Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? This is the time and place to ask!
Wondering how I can best spend my time in a vast universe of infosec knowledge.
I feel like a lot of learning websites are geared towards pentesting, because it is a very active / immediate skillset - if you do things right, you’ll get a flag.txt or something. I guess I’m just looking for something that isn’t just watching videos or plugging away at Jeopardy style learning (HtB, Try Hack Me). But I’m also a bit directionless at the moment - there’s so much to learn and I don’t know which way to go.
Edit: decided to peruse some of the older topics for immediate gratification, came across your great guide here - https://shellsharks.com/getting-into-information-security - problem is I do a lot of this stuff already. I think I need to figure out my own direction.
Yeah infosec is pretty huge. Do you have an idea more specifically of what you want to do? Like what type of role are you looking for or skills would you like to have?
I’m doing information assurance / GRC stuff at the moment. Not sure what the end goal is.
I think I might just need to soak it all in. I’m not particularly great at stuff like HackTheBox at the moment, but I’m sure that can be changed with more practice.
Fair enough. Just remember, there’s more (a lot more) to infosec than just Hack the Box stuff.