*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.
Zero to Hero Pentesting: Episode 1 - Course Introduction, Notekeeping, Introductory Linux, and AMAThe Cyber Mentor2019-03-21 | ❓Info❓ ___________________________________________ Need a Pentest?: tcm-sec.com Learn to Hack: academy.tcm-sec.com
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE: Hacking with TryHackMe | Cybersecurity | Pentesting | AppSec | AMAThe Cyber Mentor2024-10-09 | Join Alex Olsen in this livestream recording to learn more about web hacking. He takes audience questions on a number of security-related topics and does some live hacking, this time focusing on the TryHackMe box injectics. Our team livestreams at 12 PM ET (mostly) every Wednesday, so subscribe to see the next time we're live!Start Web App Pentesting for FreeThe Cyber Mentor2024-10-04 | We just launched the FREE tier of courses in the TCM Security. These courses include Practical Help Desk, Linux 100: Fundamentals, Programming 100: Fundamentals, and Soft Skills for the Job Market. Sign up today! https://www.tcm.rocks/freetier-y
Looking to step up your web app pentesting and bug bounty skills? In this video, Alex from TCM Security walks you through some of the best FREE tools and resources to help you sharpen your AppSec knowledge and techniques. Whether you're just starting out or looking to boost your skill set, these tools are must-haves!
He covers:
- Caido, Burp Suite, FFUF/Dirsearch, CyberChef for web app pentesting - Must-have browser plugins and dev tools - Resources like PortSwigger Academy and Jason Haddix's Bug Hunter - Methodology - Hands-on learning with FreeCodeCamp and The Odin Project
What's your go-to free web app pentesting tool? Let us know in the comments!
Timestamps: 00:00 Free Pentesting tools 00:40 Pentesting and BugBounty Tools 06:54 Free resources for WebApp Pentesting 09:25 Start Pentesting and BugBounty from Zero
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.
Join Heath Adams and Andrew Prince as they chat through the launch of the Practical Junior Security Analyst (PJSA) certification. They answer questions related to the certification, SOC analyst careers, blue teaming, and much more.
🔔 Be sure to subscribe so you don't miss any future livestreams from the TCM Security team!
📕 Related Resources 📕 SOC 101 Course by Andrew Prince - https://www.tcm.rocks/soc101-y Top 5 SOC Analyst Certifications (Blog) - tcm-sec.com/top-soc-analyst-certifications Python 101 - https://www.tcm.rocks/py-yt Practical Help Desk (free course!) - https://www.tcm.rocks/phd-yLearn Regex in 15 MinutesThe Cyber Mentor2024-09-27 | We just launched the FREE tier of courses in the TCM Security. These courses include Practical Help Desk, Linux 100: Fundamentals, Programming 100: Fundamentals, and Soft Skills for the Job Market. Sign up today! https://www.tcm.rocks/freetier-y
Join Alex for a quick and practical dive into Regular Expressions (Regex)—an indispensable skill for every cybersecurity professional!
In this tutorial, you'll learn how to extract key data from large datasets with ease, validate user inputs to prevent security threats, and automate tasks with tools like grep, sed, or programming languages like Python and Perl.
You'll discover what exactly Regex is and why it’s crucial in cybersecurity, key elements of Regex and the challenges you might face, real-world examples like matching email addresses, IP addresses, and much more.
Whether you're a beginner or just need a refresher, this hands-on video gives you the practical knowledge to streamline your security workflows using Regex. Don’t forget to subscribe for more cybersecurity tutorials from Alex and other TCMS instructors!
What do you think of Regex? Tell us in the comments! ⬇️
Timestamps: 00:00 Intro to regex 00:25 Sponsor message 00:58 What is regex? 01:50 Learning regex 04:55 Anchors in regex 05:45 Ranges in regex 07:00 Quantifiers in regex 10:00 Sequences in regex 13:19 Lookahead in regex 15:44 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE: TCM Security FREE Tier Launch | IT | Cybersecurity | Programming | Soft SkillsThe Cyber Mentor2024-09-25 | https://www.tcm.rocks/freetier-y - The TCM Security Academy FREE tier has arrived! Find Practical Help Desk, Soft Skills for the Job Market, Programming 100: Fundamentals, and Linux 100: Fundamentals all available for free - a total of 25+ hours of content with no credit card required. Get started learning today!
Join Heath Adams and Andrew Bellini for this recorded livestream as they chat through the launch of the Academy free tier. You may know Bellini as our resident IoT & hardware hacking expert, and now he is the author of our FREE Practical Help Desk course!
Make sure you subscribe to see the next time Heath, Andrew Bellini, or other TCMS instructors go live! 📣
📕 Related Resources 📕 Programming 100: Fundamentals - https://www.tcm.rocks/prog-y Linux 100: Fundamentals - https://www.tcm.rocks/linux24-y Soft Skills for the Job Market - https://www.tcm.rocks/ss-y Practical Help Desk - https://www.tcm.rocks/ss-y
#thecybermentor #cybersecurity #programming #freeresources #helpdesk #ITDetect Intruders and Fix Vulnerabilities With One Free SolutionThe Cyber Mentor2024-09-20 | You can try Wazuh completely for free, and learn how to Attack and Defend: https://www.tcm.rocks/DownloadWazuh
Join Alex as he dives deeper into Wazuh, the open source XDR and SIEM platform designed to secure your endpoints and cloud workloads. In this video, he demonstrates how to use Wazuh's vulnerability detection tools to quickly identify and fix issues. Plus, learn how to add extra telemetry and set up custom rules to catch suspicious activity.
Setup is a breeze—Alex deployed the Wazuh server and agent on two Linux boxes in under 20 minutes! 🕒 (See an earlier video to watch him cover this: youtu.be/vTPTo65_eNo)
Wazuh is free and open source, making it a must-try for anyone looking to enhance their security. Ready to level up? Watch now! Subscribe to see future similar videos from the TCMS team!
💬 Are you using Wazuh? Share your thoughts in the comments!
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE: Blue Team with @MalwareCube | New Cert? | Cybersecurity | SOC | PJSAThe Cyber Mentor2024-09-18 | Join Andrew Prince @MalwareCube and Alex Olsen @AppSecExplained for a live Q&A about Blue Team and an upcoming certification - officially dropping very soon! This cert will be the natural progression of our SOC 101 course, which was released earlier this year.
Make sure to subscribe to catch our livestreams, which occur at noon ET every Wednesday!
#blueteaming #SOC #DFIR #infosec #cybersecurity #thecybermentorLIVE: Ransomware Investigation | Cybersecurity | Splunk | Blue Team |The Cyber Mentor2024-09-11 | Ready to level up your cybersecurity skills? Dive into the world of Active Directory (AD) security, a critical service used by the majority of Fortune 500 companies. Learn how to identify and defend against AD exploits with hands-on training led by Heath Adams. This one-day course will teach you practical skills to help secure your organization's network. https://www.tcm.rocks/livead24-yt
Follow along as Andrew Prince (@MalwareCube) leads a live ransomware investigation using Splunk. If you're considering a career in blue teaming or working in a SOC (Security Operations Center), this is a must-watch!
Key Topics Covered: - Live ransomware investigation with Splunk - SOC 101 Q&A with Andrew Prince - And more!
#blueteaming #SOC #DFIR #infosec #cybersecurityCaido Should Be in Your ToolkitThe Cyber Mentor2024-09-06 | Thank you so much to Snyk for sponsoring this video. Be sure to check out Snyk’s Ethical Hacking 101 Workshop on September 17 at 11am ET! Register here: http://snyk.co/eh101tcm
00:00 Intro 00:57 Sponsor message 01:50 What is Caido? 04:53 Caido Workflows 07:50 401/403 Bypass 12:24 Scripting a WAF bypass 21:18 Should you use Caido?
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE: Cybersecurity Q&A with Heath Adams | Cybersecurity | Pentesting | AppSec| AMAThe Cyber Mentor2024-09-04 | Join Heath Adams to learn more about cybersecurity. He takes audience questions on a number of Active Directory and security-related topics and shares a little bit about what is in the works here at TCM Security. We livestream at 12 PM ET every Wednesday, so subscribe to see the next time we're live!
#infosec #cybersecurity #activedirectory #ethicalhacking #appsecHow to Fail an InterviewThe Cyber Mentor2024-08-30 | Thank you to Keeper for sponsoring this video https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
00:00 Intro 00:19 Sponsor message 01:16 Andrew's interview story 04:17 Andrew's advice 06:43 Joe's interview story 11:31 Joe's advice 14:04 Angela's interview story 16:13 Angela's advice 18:17 Andrew's interview story 25:11 Andrew's advice 28:13 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE: Hacking with TryHackMe | Cybersecurity | Pentesting | AppSec| AMAThe Cyber Mentor2024-08-28 | Watch Alex in this livestream recording to learn more about web hacking. He takes audience questions on a number of security-related topics and does some live hacking, this time focusing on the TryHackMe box injectics. Our team livestreams at 12 PM ET (mostly) every Wednesday, so subscribe to see the next time we're live!
#tryhackme #hacking #infosec #thecybermentor #appsecPlugins That Save My LifeThe Cyber Mentor2024-08-23 | Thank you to Keeper for sponsoring this video https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
00:00 Intro 00:24 Sponsor message 01:06 WAF Bypasses with NoWafPlz 04:30 JSON Web Tokens 06:22 Param Miner & JS Miner 09:03 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE: DEFCON Diaries | Cybersecurity | Pentesting | Hacking | AMAThe Cyber Mentor2024-08-21 | Join Andrew Bellini (Digital Andrew), Tib3rius and Alex to ask anything you'd like about #DEFCON. We livestream at 12 PM ET every Wednesday, so please subscribe to see the next time we're live!
📕 Related Resources 📕 TCM Security Hardware Hacking Course: https://www.tcm.rocks/hh-y PJIT (Practical Junior IoT Tester): https://www.tcm.rocks/pjit-y Andrew Bellini's LinkedIn: linkedin.com/in/andrew-bellini Tib3rius on Twitter/X: https://x.com/0xTib3rius
#defcon #defcon32 #infosec #hackercon #stickersHow To Network At ConferencesThe Cyber Mentor2024-08-16 | Thank you to Keeper for sponsoring this video https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
00:00 Intro to networking 00:26 Sponsor message 01:09 Tip 1: Using social media 02:50 Tip 2: Take some breaks 04:00 Tip 3: Follow the food 04:40 Tip 4: Easy exchanges 05:07 Tip 5: Ask interesting questions 05:54 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.3 Must-Have Skills for SOC AnalystsThe Cyber Mentor2024-08-15 | https://www.tcm.rocks/soc101-y- SOC 101 has just been added to our Academy! We're excited to add more Blue Team content in the future - stay tuned and keep following us to see when.
Looking to kickstart your career as a SOC analyst? Andrew Prince, the creator of SOC 101 and our in-house Blue Team subject matter expert, shares a few skills that can help you stand out and get a successful jump on your career.
👉 Thinking of taking our new course? Let us know in the comments!
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE Blue Team & SOC 101 | New course | @MalwareCubeThe Cyber Mentor2024-08-14 | https://www.tcm.rocks/soc101-y - SOC 101 has just been added to the TCM Security Academy! Crafted by Andrew Prince, this comprehensive course gives you all the tools you need to kickstart a career as a SOC Analyst.
Join TCM Security Blue Team Content Creator Andrew Prince and resident livestream host Alex Olsen as they delve into phishing, threat detection, DFIR, and all things blue team. The TCMS team livestreams every Wednesday at 12 PM ET (usually), so subscribe now to stay updated and never miss a session!
#dfir #cybersecurity #socanalyst #blueteam #phishingLIVE Cybersecurity Q&A | Ethical Hacking | HackerThe Cyber Mentor2024-08-07 | Watch this AMA with Heath Adams where audience members asked him anything and everything they wanted to know about cybersecurity! We livestream every Wednesday at 12 PM ET, so be sure to subscribe and catch our next live session. We also regularly publish videos and shorts on various security-related topics.
#cybersecurity #thecybermentor #infosec #PNPT #certificationPass ANY Cybersecurity CertificationThe Cyber Mentor2024-08-05 | Thank you to Keeper for sponsoring this video https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
00:00 Intro 00:23 Sponsor message 01:10 Prepare for practical exams 04:58 Prepare for multiple choice exams 06:16 Creating a study plan 07:38 More generic tips 08:27 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.You Give Photo, I Find LocationThe Cyber Mentor2024-08-02 | Thank you to Keeper for sponsoring this video https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.
0:00 - Introduction 0:25 - Manual Geo OSINT 9:58 - Keeper Security Sponsorship 10:42 - Geo OSINT ToolsLIVE Programming for Hackers | C# | .NET | PythonThe Cyber Mentor2024-07-31 | https://www.tcm.rocks/csharp-y - C# 101 for Hackers is now live! Find it in the TCM Security Academy today!
Join Heath Adams and Alexander Tushinsky to learn more about using programming and why it can be so useful for hackers. They take audience questions on a number of security-related and programming topics and share a little bit about future plans here at TCM Security (like when the Practical Help Desk course is expected to go live. 👀)
The TCM Security team goes live every Wednesday starting right at 12 PM ET, so subscribe to get notifications to see when we are live next!
#csharp #csharpprogramming #cybersecurity #programming #infosecHack a Smart Safe at the DEF CON IoT Village!The Cyber Mentor2024-07-30 | Think you can hack a smart safe and score some sweet rewards? Join us at the IoT Village at DEFCON 32! Andrew Bellini has a special challenge lined up for you. Are you up for it? Find us at the IoT Village—coming soon!
Andrew is the creator of our Beginner's Guide to IoT & Hardware Hacking course in our Academy and our PJIT (Practical Junior IoT Tester) certification.
If you're at DEFCON and want a crash course in this area of hacking, drop by Andrew's talk at the IoT Village happening on Sunday August 11th at 11:30, "Anyone can hack IoT - a beginner’s guide to hacking your first IoT device." You can find it at Creator Stage 1.
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Why You Shouldnt Be A PentesterThe Cyber Mentor2024-07-26 | https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Master DOM Invader in 60 SecondsThe Cyber Mentor2024-07-25 | Join Alex in this quick tutorial on using Burp Suite's DOM Invader to uncover prototype pollution and other vulnerabilities. Have you tried it? Drop your thoughts in the comments! Subscribe for more insights from Alex and the TCM Security team. #shorts #pentesting #burpsuite #infosec #hacking
Don't forget to hit the like button if you found this helpful! 🚀
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE HackTheBox | Cyber Security | Pentesting | AppSecThe Cyber Mentor2024-07-24 | Join Alex as he hacks into GoodGames, a challenging box from Hack The Box (HTB). Along the way, he tackles audience questions and shares the latest updates from TCM Security.
Curious to see Alex, Heath, or other TCM Security team members live in action? We go live every Wednesday at 12 PM ET! Don't forget to subscribe and hit the notification bell so you never miss a stream.
#infosec #cybersecurity #hackthebox #hacking #pentestingThe Best and Worst of Hack The BoxThe Cyber Mentor2024-07-22 | https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
00:00 Intro 01:21 The highest and lowest rated HackTheBox machines 03:25 Attempting Gobox on HackTheBox 08:35 Attempting RainyDay on HackTheBox 12:18 Comparing Gobox and RainyDay 13:40 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Exploit Failed. Now What?The Cyber Mentor2024-07-19 | https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.How to Upgrade a Shell on MeterpreterThe Cyber Mentor2024-07-18 | Looking to upgrade your shell on Meterpreter? Alex has you covered in this quick tutorial. Follow his step-by-step guide to master the process. Don’t forget to subscribe for more content from Alex and the TCM Security team!
Alex is leading a Live Web App Training at the end of the month! For more details on that, go here: https://www.tcm.rocks/lwapp-y
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE Hacking with TryHackMe | Cyber Security | Pentesting | AppSecThe Cyber Mentor2024-07-17 | Join Alex to learn more about web hacking. He takes audience questions on a number of security-related topics, does some live hacking, and shares a little bit about future plans here at TCM Security. We livestream at 12 PM ET every Wednesday, so please subscribe to see the next time we're live!
#infosec #cybersecurity #tryhackme #ethicalhacking #appsecAI is Taking Our JobsThe Cyber Mentor2024-07-15 | Check out Snyk's AI hacking workshop on July 25th. Register here to secure a spot: snyk.co/livehacktcm
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Youre Too Old For CybersecurityThe Cyber Mentor2024-07-12 | https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
00:00 Too late to start cybersecurity? 00:28 Sponsor message 01:17 Current state of cybersecurity 02:28 Challenges of cybersecurity 04:47 Creating your own opportunities 08:36 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE Hacking with TryHackMe | Cyber Security | Pentesting | AppSecThe Cyber Mentor2024-07-10 | https://www.tcm.rocks/lwapp-y - Alex is leading a Live Web Application Penetration Testing Training starting July 26th! This consists of two days of live training with a week of self-study in between. Boost your web app skills in this intermediate-level course; enroll today!
https://www.tcm.rocks/pwpt2024-li - The PWPT (Practical Web Penetration Tester) cert is now live. This is one of our more intermediate-level certs (like the PNPT). Created by Alex, the PWPT exam was designed to teach students how to apply skills in a real-world situation. This is not a CTF. Our exams provide an experience that is similar to what you will be asked to do in a professional environment.
Join Alex to learn more about web app pentesting. He takes audience questions on security-related topics, hacks a TryHackMe box, and pays the cat tax. We livestream at 12 PM ET every Wednesday, so make sure you subscribe to see the next time we're live!
#infosec #cybersecurity #tryhackme #ethicalhacking #appsec3 SOC Analyst Projects for BeginnersThe Cyber Mentor2024-07-09 | Looking to land a SOC analyst role but need more experience? In this short, Andrew Prince, our Blue Team Content Creator at TCM Security, shares side projects you can tackle to boost your resume. Andrew has been creating a lot of blue team content, and we’re excited to share it with you! Subscribe for updates on this and more training opportunities.
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Getting Started With Hardware HackingThe Cyber Mentor2024-07-08 | https://www.tcm.rocks/KeeperDemo Keeper Security’s next-gen privileged access management solution delivers enterprise-grade password, secrets and privileged connection management in one unified platform. Request a demo on how you can protect your organization against cyber threats with zero-trust Enterprise Password Management (EPM). https://www.tcm.rocks/KeeperDemo
00:00 Intro to IoT Hacking 00:35 Sponsor message 01:28 Starting with the course 03:38 Advice from Andrew Bellini (course author!) 04:17 What to learn before starting IoT Hacking 06:23 Keeping track of all your equipment 09:00 Hacking a smart safe at Defcon 10:15 Resources after the course 11:42 How to find your first CVE 15:49 How to follow Andrew Bellini 16:16 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.How to Get Pentesting ExperienceThe Cyber Mentor2024-07-05 | Try GlassWire and start shedding light on your network traffic today, for free! https://www.tcm.rocks/glasswire-tcm
00:00 Side projects for cybersecurity 00:28 Sponsor message 01:40 Project 1: The Honeypot 03:09 Project 2: BugBounty Dashboard 04:45 Project 3: Report Generator/Automator 06:13 Project 4: CTF 07:31 Project 5: Open Source Contributions 08:15 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Cybersecurity AMA with Heath Adams | Hacking | Pentesting | AppSecThe Cyber Mentor2024-07-03 | https://www.tcm.rocks/pwpt2024-y - PWPT is now live! This is our more advanced web app pentesting cert (like the PNPT but a different focus.)
https://www.tcm.rocks/lwapp-y - Go further in your pentesting journey with Alex! Our next live training kicks off July 26th and is perfect for anyone thinking about the PWPT or wanting to level up as a pentester.
🎥 Join Heath Adams, AKA The Cyber Mentor, in this stream where we dive into your cybersecurity questions! Whether you're curious about what's happening at TCM Security, how to break into the industry, what certs are the most valuable, or overcoming fears about being on video, we've got you covered.
🔔 Don't miss out! Subscribe now to catch Heath (and other TCM Content Creators) live.
Engage with us:
Like this video if you find the answers helpful. Share this stream with friends who are interested in security. Join the conversation and be part of our community!
#thecybermentor #infosec #hacking #ethicalhacking #amaPass the PJWT Exam With These TipsThe Cyber Mentor2024-07-02 | The Practical Junior Web Tester (PJWT) is TCM Security's entry-level web app pentesting certification. Want to know how to pass the exam? 🤔 Alex has some quick tips for you! Get the lowdown on the PJWT here: https://www.tcm.rocks/pjwt2024-y
Plus, check out the newly released Practical Web Penetration Tester (PWPT) for more advanced training. Find out more info here: https://www.tcm.rocks/pwpt2024-y
We also have a LIVE Web App Training happening on July 26th & August 2nd taught by Alex. If you've already taken the PJWT and want to go further, this training is for you! https://www.tcm.rocks/lwapp-y
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.The Ugly Truth About HackingThe Cyber Mentor2024-06-28 | If you're looking to get started in Cybersecurity, we've got over 30 hours of free content, including a few of our courses: youtube.com/playlist?list=PLLKT__MCUeixqHJ1TRqrHsEd6_EdEvo47
00:00 Intro 00:21 A Message from TCM 00:49 Ambiguity when hacking 03:29 Hacking is more than just getting root 04:55 Hacking gets more fun over time 06:04 Be prepared for hostility in cybersecurity 07:00 Cybersecurity certifications are a necessary evil 08:18 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE Hacking with TryHackMe | Cyber Security | Pentesting | AppSecThe Cyber Mentor2024-06-26 | Join Alex to learn more about web hacking. He takes audience questions on a number of security-related topics, does some live hacking, and shares a little bit about future plans here at TCM Security. We livestream at 12 PM ET every Wednesday, so please subscribe to see the next time we're live!
If you like Alex's teaching style and want to advance your web app pentesting skills, make sure you check out Live Web Application Penetration Testing taught by Alex. The live training is broken into two parts: July 26th and August 2nd. This is perfect preparation for the PWPT cert, and also simply a fantastic opportunity to level up your skillset. https://www.tcm.rocks/lwapp-y
#infosec #hacking #appsec #tryhackme #thecybermentorBypass SQL Filters & Get SQL Injection With These Quick TipsThe Cyber Mentor2024-06-25 | Found SQL injection, but blocked by pesky filters? Check out these quick tips from Alex to get you on the other side with your SQLi vulnerability in tact. Want to see similar tips from Alex and chat with him during TCM Security livestreams? Make sure you subscribe to our channel!
Alex is the creator of our newest web app pentesting cert, the PWPT aka Practical Web Penetration Tester. This is a somewhat more advanced certification, similar to our long-standing PNPT. You can get more info on it here: https://www.tcm.rocks/pwpt2024-y
And if you want to learn how to pass the PWPT, we have a live training later this summer dedicated to web app pentesting led by Alex himself: https://www.tcm.rocks/pwpt2024-y
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.How to Prepare for The Practical Web Penetration Tester ExamThe Cyber Mentor2024-06-21 | You can find out more about the PWPT exam and training here: https://www.tcm.rocks/pwpt2024-y
00:00 Intro to the Practical Web Penetration Tester (PWPT) exam 00:30 A TCM Message 00:55 PWPT exam structure 01:34 Skills needed to pass PWPT 03:10 Path to PWPT 06:46 Extra practice and preparation 07:15 Exam tips 09:01 Thanks for watching
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE Resume Roast | Career Advice | Cyber Security | Hacking the ResumeThe Cyber Mentor2024-06-19 | Join Aaron Wilson and Andrew Bellini as they roast their resumes they used in the past and review their mistakes. If you're on the job market, you can't skip this session - they drop a lot of useful knowledge around resume dos and don'ts as well as interviews, projects, networking, and more. 👀
Like this video? Subscribe to our channel for future livestreams, shorts, and videos from the TCM Security team.
#infosec #resumetips #resumeadvice #careeradvice #cybersecuritycareersHacking a Smart Camera: IoT Hacking With Andrew Bellini (Part 5 - Conclusion)The Cyber Mentor2024-06-18 | Andrew Bellini gained a root shell in the smart camera and dumped its firmware all via the camera's hardware. He emphasizes why hardware security matters so much in this final installment of his shorts series. Subscribe so you don't miss future updates from Andrew as he hacks other devices!
Want to learn IoT and hardware hacking with Andrew? He'll be leading a two-part LIVE workshop June 27th & July 11th. You'll need to subscribe to the TCM Security Academy to join! https://www.tcm.rocks/iot-y
We also have a course in our Academy you can check out if you're interested in hardware hacking: https://www.tcm.rocks/hh-y
If you want to go further, we released the Practical Junior IoT Tester certification earlier this year: https://www.tcm.rocks/pjit-y
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Your Voter Records Reveal A LOT of InfoThe Cyber Mentor2024-06-17 | A huge thank you to DeleteMe for sponsoring today's video! Get 20% off DeleteMe US consumer plans when you go to joindeleteme.com/TCM20 and use coupon code TCM at checkout!
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Fuzz Faster with Turbo IntruderThe Cyber Mentor2024-06-14 | 00:00 Introduction to Turbo Intruder 00:35 TCM Security Academy 01:02 Setting up the lab 01:22 Lab Walkthrough 03:08 Account bruteforcing 07:26 Defeating a 60second MFA timer 15:10 Outro
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE Hacking a Prison Management App with Code Review | Pentesting | Cyber Security | AppSecThe Cyber Mentor2024-06-12 | Join Alex to learn more about web hacking. The focus is on live CTFs and practical insights on skills and technique used by hackers and pentesters. Alex hacked a prison management app via code review in this livestream! Watch along to see how he pulled it off and hear him answer a few audience questions, too.
Like this video? Subscribe to our channel for future livestreams, shorts, and videos from the TCM Security team.
#infosec #livehacks #cybersecurity #php #codereview3 Tips to Pass Your Next Pentesting Exam | Cybersecurity and HackingThe Cyber Mentor2024-06-11 | If you've got an exam for a penetration testing cert like the PNPT (Practical Network Penetration Tester), PJPT (Practical Junior Penetration Tester), PJWT (Practical Junior Web Tester), or PWPT (Practical Web Penetration Tester) coming up, you'll want to check out these tips from Alex on how to make sure it goes in your favor. Good luck and be sure to subscribe for similar content from the team here at TCM Security!
Planning on studying for a practical pentesting certification with us soon? Tell us in the comments!
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Are IT Certifications Necessary?The Cyber Mentor2024-06-10 | Thank you so much to Snyk for sponsoring this video. Sign up for Snyk for free to secure your products from the start: snyk.co/thecybermentor
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.Three Mental Models for CybersecurityThe Cyber Mentor2024-06-07 | Sponsor a Video: https://www.tcm.rocks/Sponsors Pentests & Security Consulting: tcm-sec.com Get Trained: academy.tcm-sec.com Get Certified: certifications.tcm-sec.com Merch: merch.tcm-sec.com
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.LIVE HackTheBox | Pentesting | Cyber Security | AppSecThe Cyber Mentor2024-06-05 | Join Alex to learn more about web hacking. Live CTFs and practical insights on skills and technique used by hackers and pentesters. The box for this stream is Popcorn (linked below).