Anons, I need ur expertise n help to suggest info sec topics i need to learn.
Current sophomore in college going for an IT degree w/ focus in Info Sec. So far, I've taken a lot of foundational classes like intro to C, C++, Java Data Structures, Machine architecture (assembly).... but desu I only really remember the main concepts/uses for those topics. I start taking my core IT classes like operating systems, networking, security, dev ops, etc. this coming year. Knowing what I know from online knwledge and shit, there's a lot of shit I still need to learn to become a hacker or cyber security analyst. My degree program has an option for a class that I can design myself and earn credit for it. What are some topics/languages you suggest I should learn to help me become a hacker? Some topics I'm thinking about are HTML and MySQL. Thanks 4 the help
I want to become a HACKER
buy Intel pls sirs thank you muches
First off drop out of college, that shit has a back door built into it.
learn python
this
they will mail your diploma to your home
like how did they know where I live
>implying a hacker would use a taiwanese card flipping forum bloated with javascript and other malicious scripts like 4channel
What's wrong with JavaScript?
First of all
Do you have the mask?
take CSIII
If you have to ask then you're never going to become a hacker.
You need to become a tranny first
wear programming socks
Check out the /sec/ FAQ mentioned here The FTP site has tons of documents, AEL has 501 GB of curated documents.
absolute state of 4channel
1st step: beat your wife and kids
go to a website
ask how to hack
alternative:
go to professor
ask how to hack
Learn these in order:
>x86 cpu architecture
>Bitwise operations
>x86 assembly
>Encodings
>Networking, protocols
>Metasploits
-----------
- get dev job, either junior or senior.
- program shit
- start writing your own security tests of whatever it is you're making (read gray hat python to do this, Art of
Software Security Assessment, ect).
- often corporations have no security department so will just appoint you security lead or head.
- from there start taking infrastructure security, read books about security management (google has written many,
or read google's SRE book and apply it to security tests)
- apply to be Chief Information Security Officer
- congrats your CISO on the board
The first goal is to be able to disassembly a lot of shit and understand what's happening on the lowest level.
If you can do that, things from there should be cakewalk.
Alight, so you’ll definitely need a good comprehension of IA-32 and IA-64 assembly. If you want to do mobile as well then you’ll have to get some RISC assembly as well (Qualcom’n Snap Dragon is probably a good choice. You don’t need to actually write assembly, just read it.
Then you’ll need to understand OS Iternals. For Windows get “Windows Internals” and whatever else Russinovich has written. For MacOs, unfortunately, they don’t publish a current book about them. You’ll have to make do with their developer resources. For Linux find a book about the kernel first. That and there’s always the source code (you’ll need to know C for that).
Then come binary file formats. Start with the executables first: PE, Mach-O, ELF. After that you’ll probably want to throw in PDF since it’s complex and used as an attack vector.
Now the tools:
IDA Pro is the industry standard disassembler.
The bad news is it costs several hundred bucks and is fucking difficult to buy if you’re not a company.
You’ll need a hex editor and debuggers. There are a lot of hex editors, it’s pretty much a personal choice. The standard debugger for windows Ring 3 (i.e.: user mode) is OllyDbg. There’s another version of it called Immunity as well. For windows Ring 0 (i.e.: kernel mode), it’s WinDbg. For MacOs and Linux you have GDB for Ring 3 and KDB for Ring 0.
You’ll also want to be good at the command shell. If you’re only using Windows install Cygwin so you can get decent tools.
Lastly, a lot of third party security add-ons and libraries use Python. So, you’ll probably want to study that.
To get an idea about this, play with Kali linux and go to the exploit exercises website, they have good exercises with a nice learning curve.
Do all that and hit it hard, you could, if have an aptitude and work hard, maybe be ready in a year.
> download kali linux
>IDA Pro
What about ghidra?
inb4
>NSA honeypot!
I believe you mean cracker, as being a hacker is nothing special.
But I'm already white.
Kek, you aight wyteboi
>i want to be leet hackr guys! how do that???
Fucking kill yourself
Based and redpilled.
OP here. geez... you make it sound like a lot of shit. definitely a lot of info i didn't know about. then u said it's possible to do in a year and i almost shit myself. appreciate ur advice tho, thanks. will def use it
What is AEL?
>Metasploit is written in Ruby
Learn Ruby instead
Earn CEH
Then earn OPSC
Then earn LPT
Transition into a cute girl then hack by social engineering
Ruby is a meme tier language that has be deprecated for ages. No point in wasting your time.
Read "Patrick Engebretson: The basis of Hacking and Penetration Testing", the second edition. You can find it online if you're a devious googler.
Don't even joke about that, user...
>meme language
its more expressive and consistent than python, has better functional abilities, much better OOP support. Its just better language
WRONG!
1st earn your CEH - Certified Ethical Hacker
2nd earn your LPT - Licensed Penetraion Tester
3rd earn your OSCP - Offensive Security Certified Professional
4th earn your OSCE - Offensive Security Certified Expert
5th KEEP STUDYING! Being a pen tester you never stop learning!
>KEEP STUDYING! Being a pen tester you never stop learning!
are you my professor?
Seriously what is wrong with javascript?
>muh meme certificates that any brainlet can get
Anyone wasting time on those is legit retarded. Its like the coding bootcamp equivalent of the security world.
True Chads like myself and many on this board majored in pure math and did cs as a hobby on the side learning these things for fun.
I agree that certifications are retarded. But they just retarded enough to get you jobs because hiring managers are also retarded.
So i should get some basic certs?
anything is better than python. that's not an achievement
At least get entry level certifications. Once you have a job in the industry if you desire more certs the company you work for generally will have vouchers or reimbursement (after N-months; Usually 6-8).
Also for abusing job boards upload resume with white text at bottom for every relevant cert/tag
Python is a good language Jow Forums-tards just hate on it because it simplifies unnecessary bullshit.
True I saw this job offer float by where they were looking for a pen tester. They were looking for someone who had those 4 cert. or were willing to earn them on the job.
It's like earning CCNA.
nope, sorry it's shit. was supposed to be easy to understand but instead ended up being even more confusing. also very poorly made
Same thread?
math undergrad is useless
>t. def __init__(self, x): self.x=x
It's not summer yet. Go do your homework.
I have a PHD kid nice try.
Come on can someone please tell me what is wrong with javascript? I just don't get the hate for it, it seems like a good language for webdev.
>Dynamic scope with the (((global))) operator as the icing on the cake
Simplifies, eh?
I only have a math undergrad. Starting a masters in CS soon. Will I make it? Too much of a brainlet for a phd in math. But could have knocked out a masters.
You could try and test your skills on small Private wow Servers they are often shit when IT comes to security and If the Player base is big enough you can even Name a Quick buck by blsckmailong them
Or Just Start writing shitty scripts / hacks to abuse and sell them
I'm starting my masters in CS soon too, bachelors wasn't too bad but some classes were a challenge.
>programming socks
Oops I'm the wrong kind of tranny then, does that mean I can't become hackerman?
What do you mean with "a back door built into it"?
Check what they require for the security jobs in your location.