Items marked with an asterisk (*) contain an adaptive assessment.
Note: You can download an Excel file of this catalog at the bottom of this page, which contains additional details regarding the career paths and allows you to sort and filter them.
| Title | Description | Difficulty |
| Advanced Threat Hunting and Digital Forensics | This pathway covers advanced topics for detecting and recovering from cyberattacks. Threat hunting is a critical skill in large enterprises, and when coupled with digital forensics, teams can learn to stop advanced attacks and how to recover from them. Topics include many of those in FOR508 and FOR500. | Expert |
| AWS Cloud Engineer | This career path is aimed at professionals looking to delve into the design, deployment, and management of infrastructure and applications on the Amazon Web Services platform. It offers a blend of theoretical and practical skills necessary for optimizing AWS services to meet organizational needs and drive cloud innovation. | Intermediate |
| AWS Cloud Security Specialist | This career path is aimed at professionals seeking to specialize in the security aspect of Amazon Web Services (AWS) cloud infrastructure. It encompasses learning how to protect data, manage identity access, monitor and audit AWS environments, and understand the complexities of AWS security best practices and policies. | Expert |
| AWS Incident Response Specialist | This career path is aimed at professionals who are dedicated to mastering the skills necessary for identifying, analyzing, and responding to security incidents in AWS environments. It equips individuals with the comprehensive knowledge needed to effectively manage and mitigate threats, ensuring the integrity and security of cloud-based assets. | Intermediate |
| Beginner Penetration Tester: Infrastructure Core | This career pathway covers the core learning material to improve infrastructure penetration testing capabilities. In it, you'll be looking at labs covering service exploitation, credential access, Linux privilege escalation and Metasploit basics. | Beginner |
| Beginner Penetration Tester: Prerequisites | This career pathway covers the prerequisites required for Beginner Penetration Tester. In it, you'll look at the basics of the Linux operating system, Penetration testing theory and Scanning. | Beginner |
| Beginner Penetration Tester: Web Application Core | This career pathway covers the core learning material to improve infrastructure penetration testing capabilities. In it, you'll be looking at labs covering basic web application vulnerabilities, cross-site scripting, SQL Injection, and server-side template injection. | Beginner |
| Cloud Security Architect | This career path is aimed at IT professionals specializing in designing and implementing comprehensive security frameworks for cloud-based systems. | Beginner |
| Cloud Security Engineer | This career path is aimed at IT professionals who are dedicated to designing, implementing, and managing secure cloud infrastructure across various cloud services platforms such as AWS, Google Cloud Platform (GCP), and Microsoft Azure. | Beginner |
| Cloud Security Engineer | This career path is aimed at IT professionals who are dedicated to designing, implementing, and managing secure cloud infrastructure across various cloud services platforms such as AWS, Google Cloud Platform (GCP), and Microsoft Azure. This career path provides an Immersive Certification. | Intermediate |
| Cyber Fundamentals | This role is for anyone who is new to cybersecurity or has recently started their cybersecurity career. It will ensure you have the basics you need to succeed. | Beginner |
| Digital Forensics Analyst | This role is aimed at those who work as a Digital Forensics Analyst. It also supports anyone who performs digital forensics as part of their main role, such as working in a SOC team or in crime prevention. | Intermediate |
| Incident Responder – Advanced | This role is for those comfortable with incident response and responders looking to advance their skills. It will expose you to scenarios and technologies often observed or required during an engagement. | Expert |
| Incident Responder – Beginner | This role is aimed at those new to the incident response (IR) team and novice incident responders. It also supports anyone who performs IR actions or is involved in the IR playbook in their main role, such as working in a SOC team. | Beginner |
| Incident Responder – Intermediate | This role is for those already familiar with incident response (IR) and incident responders looking to develop their skills. It also supports anyone who performs IR actions or is involved in the IR playbook in their main role, such as working in a SOC team. | Intermediate |
| Incident Response and Attacker Techniques | This pathway covers various offensive and defensive topics useful for incident responders. It looks at attacker tools and techniques and how they apply to incident response. It explores how malicious actors hack and how to defend against those attacks. Topics include many of those in SEC504. | Expert |
| Incident Response and Digital Forensics | This pathway covers the essentials for incident responders and digital forensics analysts. It covers encryption, vulnerability management, and digital forensics concepts and tools. Topics include many of those in FOR572. | Intermediate |
| Infrastructure Pen Tester – Advanced* | This career path is aimed at professionals with significant experience in infrastructure penetration testing or Red Teaming, and seasoned ethical hackers seeking to master their craft. It delves into advanced techniques and strategies aligned with the latest in real-world threat modeling, offering in-depth training for experts looking to refine their expertise and lead in the cybersecurity domain. | Expert |
| Infrastructure Pen Tester – Beginner* | This role is aimed at those new to infrastructure penetration testing or Red Teaming and novice ethical hackers. It will also support anyone who is looking to develop basic pen testing skills. | Beginner |
| Infrastructure Pen Tester – Intermediate* | This role is aimed at those already familiar with infrastructure penetration testing or Red Teaming and ethical hackers. It aligns with MITRE ATT&CK tactics and will support anyone looking to develop their existing skills. | Intermediate |
| Infrastructure Penetration Testing | This pathway is aimed at those interested in infrastructure penetration testing. It supports ethical hackers and anyone looking to develop their skills or improve their infrastructure pen testing tools and techniques – such as reconnaissance, privilege escalation, and Metasploit. Topics include many of those in SEC560. | Intermediate |
| Intermediate Penetration Tester: Infrastructure Core | This career pathway contains all the Infrastructure collections for the Intermediate Penetration Tester program. | Intermediate |
| Intermediate Penetration Tester: Learning Consolidation | This career pathway aims to test the skills learned in this program and prepare you for the next one. | Intermediate |
| Intermediate Penetration Tester: Web Application Core | This career pathway contains all the Web collections for the Intermediate Penetration Tester program. | Intermediate |
| Introduction to Digital Forensics | This pathway introduces topics that junior digital forensics analysts and incident responders will encounter, from the digital process and ethics to security and incident response fundamentals. Topics include many of those in FOR308. | Beginner |
| IT Ops: System Administrator Core | This career pathway covers the core knowledge required for IT Operations: System Administrator. In it, you'll delve into networking fundamentals, Active Directory management, and key Windows concepts. You'll also explore ISO 27001 for security compliance and gain hands-on experience with cloud platforms like AWS and Microsoft Azure. This pathway aligns with the skills needed to manage larger IT systems, troubleshoot advanced issues, and implement scalable solutions, preparing participants for mid-level system administration roles and more efficient management of IT infrastructures. | Intermediate |
| IT Ops: System Administrator Prerequisites | This career pathway covers the prerequisites for IT Operations: System Administrator. In it, you'll explore foundational topics such as device and physical security, networking basics, secure online practices, and cloud fundamentals. You'll also gain introductory knowledge of Windows and Linux operating systems, PowerShell, and essential IT concepts. The career path aligns with the foundational skills needed for effective IT support and system administration, preparing participants for more advanced IT operations roles. | Beginner |
| Malware Analyst – Beginner | This role is aimed at those new to malware analysis and reverse engineering, as well as novice reverse engineers. It's for anyone who needs a basic understanding of computer architecture or assembly language as part of their job role or function. It also supports anyone who performs malware analysis as part of their main role, such as working in a SOC team or in incident response. | Beginner |
| Malware Analyst – Intermediate | This role is aimed at those already familiar with malware analysis and reverse engineering, as well as reverse engineers looking to develop their skills. It is suitable for anyone who needs to delve into malware analysis using malware code seen in the wild or used in attacks. It also supports anyone who performs in-depth malware analysis as part of their main role, such as working in a SOC team or incident response role. | Intermediate |
| Management, Risk, and Compliance | This role is for anyone who deals with risk and compliance in cybersecurity. | Beginner |
| Microsoft Sentinel Specialist | This career path is aimed at professionals seeking to specialize in implementing, configuring, and managing Microsoft Sentinel, Microsoft's cloud-native SIEM (Security Information and Event Management) solution on Azure. It prepares individuals to harness Sentinel's capabilities for detecting, investigating, and responding to cybersecurity threats across an organization's digital estate. | Intermediate |
| Network Threat Detection | This pathway covers the skills needed to protect a network from threats, such as networking, threat detection, and forensics. It’s aimed at those working in monitoring, the SOC, incident response, and threat hunting. Topics include many of those in SEC503. | Intermediate |
| Offensive Security Professional | The Offensive Security Professional pathway is aimed at ethical hackers looking to gain a broad understanding of infrastructure and web application penetration testing, including enumeration, exploitation, and escalating privileges during a commercial assessment. Completing this pathway demonstrates an understanding of the fundamental skills required to be a pen tester. | Intermediate |
| OT/ICS For Incident Responders | This introductory Career Path is designed for IT professionals in SOC analyst or Incident Response roles who are tasked with protecting and responding to incidents in Operational Technology OT and Industrial Control System ICS environments. The labs in these collections will provide a fundamental understanding of the unique challenges and best practices associated with incident response in these critical infrastructure environments. Through a combination of theory, hands-on exercises, and real-world scenarios, users will gain the knowledge skills and judgement needed to effectively detect, respond to, and mitigate cybersecurity incidents in OT and ICS environments. This career path provides an Immersive Certification. | Expert |
| OT/ICS For Incident Responders | This introductory Career Path is designed for IT professionals in SOC analyst or Incident Response roles who are tasked with protecting and responding to incidents in Operational Technology OT and Industrial Control System ICS environments. The labs in these collections will provide a fundamental understanding of the unique challenges and best practices associated with incident response in these critical infrastructure environments. Through a combination of theory, hands-on exercises, and real-world scenarios, users will gain the knowledge skills and judgement needed to effectively detect, respond to, and mitigate cybersecurity incidents in OT and ICS environments. | Intermediate |
| Penetration Tester – Advanced * | This path is for seasoned testers, already comfortable with standard penetration testing, who are looking to master a true adversarial mindset. It will expose you to labs to practice skills learned in the other Penetration Tester career paths. To get started on this career path, you'll need to complete the Offensive Security assessment. This career path provides an Immersive Certification. | Expert |
| Range Exercise Prep: APT43 | This path contains collections of preparation labs for the APT43 exercise. | Intermediate |
| Range Exercise Prep: Artica Defensive | This path contains collections of preparation labs for the Artica Defensive exercise. | Intermediate |
| Range Exercise Prep: Artica Offensive | This path contains collections of preparation labs for the Artica Offensive Team Sim exercise. | Expert |
| Range Exercise Prep: Blossom | This path contains collections of preparation labs for the Blossom exercise. | Intermediate |
| Range Exercise Prep: Boot2Root | This path contains collections of preparation labs for the Boot2Root Offensive exercise. | Intermediate |
| Range Exercise Prep: Earth Lusca | This path contains collections of preparation labs for the Earth Lusca exercise. | Intermediate |
| Range Exercise Prep: Kween Defensive | This path contains collections of preparation labs for the Kween Defensive exercise. | Intermediate |
| Range Exercise Prep: Kween Offensive | These are the Preparatory Labs for the Kween Offensive exercise. | Intermediate |
| Range Exercise Prep: Oilrig | This path contains collections of preparation labs for the Oilrig exercise. | Intermediate |
| Range Exercise Prep: Op. Akela | This path contains collections of preparation labs for the Operation Akela exercise. | Intermediate |
| Range Exercise Prep: Op. Bastion | This path contains collections of preparation labs for the Operation Bastion exercise. | Intermediate |
| Range Exercise Prep: Op. Chimera | This path contains collections of preparation labs for the Operation Chimera exercise. | Intermediate |
| Range Exercise Prep: Op. Kaiju | This path contains collections of preparation labs for the Operation Kaiju exercise. | Intermediate |
| Range Exercise Prep: Op. Kobold | This path contains collections of preparation labs for the Operational Kobold exercise. | Intermediate |
| Range Exercise Prep: Op. Lycan | This path contains collections of preparation labs for the Operation Lycan exercise. | Intermediate |
| Range Exercise Prep: Op. Palisade | This path contains collections of preparation labs for Operation Palisade. Labs in this collection will provide you with an opportunity to become familiar with tooling or concepts used in the exercise. This is a non-exhaustive list of condensed collections. For further upskilling, the full collection names can be found in the collection description. | Intermediate |
| Range Exercise Prep: Op. Sunder | This path contains collections of preparation labs for the Operation Sunder exercise. | Intermediate |
| Range Exercise Prep: Op. Typhon | This path contains collections of preparation labs for the Operation Typhon exercise. | Intermediate |
| Range Exercise Prep: Op. Vulpes | This path contains collections of preparation labs for the Operation Vulpes exercise. | Expert |
| Range Exercise Prep: Qing Defensive | This path contains collections of preparation labs for the Qing Defensive exercise. | Intermediate |
| Range Exercise Prep: The Heist | This path contains collections of preparation labs for the Heist exercise. | Expert |
| Reverse Engineering and Malware Analysis | This pathway covers all the topics required to build in-depth knowledge of reverse engineering and malware analysis. The highly technical skills needed for reverse engineering include assembly language, exploitation development, and using tools like Ghidra. Topics include many of those in FOR610. | Expert |
| Secure .NET MVC Developer – Beginner | This role is aimed at those new to secure coding and novice .NET Developers. It will also support anyone wishing to build their knowledge and skills in securing .NET vulnerabilities, including the OWASP Top 10. | Beginner |
| Secure C++ Developer – Beginner | This role is aimed at those new to secure coding and novice C/C++ developers. It will also support anyone using C/C++ to build their knowledge and skills in securing C/C++ vulnerabilities. | Beginner |
| Secure Go Developer – Beginner | This role is aimed at those new to secure coding and novice Go developers. It will also support anyone using Go to build their knowledge and skills in securing Go vulnerabilities, including the OWASP Top 10. | Beginner |
| Secure Java Developer – Beginner* | This role is aimed at those new to secure coding and novice Java developers. It will also support anyone wishing to build their knowledge and skills in securing Java vulnerabilities, including the OWASP Top 10. | Beginner |
| Secure Java Developer – Intermediate* | This role is for users who have experience with Java but are looking to take their skills to the next level. These labs support developers to harden their applications and adopt a defense-in-depth approach to security. | Intermediate |
| Secure Node.js Developer – Beginner | This role is aimed at those new to secure coding and novice Node.js developers. It will also support anyone using Node.js to build their knowledge and skills in securing Node.js vulnerabilities, including the OWASP Top 10. | Beginner |
| Secure Node.js Developer – Intermediate | This role is for users who have experience with Node.js but are looking to take their skills to the next level. These labs support developers to harden their applications and adopt a defense-in-depth approach to security. | Intermediate |
| Secure PHP Developer – Beginner | This role is aimed at those new to secure coding and novice PHP developers. It will also support anyone wishing to build their knowledge and skills in securing PHP vulnerabilities, including the OWASP Top 10. | Beginner |
| Secure Python Developer – Beginner | This role is aimed at those new to secure coding and novice Python developers. It will also support anyone using Python to build their knowledge and skills in securing Python vulnerabilities, including the OWASP Top 10. | Beginner |
| Secure Python Developer – Intermediate | This role is for users who have experience with Python but are looking to take their skills to the next level. These labs support developers to harden their applications and adopt a defense-in-depth approach to security. | Intermediate |
| Secure Ruby Developer – Beginner | This role is aimed at those new to secure coding and novice Ruby developers. It will also support anyone wishing to build their knowledge and skills in securing Ruby vulnerabilities, including the OWASP Top 10. | Beginner |
| Secure Spring Developer – Beginner | This role is aimed at those new to secure coding and novice Spring developers. It will also support anyone using Spring to build their knowledge and skills in securing Spring vulnerabilities, including the OWASP Top 10. | Beginner |
| Security Engineer | This career path is aimed at professionals looking to establish a foundational base in cybersecurity, serving as a gateway to more specialized roles within the field. It equips newcomers with the essential skills and knowledge needed to understand the broader cybersecurity landscape, setting the stage for further specialization and advancement in areas such as incident response, threat analysis, and security architecture. | Beginner |
| Security Hygiene | This introductory pathway is designed for a general audience and covers the key elements of protecting yourself online, both at work and at home. Everyone has a role to play in keeping themselves and their organization secure. Are you ready to be a security hero? | Beginner |
| SOC Analyst - Advanced* | This role is aimed at Tier 3 SOC analysts and those already familiar with working in a SOC. It will also support anyone looking to develop their SOC skills and progress from Tier 2 to Tier 3. | Expert |
| SOC Analyst – Beginner* | This role is aimed at those new to the SOC, novices in a SOC role, and current Tier 1 SOC analysts. | Beginner |
| SOC Analyst – Intermediate* | This role is aimed at those already familiar with working in a SOC and Tier 2 SOC analysts. It will also support anyone looking to develop their SOC skills and progress from Tier 1 to Tier 2. | Intermediate |
| Technical Fundamentals* | This role is for anyone who is new to cybersecurity or has recently started their cybersecurity career. It will ensure you have the technical essentials required to succeed. | Beginner |
| Threat Detection: APT Prerequisites | This career pathway covers the prerequisites required for Threat Detection: APT. In it, you'll look at the basics of the Windows operating system and Active Directory, the Cyber Kill Chain, Windows Sysinternals, Static and Dynamic Analysis, and Elastic. The career path aligns with a wide range of MITRE techniques commonly used by APT groups mapped to NICE framework's Knowledge numbers. | Beginner |
| Threat Detection: APT29 Advanced | This career pathway is aimed at advanced analysts who want to gain more in-depth knowledge about APT29 tools and techniques, and general malware analysis using real-world examples. In it you'll learn about APT29's SUNBURST Supply Chain Compromise, CVE's APT29 is suspected of using in the wild, and more advanced content on Malware analysis. | Expert |
| Threat Detection: APT29 Consolidated Learning | This career path contains learning material to consolidate knowledge and skills gained from Threat Detection: APT29 program. Many of these labs will prepare users for more advanced programs on threat detection and detection engineering. | Intermediate |
| Threat Detection: Wizard Spider Advanced | This career pathway is aimed at advanced analysts who want to gain more in-depth knowledge about WizardSpider tools and techniques, and general malware analysis using real-world examples. | Expert |
| Threat Detection: Wizard Spider Consolidated Learning | This career path contains learning material to consolidate knowledge and skills gained from Threat Detection: Wizard Spider program. Many of these labs will prepare users for more advanced programs on threat detection and detection engineering. | Intermediate |
| Threat Detection: Wizard Spider Core | This career pathway covers the core learning material to improve Threat Detection against Wizard Spider. In it, you'll be looking at labs covering the tools and malware used by Wizard Spider, but also Digital Forensics and Incident Response for this threat group. | Intermediate |
| Threat Hunter – Advanced | This role is for those with advanced skills and knowledge of cyber threat intelligence (CTI) and threat hunting. It will also support anyone looking to improve their CVE detection skills and gain familiarity with how breaches occur. | Expert |
| Threat Hunter – Beginner | This role is for those new to cyber threat intelligence (CTI) and novice threat hunters. It also supports anyone looking to gain knowledge and develop skills in CTI, threat research, breaches, and threat actors. | Beginner |
| Threat Hunter – Intermediate | This role is for those already familiar with cyber threat intelligence (CTI) and threat hunters looking to develop their CTI skills. It will also support anyone looking to gain knowledge and skills in detecting CVEs and malware while providing familiarity around how breaches occur. | Intermediate |
| Virtualization Specialist | This career path targets professionals dedicated to crafting, managing, and deploying virtual environments, specifically focusing on optimizing computing infrastructure through Docker and Kubernetes technology. It caters to those looking to master containerization and orchestration, improving system scalability and efficiency. This career path provides an Immersive Certification. | Expert |
| Virtualization Specialist | This career path targets professionals dedicated to crafting, managing, and deploying virtual environments, specifically focusing on optimizing computing infrastructure through Docker and Kubernetes technology. It caters to those looking to master containerization and orchestration, improving system scalability and efficiency. | Intermediate |
| Web App Pen Tester – Beginner* | This role is aimed at those new to web application pen testing or looking to develop basic some basic skills in this area. | Beginner |
| Web App Pen Tester – Intermediate* | This role is aimed at those already familiar with web app penetration testing or red teaming. It will support ethical hackers and anyone looking to develop their existing skills or improve their coverage of the MITRE ATT&CK tactics. | Intermediate |
| Web App Penetration Testing | This pathway is aimed at those interested in web application penetration testing or red teaming. It supports ethical hackers and anyone looking to develop their skills or improve their knowledge of vulnerabilities such as XSS and injection and relevant tools such as Burp Suite. Topics include many of those in SEC542. | Intermediate |
Comments
0 comments
Article is closed for comments.