CompTIA Security+ (SY0-501) Certification Bootcamp

Explore cybersecurity core concepts in this first section, including the CIA triad—confidentiality, integrity, and availability. These foundational concepts are the core knowledge you will need.

Explore the CIA triad—confidentiality, integrity, and availability—and how encryption, access controls, hashing, digital signatures, certificates, and availability techniques protect information systems.

Apply defense in depth by deploying multiple, diverse security controls across the network and across multiple vendors to prevent a single vulnerability from exposing critical data.

Define risk as threats times vulnerabilities and show how internal users, disasters, and system errors exploit weaknesses, then reduce risk with security controls protecting confidentiality, integrity, and availability.

Defines how policies shape behavior and how SOPs translate guidance into compliant, actionable steps, covering tech usage, AUP, collusion prevention, vacations, duties, rotation, onboarding, offboarding, NDAA, and clean desk policy.

Classify and handle data using a standard scheme—unclassified, confidential, secret, and top secret—to protect information throughout its lifecycle, including destruction, retention policies, and regulations like HIPAA, GLBA, SOX, and GDPR.

Discover networking basics, refresh your knowledge, and learn essential cybersecurity concepts, including switches, routers, and secure network design.

Compare TCP and UDP protocols to understand reliable versus best-effort delivery. Explain the three-way handshake, IP addressing, IPv4 private ranges, IPv6, ARP, ICMP, and NDP.

Explore implementing and hardening network protocols, using encryption in transit with TLS/SSL, IPsec, SSH, and securing web, email, file transfer, and directory services like Active Directory and Kerberos.

Learn how DNS maps host names to IPv4 addresses with A records, uses MX and CNAME, performs forward and reverse lookups, and reviews zone transfers and DNSSEC validation.

Identify and classify ports into well-known, registered, and dynamic private (ephemeral) ranges, noting that well-known ports are the most commonly attacked. Disable unused ports with ACLs and use non-standard ports.

Explore how switches learn MAC addresses, forward frames to specific hosts, and enforce security with port security, ACLs, and anti spoofing across routers and firewalls.

Learn secure network design by segmenting into intranet, extranet, and DMZ, and applying NAT types, air-gapped and VLAN separation, plus devices like media gateways, proxy servers, and UTM.

Compare intrusion detection systems and intrusion prevention systems, their host-based and network-based deployments, and key detection methods like signature and heuristic approaches, plus honeypots, honey nets, and 802.1X authentication.

Explore security controls, including physical, detective, and preventative controls, and learn ideas for implementing a range of potential security controls.

Classify security controls into technical, administrative, operational, and physical categories to reduce vulnerabilities; include encryption, antivirus, IDS/IPS, firewalls, policy, and risk assessments.

Explore the five security controls types: preventive, detective, corrective, deterrent, and compensating—through practical examples like patching, security awareness training, log monitoring, backups, security cameras, and one-time passwords.

Implement physical security controls across locations, using fences, locks, badges, and air gap systems, and deter threats with guards, cameras, and man traps.

Regulate data center temperature with hvac and fire suppression, optimize airflow using hot and cold aisles, shield wiring with protected distribution systems, and apply faraday cages to prevent signal leakage.

Learn how to authenticate users and grant access according to their permissions, and explore the id authentication, authorization, and accounting process.

Identify users with a username, authenticate with a password, and authorize access to a file share such as Death Star, while accounting records audit trails of actions.

Implement multi-factor authentication by combining two or more factors—password or pin, token, or biometrics—and include geo location and gestures or dwell time as cues.

Discover how authentication services secure credentials with Kerberos, KDC, and ticket-based access to file servers. Explore NTLMv2 mutual authentication, LDAP/ldaps querying, and single sign-on with transitive trust across domains.

Implement least privilege and need-to-know access for end users, privileged, guest, and service accounts; enforce naming conventions, annual user agreements, cooling-off periods, and avoid shared accounts.

Explore common access control models—role-based, rule-based, discretionary, and mandatory—showing how RBAC uses job functions, DAC enables owner-directed permissions, and MAC uses label-based clearances.

Learn how to deploy secure images and protect systems by applying secure deployment practices covered in this section of the CompTIA Security+ bootcamp.

Minimize system exposure by enforcing least functionality: install only necessary apps and services, patch regularly, and remove unused software to prevent evolving vulnerabilities.

Secure operating systems across devices by using master images, automated patch management, and controlled change processes; deploy patches in waves and enforce white/blacklists to prevent unauthorized software.

Learn secure staging and deployment by sandboxing with EMS or virtual machines to isolate tests, evaluate patches, and safely deploy configurations using chroot environments.

Secure hardware and firmware by protecting peripherals and external storage, enforcing full disk encryption with TPM keys, securing BIOS settings, and planning for end-of-life updates.

Explore mobile device management essentials for securing remote devices with full device encryption, remote wipe, and patching via agents, plus monitoring for jail broken software and antivirus definitions.

Identify how embedded systems perform specific functions on devices with underlying operating systems, such as Linux-based printers and IoT devices, and note security concerns like patching and network isolation.

Protect organization data by implementing data loss prevention (DLP) and encryption at rest and in transit, monitoring removable media, USB, printing, email, and cloud storage to prevent data exfiltration.

Explore wireless security and how to secure wireless networks, recognizing they are like wired networks and require proper protections.

Secure wireless networks by configuring access points, choosing fat or thin APs, and selecting 802.11 standards and 2.4 or 5 GHz bands, while recognizing SSID visibility and MAC filtering limitations.

Explore wireless cryptography from WEP to WPA and WPA2, including TKIP and CCMP, and learn how PSK and enterprise mode with a RADIUS server enforce authentication.

Explore wireless authentication protocols, including EAP methods such as PEAP, EAP-TLS, and EAP-TTLS, plus Cisco's EAP-FAST, and understand captive portals for access registration.

Expose common wireless threats, from disassociation attacks and wps brute-force to rogue access points, evil twins, bluetooth and RFID vulnerabilities, and learn detection with wireless scanners to secure networks.

Explore options for deploying in cloud environments as data centers virtualize, leveraging Amazon NWS and Microsoft Azure, and move away from physical racks toward scalable virtual machines.

Explore virtualization basics, including hypervisors, hosts, guests, elasticity, and migration. Understand security tools like snapshots and VDI, plus risks such as VM escape and VM sprawl.

Explore cloud topologies and deployment types, including SAS, PNAS, and infrastructure as a service, and evaluate public, private, community, and hybrid cloud models for responsibility balance.

Explore how vpn secures remote access to the corporate network using software-based or concentrator solutions with ipsec, ike, token or directory authentication, and health checks.

Explore malware types such as viruses, worms, logic bombs, trojans, ransomware, keyloggers, spyware, botnets, back doors, and rootkits, and how they compromise networks.

Protect against malware by using up-to-date antivirus and anti-malware software, with signature-based and heuristic-based detection, file integrity checks, data execution prevention, and effective spam filtering.

Explore common network attacks, including denial of service and ddos, privilege escalation, spoofing, send flood, half-open sessions, man-in-the-middle, art poisoning, and dns attacks.

Examine brute force and dictionary attacks on password systems, and analyze password hash attacks, pass the hash, rainbow tables, hash collisions, and hijacking types like typosquatting and session hijacking.

Identify social engineering methods such as impersonation, shoulder surfing, phishing, and tailgating. Learn to defend with antivirus and user training while understanding factors like authority and urgency that attackers exploit.

Adopt secure coding practices throughout development to prevent vulnerabilities, validate input, guard against SQL injection, race conditions, protect data with encryption, and emphasize testing.

Explore how web applications and servers face attacks such as SQL injection, XSS, and CSRF, and learn to secure data with validated inputs and stored procedures in real-world web environments.

Identify regulatory frameworks like HEPA for health care records. Explore non regulatory frameworks such as cobalt or controlled objectives for information and related technologies, linking business goals with security objectives.