SKILL: Security and Cyber Concepts (Apprentice Developer)

[PRE-REQUISITES]

• Networking - HTTP/HTTPS and Web Server (Apprentice Developer)

[TOPICS]

• Auth.n and Auth.z
  • 2-Factor Authentication - A, B, C
  • SSO (OAuth v.1 and 2. / SAML)
  • Identity and Access Management
• Basics of Encryption
  • what is PGP (architecture and usages)
  • what is PKI / RSA
  • how to use Bouncy Castle
  • encoding vs encryption (e.g. base-64)
  • SSL and HTTPS
  • Hashing and Salting (MD5, SHA-1, SHA-256 etc.)
• Cyber Security
  • XSS
  • Cross-site request forgery
  • SQL-Injection
  • OWASP Top Ten of Web Vulnerabilities
  • Good practices (don’t leak infrastructure info, IPs, stack-traces, etc.)

[RESOURCES]

• https://www.troyhunt.com/ - covers …
• https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project

[BADGES]

*

[EXPERIENCE SUGGESTIONS]

*

[ADVENTURER NOTES]

• https://twitter.com/SwiftOnSecurity
• https://cybermap.kaspersky.com/

[THE CAIRN]