Security Training
Explore 18 curated tools and resources
LATEST ADDITIONS
A security awareness platform that combines phishing simulations with employee training to reduce organizational risk from email-based attacks.
A list of vulnerable applications for testing and learning
Deliberately vulnerable web application for security professionals to practice attack techniques.
IT certification training for CompTIA exams with free resources.
The best security training environment for Developers and AppSec Professionals.
echoCTF is a computer security framework for running cybersecurity exercises and competitions like Capture the Flag, used for network penetration testing and security auditing.
A wargame composed of 27 levels, with files needed in /vortex/ directory.
GRFICS is a graphical realism framework for industrial control simulations using Unity 3D game engine graphics to enhance ICS security training.
A series of vulnerable virtual machine images with documentation to teach Linux, Apache, PHP, MySQL security.
An open-source phishing toolkit for businesses and penetration testers.
Free training sessions on Reverse Engineering, Malware Analysis, and Exploit Development.
King Phisher is a phishing campaign toolkit for testing and promoting user awareness through simulated attacks.
CloudGoat is a 'Vulnerable by Design' AWS deployment tool for honing cloud cybersecurity skills through 'capture-the-flag' style scenarios.
A wargaming network for penetration testers to practice their skills in a realistic environment.
A platform for creating and managing fake phishing campaigns to raise awareness and train users to identify suspicious emails.
SANS Institute provides cyber security training, certifications, and degrees to empower cyber security practitioners and teams.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Free
Resources
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
Commercial
Data Protection
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Commercial
Security Operations
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Commercial
Application Security
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Commercial
IAM
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security