Cybersecurity Engineering Learning Paths

This project is a comprehensive educational framework and curriculum designed to transition beginners into proficient security engineers. It provides a self-taught hacking curriculum centered on mastering system internals, programming, and attack techniques through structured pedagogical paths and recursive learning. The framework distinguishes itself by integrating a productivity system specifically for engineers, which combines block-based time scheduling and incremental task management to prevent burnout and overcome procrastination. It further connects technical growth to professional advancement through strategies for public knowledge sharing, portfolio integration, and the monetization of security expertise. The technical scope covers foundational computer science, network protocols, and low-level system study. It guides users through the development of original security tools and automation scripts while providing a methodology for selecting specialized domains such as malware analysis or digital forensics.

4noobs is an open-source educational resource index that organizes structured, beginner-friendly learning paths across a wide range of technology domains. It delivers all content as static Markdown files managed under Git version control, with a curated-index-based navigation system that groups tutorials and roadmaps by technology domain into separate silos. The project provides step-by-step learning roadmaps for programming languages from Assembly to TypeScript, along with framework guides for tools like Angular, Vue, Django, and Spring. It includes certification preparation guides aligned with industry credentials such as the Linux Professional Institute certification, and offers tutorials for operating systems, database management, and development tools like Git, Docker, and Vim. The resource also covers automation testing frameworks including Selenium, Cypress, and Playwright, as well as UI/UX design principles and software quality topics. The content is structured to allow non-linear exploration through internal hyperlinks connecting related roadmaps and tutorials. The entire curriculum is version-controlled, enabling collaborative updates and historical tracking of changes to the learning materials.

90DaysOfCyberSecurity is an open-source educational repository that provides a structured ninety-day learning roadmap for individuals pursuing a career in the security industry. The project organizes foundational security concepts, technical skills, and professional development tasks into a sequential, day-by-day curriculum designed for self-paced study. The repository functions as a community-driven knowledge base, leveraging version control to allow contributors to expand the curriculum with new tutorials, case studies, and study materials. It distinguishes itself by integrating a professional career guide that offers templates for industry-standard resumes and strategies for navigating the job market alongside its technical training modules. The curriculum covers a broad range of security domains, including networking, scripting, and cloud security, by aggregating links to external video playlists, tutorials, and hands-on lab platforms. Learners can access these resources to practice defensive and offensive techniques in sandbox environments or gamified labs. The entire collection is hosted as a static documentation site, ensuring the learning path remains accessible and easy to navigate.

Ethical-Hacking-Labs is a comprehensive cybersecurity training curriculum and lab suite designed for learning penetration testing, network analysis, and offensive security techniques. It provides a structured environment for practicing the full attack lifecycle, from initial reconnaissance and scanning to exploitation and post-compromise analysis. The project provides instructional materials and guided exercises that cover specific technical domains, including open source intelligence research and network security courseware. It includes a practical workbook for identifying system vulnerabilities and practicing credential cracking and privilege escalation. The suite covers a broad range of security capabilities, including network scanning, vulnerability assessment, and traffic analysis. It also includes utilities for credential access through hash cracking, open source intelligence gathering, and the simulation of attack vectors using malicious payloads. The labs utilize virtualization environment setup to deploy pre-configured security distribution images within isolated virtual networks.

This project is a curated technical resource directory and software engineering learning roadmap. It serves as a computer science study curriculum and professional development framework, providing staged progressions for mastering programming languages, data structures, and full-stack development. The repository functions as a career preparation guide, offering strategic frameworks for resume building, technical interview practice, and internship application targeting. It includes a system for identifying income opportunities and managing a professional social presence to increase visibility. The project covers a broad range of capability areas, including detailed learning paths for cybersecurity, backend development, and system design. It further provides guidance on job application strategies, such as extracting hiring leads and performing strategic outreach, alongside instructions for building and deploying full-stack projects.

This project is a Kubernetes certification training course and cluster administration guide. It provides an educational program and instructional materials designed to prepare students for the Certified Kubernetes Administrator professional exam. The project functions as an exam simulator and troubleshooting lab, offering mock exams and lightning labs that mimic the practical challenges of the certification process. It includes hands-on practice environments for resolving configuration, storage, and networking issues. The training covers the management of cluster architecture, scheduling, and security. This includes practicing the configuration of network policies and traffic rules to secure communication between workloads.

Hacker101 is a cybersecurity education platform and web security training portal. It serves as a structured collection of lessons and resources designed to teach students about vulnerability research and penetration testing through guided modules. The platform operates as a static site generator and markdown-based content manager. It uses plain text files with structured metadata to define the hierarchy and properties of educational lessons, transforming this content into pre-rendered HTML files for delivery. The curriculum covers a broad domain of security education, including specialized courses for mobile application security and general web security training. This allows for the delivery of lessons focused on identifying and mitigating vulnerabilities across both web and mobile environments.

Developer Roadmap is a community-driven platform that provides structured, graph-based learning paths for software engineering. It serves as a comprehensive knowledge repository where technical domains are organized into visual sequences to guide professional skill acquisition and career growth. The project distinguishes itself through a collaborative ecosystem that enables users to contribute roadmaps, curate industry best practices, and maintain professional profiles. It integrates diagnostic assessment frameworks to evaluate technical proficiency, helping developers identify knowledge gaps and prepare for professional interviews through targeted learning sequences. Beyond its core mapping capabilities, the platform offers practical project ideas and interactive tutoring to reinforce engineering concepts. It provides a centralized space for the community to share resources, track progressive skill development, and navigate complex technical landscapes.

Mindmap is a cybersecurity knowledge base and reference library that organizes security tools, frameworks, and methodologies into a visual knowledge map. It functions as a curated directory of cheat sheets and command guides for offensive and defensive security operations, presented as a hierarchical interface with collapsible nodes. The project converts structured markdown files into navigable visual trees to facilitate the study of penetration testing workflows and DevOps learning roadmaps. It also serves as a security compliance framework, providing structured mappings of NIST and ISO 27001 controls for information security auditing. The platform covers a wide range of security domains, including tool cataloging for reconnaissance and reverse engineering, privilege escalation guides, and reference materials for active directory pentesting and network traffic analysis. The knowledge base is built using static content generation and a JSON-driven metadata catalog to populate its searchable lists and filterable galleries.

Security-101 is a vendor-agnostic, foundational cybersecurity learning curriculum organized into modular, framework-aligned modules. It is designed to build core knowledge across multiple security domains without tying content to specific products or platforms, making it suitable for both beginners and professionals seeking a structured introduction to the field. The curriculum is built around established security frameworks, including the MITRE ATT&CK framework for standardized threat analysis and the NIST Cybersecurity Framework for incident response workflows. It covers a broad range of domains, including AI system security, cloud security, zero trust principles, identity and access management, network security, data protection, and security operations. Each module reinforces learning through end-of-module quizzes that test comprehension and direct learners to further reading. The material spans core cybersecurity areas such as application security, cloud security posture management, data protection and compliance, identity and access management, network security and segmentation, and threat detection and response. It also addresses emerging areas like AI system security, covering data poisoning defense, adversarial attacks, and model hardening, as well as traditional security practices for AI infrastructure. The curriculum is structured to build knowledge sequentially, with each module providing a self-contained learning unit.