Become a cyber security expert




Cyber-security work is *creative* work.  Though much of it is done by rote (the same old vulnerability scans, the same old firewall configurations, etc.), the real intellectual "jewels" are finding the application-coding flaw the designer didn't think of (buffer-overflow, off-by-one error, fuzzing), or using existing communication channels in previously-unexpected ways (making outbound DNS queries which happen to look like 16-digit credit card numbers, using patterns of ICMP ping-traffic as Morse Code, etc.).

So:  you need to familiarize yourself with the tricks of the trade.  I would grab a couple of O'Reilly books (PGP Encryption, RADIUS, Security Warrior, SSH are good choices).  If those are too difficult for a first read, fall back to Wikipedia or Hacking for Dummies.  (Yes, I have a copy on my Drive.)  If you are comfortable with three or four of the references above, move on to anything by Bruce Schneier, or try watching/listening to Marcus Ranum lectures.  This is the time when you will start to drown in Microsoft-Sucks or Such-and-Such-Vendor-Sucks chatter.  I have little patience for this myself.  Refrain if you can.

Since reading by itself can be boring, download some free security tools -- NMAP, Nessus, Microsoft Baseline Security Analyzer, NetStumbler, Kismet, WireShark -- and run them (on your own/approved systems only), and read through their outputs until you can understand 60% of the content.  If you are familiar with two or more programming languages, download OWASP LAPSE+ (a code security scanner), and try running it on some of your source-code, and see if the results make any sense to you.  If you are familiar with HTTP/CGI request syntax, download Burp Proxy or Zed Attack Proxy (or Achilles, or Paros) and experiment with "freezing" a Web request in mid-flight, then illicitly modifying its contents, before letting it fly to its intended server destination.  On behalf of all security professionals, I want to impress upon you that scanning/probing other people's computer systems w/o permission could get you reprimanded, suspended, or criminally prosecuted.  It's not difficult to set up a VirtualBox environment if you want practice-targets.

If you are starting to gain comfort with the mechanics of "computer networking" and "computer configuration" (no one expects you to master this within a single year, or even a single decade), move on to specific exploit scenarios.  Read up on how the SSH off-by-one vulnerability worked, and during what years/versions it was vulnerable.  Do research into the Teardrop Attack and/or Ping of Death exploits.  Learn and memorize what a "shopping cart attack" is, and why it's bad, and how to protect against it.  (This was a common interview question in the 2000s.)  

Once you have a flavor for those real-world attack scenarios, dig into the modern-day stuff:  HeartBleed, ShellShock, Poodle.  Start thinking about which of those three is 'worst,' and how you might determine whether vulnerable systems might still exist on the Internet, and -- most importantly -- if your system was once vulnerable to these attacks, but has since been fixed/patched, can it truly be trusted now?  (What could have happened to it during that earlier unpatched timeframe?)

Though the self-driven learning activities above will give you practical familiarity and command of buzzword parlance, they are not a substitute for formal classical computer-science and/or computer-engineering education.  Grasping and comprehending such academic topics as the shell-interpreter, the ready-run-zombie process model, and/or the global (variable) environmental model are *crucial* to that look-at-things-in-a-new-way 'creative' approach I discuss(ed) above.

Best of luck to you during this process.  Keep in mind it's possible to be 'good enough' without being 'the best' -- you will be awe-struck by some of the prominent luminaries in this field.  Except for that Vendor-Sucks thing.

Comments

Post a Comment

Popular posts from this blog

How to become a hacker

Image
Nowadays, every other college or school student wants to be a hacker. Due to media hype, the term hacker is considered both cool and criminal at the same time. Now, since my blog is basically about my journey into hacking, I receive many emails on how to become a hacker. "I'm a beginner in hacking, how should I start?" or "I want to be able to hack my friend's Facebook account" are some of the more frequent queries. In this article I will attempt to answer these and more. I will give detailed technical instructions on how to get started as a beginner and how to evolve as you gain more knowledge and expertise in the domain. Hacking is a skill. And you must remember that if you want to learn hacking solely for the fun of hacking into your friend's Facebook account or email, things will not work out for you. You should decide to learn hacking because of your fascination for technology and your desire to be an expert in computer systems. "Being a ...
Read more

Becoming an I.T. Professional

Image
As an I.T. professional with over 8 years of experience in the field, I sometimes get asked the question, “How’d  YOU  get started in I.T?”  I figured that the answers that I give could become a good article on breaking into the field, so I thought I would suggest 8 things that I did in order to increase my knowledge and my skill set to become a Systems Engineer in the Information Technology field.  I tried to make them general enough so that it encompasses more than just network and systems engineering.  Enjoy!!! 1. Hang with the geeks. By this, I mean seek out others who are also interested and passionate about I.T.  Don’t be afraid to engage with others just because they may seem “geeky.”  The term “geek” is overstated nowadays anyhow. We are not the pocket protector wearing, high water pants, never interacting with members of the opposite sex people that we are portrayed as being in movies.  There are “geeks” everywhere. Y...
Read more

How to become a Network Engineer

Image
How to become a Network Engineer Network engineers make and maintain network systems that all employees of the organization will use. This role involves many tasks and responsibilities that can vary, depending on the specific organization. Roles and Responsibilities? As a network engineer, you will likely be required to: Administer and maintain computer networks and related computer areas such as hardware, systems software, applications software, and configurations. Protect the security of hardware, software, and data by establishing, coordinating, and implementing network security procedures. Perform data backups and disaster recovery operations when necessary. Order and replace defective or outdated hardware components when necessary. Monitor system performance in order to determine when adjustments are necessary. Troubleshoot any software, hardware, or other system or network issues in order to diagnose and resolve the problem. Configure, maintain, and monitor ...
Read more