Do all the things like ++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatarSign Up
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple APILearn More
SortOfTested24912244dDo you want to be a pen tester/security analyst or do you want to do security research?
linuxxx153708244d@CamelCase001 It's mostly about the mindset, I'd say.
I've had a cybersecurity/privacy (they often go hand in hand) mindset since about 10 years ago.
With every device I see, every project I do (and so on) it's always about security and privacy for me.
And this is how I got hired as a junior cyber security engineer! I have zero certifications but loads of technical/security knowledge.
Feel free to ask me questions!
kiki17527244dThere are cybersecurity courses from Maryland on coursera or edx, but they are fine just to get you to know the area.
But becoming the real cs guy takes much more. You basically should become a great developer, but instead of learning patterns and architecture you should turn on to a different road and learn the quirks.
On top of that, C and some asm, network protocols, SQL and other dbms syntaxes, js and web standards are necessary.
Oktokolo2347244dAs a security analyst you need to like breaking things and be creative about ways to do that.
A security mindset alone isn't enough.
But if you only have the latter, jojn the defense. Every exploitable flaw that isn't created, doesn't need to be found and fixed.
blockchaintacos19D: “Did the attackers exfiltrate any data?” M: “I can’t say for sure, but most likely based on—” ...
gosubinit10Protecting credentials from eavesdropping using HTTP Basic Authorization header:
suprano18You think a junior dev pushing his code onto a production server is bad? Wait till you have that admin who is ...