Biscuit's Bug Bounty Playbook
  • ๐Ÿ‘‹Introduction to Biscuit's Bug Bounty Playbook
  • Mains
    • ๐ŸงพResume For Cyber Security Freshie
    • ๐Ÿ“—Browser extension
    • ๐Ÿ“€POC Videos YT Channel
    • ๐Ÿ“บ55 YouTube Channels To Learn Hacking
    • ๐Ÿ‘€Hackers to Follow on Social Media
      • Twitter
      • Medium
      • YouTube
      • GitHub
      • Discord Server
      • Security GitBooks
    • ๐Ÿ…Learn The Basics
      • ๐ŸŽ–๏ธType Of Cyber Security
      • ๐ŸฅˆCommon Job Roles
      • ๐Ÿฅ‰Get Started With InfoSec
      • โš•๏ธBest Bug Bounty Platform
      • ๐Ÿ—ž๏ธBest InfoSec Writeups Website
      • ๐ŸชHacking Books
      • ๐Ÿฅ‚CLI Commands
      • ๐Ÿ’ฟLearn WSL
    • ๐Ÿง‘โ€๐Ÿ’ปFun Programming Codes
    • ๐Ÿ”ฎBuild your own Bug Bounty Methodology
    • ๐ŸŽดBug Bounty Checklist
  • Bug Bounty Reports & Articles
    • 0๏ธโƒฃIndex
    • 1๏ธโƒฃTakeover's (Accounts, Sub-domains, etc)
      • ๐ŸšกSub Domain Takeover
      • ๐Ÿš Account Takeover
      • ๐ŸšŸdependency confusion vulnerability
    • 2๏ธโƒฃIDOR (Indirect Object Reference)
    • 3๏ธโƒฃLeaks & Disclosure (PII, API Key, etc)
    • 4๏ธโƒฃOpen Redirects
    • 5๏ธโƒฃRequest Forgery (CSRF & SSRF)
      • ๐ŸŸขCSRF
      • ๐Ÿ”ดSSRF
    • 6๏ธโƒฃInjections (HTML, XSS, etc)
      • ๐ŸŸกXSS
      • ๐ŸŸ HTML Injection
      • ๐ŸŸฃCR/LF Injection
      • ๐ŸŸขSSTI
    • 7๏ธโƒฃBroken Access Control & Broken Authentication
      • โš™๏ธFile Upload Functionality
      • โš™๏ธPassword Reset Functionality
      • โš™๏ธ2FA Functionality
      • โš™๏ธOauth Functionality
      • โš™๏ธBypassing
      • โš™๏ธMisconfiguration
    • 8๏ธโƒฃWeb Socket
    • 9๏ธโƒฃMiscellaneous Reports
    • 0๏ธCloud
      • ๐ŸŒฉ๏ธAWS S3
    • 1๏ธLow Hanging Fruits
    • 2๏ธCache Poising
    • 3๏ธDOS/DDOS
  • Bug Bounty Platforms
    • ๐Ÿ›BugCrowd
    • ๐ŸžHackerOne
    • ๐ŸชฒIntigriti
    • ๐ŸœOpen Bug Bounty
  • Exploiting Technologies
    • 0๏ธโƒฃIntroduction
    • 1๏ธโƒฃWordpress
    • 2๏ธโƒฃGraphQL API
    • 3๏ธโƒฃIDOR Vulnerability
    • Learn Android Hacking
Powered by GitBook
On this page
  1. Mains
  2. Learn The Basics

Type Of Cyber Security

Cybersecurity Domains Overview

This repository provides an overview of various cybersecurity domains, highlighting key areas and practices essential for protecting digital assets and information.

1. Network Security

Network security involves protecting data as it moves through networks. Key tools and practices include:

  • Firewalls: Devices or software designed to block unauthorized access while permitting outward communication.

  • VPNs (Virtual Private Networks): Technologies that create a secure, encrypted connection over a less secure network, such as the internet.

2. Endpoint Security

Endpoint security focuses on securing individual devices, such as computers and phones, through:

  • Antivirus Software: Programs designed to detect and destroy computer viruses.

  • Anti-Malware Tools: Software solutions that prevent, detect, and respond to malware threats.

3. Cloud Security

Cloud security ensures the safety of data and applications hosted in the cloud through:

  • Proper Configuration: Ensuring cloud services are configured securely to prevent unauthorized access.

  • Access Controls: Implementing policies and technologies to manage who can access cloud resources.

4. Application Security

Application security involves making software applications secure by:

  • Safe Coding Practices: Writing code that is secure against vulnerabilities.

  • Regular Testing: Continuously testing applications to identify and fix security weaknesses.

5. Information Security

Information security aims to keep data confidential, integral, and available by:

  • Encryption: Encoding information to prevent unauthorized access.

  • Access Controls: Restricting access to data based on user roles and permissions.

6. Security Operations (SecOps)

SecOps involves continuously monitoring, detecting, and responding to security incidents using tools like:

  • SIEM (Security Information and Event Management): Solutions that provide real-time analysis of security alerts generated by applications and network hardware.

7. Incident Response

Incident response entails planning for and responding to security incidents such as:

  • Data Breaches: Unauthorized access and retrieval of sensitive information.

  • Response Plans: Strategies and procedures to mitigate the impact of security incidents.

8. Mobile Security

Mobile security focuses on securing mobile devices and apps through:

  • Mobile Device Management (MDM): Technologies that manage, monitor, and secure mobile devices.

9. Industrial Control System (ICS) Security

ICS security protects critical infrastructure from cyber-physical attacks by:

  • Monitoring Systems: Tools that observe and analyze the behavior of control systems to detect anomalies.

  • Access Restrictions: Implementing controls to limit access to critical systems.

10. Internet of Things (IoT) Security

IoT security involves safeguarding connected IoT devices from potential vulnerabilities by:

  • Device Authentication: Ensuring only authorized devices can access the network.

  • Firmware Updates: Regularly updating device software to patch security vulnerabilities.

11. Blockchain Security

Blockchain security focuses on ensuring the safety of blockchain-based systems and cryptocurrencies through:

  • Cryptographic Algorithms: Using secure algorithms to protect blockchain transactions.

  • Decentralized Control: Reducing reliance on a central authority to enhance security.

12. Wireless Network Security

Wireless network security aims to secure wireless communication channels, such as Wi-Fi, from attacks by:

  • Encryption Protocols: Using strong encryption to protect wireless data transmissions.

  • Network Monitoring: Continuously observing network traffic to detect suspicious activities.

13. Physical Security

Physical security involves using access controls and surveillance to protect data centers and critical infrastructure by:

  • Access Controls: Implementing physical barriers and authorization protocols to restrict access to sensitive areas.

  • Surveillance Systems: Deploying cameras and sensors to monitor and secure facilities.

Feel free to explore each section to understand the key practices and tools used to safeguard digital and physical assets. Contributions and feedback are welcome!

PreviousLearn The BasicsNextCommon Job Roles

Last updated 5 months ago

๐Ÿ…
๐ŸŽ–๏ธ
  • 1. Network Security
  • 2. Endpoint Security
  • 3. Cloud Security
  • 4. Application Security
  • 5. Information Security
  • 6. Security Operations (SecOps)
  • 7. Incident Response
  • 8. Mobile Security
  • 9. Industrial Control System (ICS) Security
  • 10. Internet of Things (IoT) Security
  • 11. Blockchain Security
  • 12. Wireless Network Security
  • 13. Physical Security