISC² SSCP, GIAC GCIH, GIAC GSOC
Additional optional ones for a pentesting route: CompTIA PenTest+, OSCP, EC-Council CEH, TCM PNPT, eLearnSecurity eJPT

Cloud Skills: AWS Certified Cloud Practitioner, Microsoft Azure Fundamentals, Google Cloud Digital Leader, AWS Certified Solutions Architect associate, Microsoft Azure Security Engineer Associate, Google Cloud Engineer Associate, AWS Security Specialization, CompTIA Cloud+, GIAC GCLD

CTFs are always something I believe anyone interested in cyber, especially typical routes like Blue, Red, and Purple Team, should look into. Best ones I know of are HackTheBox, TryHackMe, VulnHub, picoCTF, there's also the SANS Holiday Hack Challenge/KringleCon that's usually around the end of the year

Hopefully this is what you were looking for :)

[ank5-d]

Sir I want to guidance from information technology

[jreisinger]

Might be helpful: https://danielmiessler.com/blog/build-successful-infosec-career/

[kamranahmedse]

Cybersecurity roadmap is now live. Once again thank you @AlbusNoir for the contribution. Let me know if you have any feedback! 🙏