Enhanced project with new sections and updated resources#55
Enhanced project with new sections and updated resources#55morningstarxcdcode wants to merge 1 commit into
Conversation
brootware
left a comment
brootware
left a comment
There was a problem hiding this comment.
Please see my feedback for reviews
|
|
||
| * [Introduction to Purple Teaming](<https://tryhackme.com/room/introductiontopurpleteaming>) - Learn the fundamentals of purple teaming. | ||
| * [Threat-Informed Defense](<https://academy.attackiq.com/courses/threat-informed-defense>) - A free course on threat-informed defense from AttackIQ Academy. | ||
| * [MITRE ATT&CK for Defenders](<https://attack.mitre.org/>) - Understanding the ATT&CK framework from a defender's perspective. |
There was a problem hiding this comment.
As much as we can, we'd like to minimize this kind of "just a documentation" kind of links. While "reading the docs" is good, the main purpose of this list is for folks to have a learn by doing "lab environment" and not just passively "read".
|
|
||
| * [Atomic Red Team](<https://github.com/redcanaryco/atomic-red-team>) - A library of simple tests that every security team can use to test their controls. | ||
| * [Caldera](<https://github.com/mitre/caldera>) - An automated adversary emulation system. | ||
| * [Sigma](<https://github.com/SigmaHQ/sigma>) - Generic signatures for SIEM systems. |
There was a problem hiding this comment.
Similar feedback as given on these 3 links.
| ### Level 3 - iOS Security | ||
|
|
||
| * [iOS Security for Beginners](<https://www.hacker101.com/videos/ios-basics>) - A free course from Hacker101. | ||
| * [Damn Vulnerable iOS App (DVIA)](<https://github.com/prateek147/DVIA-v2>) - A vulnerable iOS application. |
There was a problem hiding this comment.
As for this kind of DVIA links (cloudgoat,sadcloud,gcpgoat), we'd like to keep it as minimal local installation (or any kind of cloud subscriptions) needed for folks with limited spending power for self learning. Best kind of resource is something that also provides a sandbox environment/CTF style learning to give everyone an equal opportunity. Please consider these for review. Much appreicated!
|
|
||
| ### Level 3 - Hands-On Cloud Security | ||
|
|
||
| * [CloudGoat](<https://github.com/RhinoSecurityLabs/cloudgoat>) - Rhino Security Labs' "Vulnerable by Design" AWS deployment tool. |
2 participants
just added several and new curated learning paths and resources to the
README.md, focusing on Purple Teaming, Cloud Security, and Mobile Security. These additions provide structured, free educational materials for beginners and intermediate learners in these areas.New learning paths and resources also with link :
Purple Team Path:
Cloud Security:
Mobile Security: