Getting Started in Computer Security

The main motivation of this post is that it seems more and more frequent (if not more frequent if too frequent) to find people who ask about starting in the world of hacking.
Speaking for the group of whasapp, we commented that there is a whole series of knowledge that we consider necessary to start with computer security. For reasons that do not come to mind, I prefer to call it computer security. XD

The intention of the post is not to explain systems, services or networks, if not simply enumerate this knowledge and maybe if you see it necessary to make some hyperlink to some explanation. The idea is that the post is expanding with things that you consider necessary.

Systems:
– Administration of users and groups
– Package Systems in GNU / Linux
– Registry
– File systems
– Active Directory / LDAP
– Domains
– Motorization of the system
– Using Logs
– Processes and priorities
– BASH and POWERSHELL


Networks:
– Types of networks and topologies
– OSI Model
– Ethernet
– IPv4 Addressing, Subnneting, CIDR, IPv6 VLMs
– TCP, UDP, ICMP, ARP
– Collision and broadcast domains
– ACLs
– VLANs
– Routing, RIP, OSPF, BGP, EIGRP
– Types of NAT
– VPN, SSL, IPSec
– Firewalls
– 802.11

Databases:
– Principles of the entity-relationship model, normalization
– Creation and modification of databases.
– Consultations
– SQL – PL / SQL
– Logs

Services:
– Client-Server Model
– HTTP, HTTPS
– DNS
– FTP
– Telnet
– SSH
– SCP
– X11
– POP3

and the rest of the protocols 😀
Programming:
– Fundamentals of Algorithm
– Some scripting language, to the taste of the consumer.
– C #, C ++, JAVA or some other language.
– Pointers, memory management
– Using Debuggers
– For web themes, HTML, CSS, Javascript, PHP …

It is necessary to understand that many of these subjects are transversal to the computer security to “deepen” in its knowledge. It is not the same to know SSH, than to know how to use it and to fortify it.
Any contribution of knowledge that you consider important I add. Some may not consider many of these important things to use many tools. And he’s right. But the goal when studying computer security should not be to know how to use tools, it should be to understand them. It is of no use knowing how to use Zenmap / Nmap if we do not know that it is an ACK.

PS I’m sure I forget to include many things … xD

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s