Curriculum
Comprehensive Cybersecurity Training
Module 1: Fundamental Security Concepts and Networking
0/28
Module 2: Evaluate Network Security Capabilities, Secure Communication and Assess Endpoints security capabilities
0/33
Module 3: Implement Identity and Access Management and Cryptography & Secure Solution Implementation
0/47
Module 4: Threats, Vulnerabilities, Risk & Social Engineering, Explain Vulnerability Management and Analyze indicators of Malicious activities
0/47
-
Week 8.0 Threats, Vulnerabilities, Risk & Social Engineering
Preview -
Week 8.1 Threats, Vulnerabilities, Risk
-
Week 8.2 Attributes of Threat Actors
-
Week 8.3 Motivations of Threat Actors
-
Week 8.4 Hackers and Hacktivists
-
Week 8.5 Nation-State Actors
-
Week 8.6 Organized Crime and Competitors
-
Week 8.7 Internal Threat Actors
-
Week 8.8 Attack surface and threat vectors
-
Week 8.9 Vulnerable Software Vectors
-
Week 8.10 Network Vectors
-
Week 8.11 Message-Based Vectors
-
Week 8.12 Supply Chain Attack Surface
-
Week 8.13 Social Engineering
-
Threats, Vulnerabilities, Risk & Social Engineering Quiz
-
Week 9.0 Explain Vulnerability Management I
Preview
-
Week 9.1 Operating System Vulnerabilities
-
Week 9.2 Vulnerability Types
-
Week 9.3 Evaluation Scope
-
Week 9.4 Web Application Attacks
-
Vulnerability Management Quiz
-
Week 10.0 Explain Vulnerability Management II
Preview
-
Week 10.1 Threat Feeds
-
Week 10.2 Other Vulnerability Assessment Methods
-
Week 10.3 Common Vulnerabilities and Exposures
-
Week 10 4 Types of Alerts and Log Review
-
Vulnerability Management II Quiz
-
Week 11.0 Analyze indicators of Malicious activities
Preview
-
Week 11.1 Malware Classification
-
Week 11.2 TTPs and IoCs
-
Week 11.3 Physical Attacks
-
Analyze indicators of Malicious activities Quiz
-
Week 12.0 Analyze indicators of Malicious activities - II
Preview
-
Week 12.1 Network Attacks
-
Week 12.2 Distributed Denial of Service Attacks
-
Week 12.3 On-Path Attacks
-
Week 12. 4 Domain Name System Attacks
-
Week 12.5 Wireless Attacks
-
Week 12.6 Password Attacks
-
Analyze indicators of Malicious activities - II Quiz
-
Week 13.0 Analyze indicators of Malicious activities - III
Preview
-
Week 13.1 Cryptographic AttacksÂ
-
Week 13.2 Malicious Code Indicators
-
Week 13.3 Application Attacks
-
Week 13.4 URL Analysis
-
Week 13.5 Web Server Logs
-
Analyze indicators of Malicious activities - III Quiz
Module 5: Secure Cloud Network Architecture, Explain Resiliency and Site Security Concepts
0/35
Module 6: Governance, Risk and Compliance
0/56
Additional Assessments
0/2
Week 9.0 Explain Vulnerability Management I
Overview
This module focuses on understanding how weaknesses in systems, applications, and infrastructures translate into real-world security risks. Learners begin by examining Operating System Vulnerabilities, discovering how flaws or outdated components in Windows, Linux, or macOS can expose devices to attacks. The course then breaks down major Vulnerability Types.
A critical concept covered in this module is Zero-Day Vulnerabilities, which are flaws unknown to vendors and exploited before a patch exists. Students learn why these are highly dangerous and how attackers leverage them for stealthy, high-impact attacks.
The module also explores Misconfiguration Vulnerabilities, where security weaknesses arise not from coding errors but from improper system settings, open ports, weak permissions, or exposed cloud storage. Learners also study Sideloading, Rooting, and Jailbreaking, which involve bypassing device security controls to install unauthorized apps or gain elevated privileges—actions that drastically increase the attack surface.
The course then examines Application Vulnerabilities, focusing on weaknesses in software that attackers exploit to compromise data or systems. This includes an in-depth study of Web Application Attacks including cross-site scripting (XSS), SQL injection, cross-site request forgery (CSRF), and insecure session handling. Students also explore Cloud-Based Application Attacks, understanding how misconfigured cloud services, insecure APIs, and weak authentication expose organizations to breaches.
Modern threats often spread beyond direct system flaws, so the module covers Supply Chain Vulnerabilities, where attackers target vendors, code libraries, firmware, or third-party services to compromise a larger organization. This highlights the importance of trusted suppliers, code integrity, and continuous monitoring.
Learners are then introduced to proactive detection techniques, beginning with Vulnerability Scanning, where automated tools search systems for weaknesses.