In my Nashville BSides 2022 talk, I shared some resources and ideas for sample projects. The domain specific examples are listed below. These links are all live as of April 2022. I hope this inspires you and helps you get some practical experience that you can reference as you start your new career and/or use this as a base to dig deeper.

Thanks,

-Justin

Online PGP Demo

This website allows you to create and exchange public/private keys to quickly demonstrate how PGP and similar encrypted communications work. This is a practical application as opposed to getting into the math behind it.

• https://smartninja-pgp.appspot.com

RSA Calculator

A quick place to do simple examples of math behind the RSA algorithm. You can use (relatively) small numbers for P and Q.

• https://www.cs.drexel.edu/~jpopyack/Courses/CSP/Fa17/notes/10.1_Cryptography/RSAWorksheetv4e.html

Simple Port Scanners Python, Bash, Windows command prompt

• https://www.geeksforgeeks.org/port-scanner-using-python/?ref=lbp
• https://www.rubyguides.com/2012/02/cli-ninja-ping-sweep/

Being able to read code and make reasonable inferences into what it is doing is a useful skill. These simple port scanning programs and one-liners are a good start in understanding scripting. Its also important to note that you can do this yourself! For simple tasks you don’t need special tools.

Pivot Project (General InfoSec)

• https://pivotproject.org - Student/Beginner Focused Cyber Security challenges. Gives you some real skills such as learning to use grep, getting started on the *nix command line, some forensic challenges.

Endpoint/Forensics

• 13Cubed’s Forensics Youtube Channel https://www.youtube.com/watch?v=VYROU-ZwZX8 - An excellent youtube channel for learning about forensics (on disk and memory). I would start with this Youtube channel and move onto some of the resources below.

• Memory Analysis / Malware Writeups (https://medium.com/@zemelusa/first-steps-to-volatile-memory-analysis-dcbd4d2d56a1)

• Memory Images from Volatility https://github.com/volatilityfoundation/volatility/wiki/Memory-Samples

Coding/Scripting

• Automate the Boring Stuff with Python (Free/Digital under CC License) https://automatetheboringstuff.com

This is a really quick hands on style of book. It is not a reference or full Python manual. It gets you up to speed quickly and the sections dealing with REST and Web APIs are extremely valuable!