1. Computer & Operating System Basics
Learn how computers work: CPU, memory, processes, files, I/O.
Get comfortable with Linux & Windows:
Linux: commands (ls, cat, grep, chmod, ssh), file system, user permissions.
Windows: registry, PowerShell basics, Active Directory concepts.
🛠️ Practice:
Install VirtualBox or VMware.
Run a Linux VM (Ubuntu/Kali) and a Windows VM.
Try daily tasks (file creation, scripting, networking commands).
2. Networking Fundamentals
Cybersecurity heavily depends on networking knowledge.
OSI model & TCP/IP
IP addressing, subnetting, routing
Common protocols: HTTP/HTTPS, DNS, FTP, SSH, SMTP.
Firewalls, VPNs, proxies.
🛠️ Practice:
Use ping, traceroute, netstat, ipconfig/ifconfig.
Capture traffic in Wireshark and analyze packets.
3. Security Principles
Understand the core concepts of security:
CIA triad: Confidentiality, Integrity, Availability.
Authentication, Authorization, Accounting (AAA).
Threats: malware, phishing, ransomware, DoS attacks.
Risk management & security policies.
📚 Resource: CompTIA Security+ outline.
4. Programming & Scripting
Not mandatory at the start, but helps a lot:
Python: automation, parsing logs, exploit scripts.
Bash (Linux scripting).
PowerShell (Windows scripting).
🛠️ Practice:
Write a Python script to scan open ports.
Automate tasks with Bash (e.g., backup logs).
5. Hands-On Labs
Theory alone isn’t enough—practice is key.
Set up a home lab: at least 2–3 VMs (attacker: Kali Linux, defender: Windows/Linux).
Platforms:
TryHackMe Pre-Security Path
OverTheWire Bandit
6. Mindset & Habits
Always think like an attacker AND defender.
Stay updated with security news (BleepingComputer, KrebsOnSecurity).
Document what you learn (blog, GitHub, notes).
🔑 Summary of Fundamentals:
OS basics (Linux & Windows)
Networking concepts (TCP/IP, protocols, firewalls)
Security principles (CIA triad, threats, policies)
Scripting basics (Python, Bash, PowerShell)
Hands-on practice (labs, CTFs, VM setup)