cyber security courses

see also:

• information technology main index
• artificial intelligence courses

• understanding cybersecurity principles and how people can hack you, your company's databases or steal identities is increasingly critical and becoming much more difficult with the advent of AI fakes

• see https://lowe.github.io/tryzxcvbn/ for examples of passwords and how long it takes to hack them
  • see https://github.com/dropbox/zxcvbn for software on estimating the strength of a password
• Youtube - great tutorial on how encryption works and how quantum computers may break RSA

• the process of collecting, analyzing, and synthesizing information that is publicly available and legally accessible from various open sources to produce actionable intelligence
• sources include internet search engines, social media, news articles, government reports, academic publications, public records, etc
• OSINT is used to assess threats, make informed decisions, or answer specific intelligence questions in fields such as cybersecurity, national security, law enforcement, business intelligence or ascertain if a person or business is an AI fake
• basic OSINT:
  • Google like searches - simple Google search; more advanced searches such as https://yandex.com
    • FastPeopleSearch.com, TruePeopleSearch, radaris, intelius, etc
    • Sync.me
    • wigle.net finds Wifi names at locations (hint: don't name your WiFi after a personal identifying feature)
    • spydialer.com
    • Google maps street view to check valid addresses - is there a actually a house or business there? then check govt sites to check who owns it, what are the vehicle licence plates?
    • create mind maps of searches on apps like Obsidian
    • who.is or whoxy for owners of domains
  • check if your identity has been used: https://whatsmyname.me/
  • https://haveibeenpwned.com - to check if your email is in a data breach - but can be used to find what websites that email has been used on and what data was breached .. and then if someone has the actual data breach, then they can use tools such as rip grep (rg) to actually get the breached data
  • search for faces
  • what important events are happening globally such as missile launches, major cyber attacks, etc https://liveuamap.com - requires subscription for specific regions
  • what are the main global infrastructure networks https://openinframap.org/#2/26/12
  • find Youtube video uploads for a specific area https://mattw.io/youtube-geofind/location
  • image reverse searches
  • geoINT - where was a photo taken? time of day based on shadows?
• advanced OSINT
  • xeuledoc (cmd line tool) to check online documents
  • holehe - checks email accounts
  • maigret - checks user name use
  • ignorant looks up phone numbers on websites
  • toutatis - looks up instagram account details such as an obfuscated email or possibly phone number of the owner
  • Google tag ID lookups for websites via webtechsurvey.com
  • web.archive.org for old versions of websites
  • licence plate lookup to get VIN then you can search for VIN which may give ownership
  • caido allows repeated automated input of range of values into a website - if it allows repeated attempts and doesn't use Capcha or similar validation
    • this could also be used for hotel WiFi login pages to find which room a person is in if you know their name as a succesful log in will result based on correct name and room number

• AIICT certified cybersecurity professional - 6 months online but is not accredited under the Australian Qualifications Framework