Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Cyber Security Specialization: 100 Hands-On Labs

From basic security skills to building Zero Trust, Kubernetes, SIEM & DevSecOps platforms

New

Created byDar Al Taqniya

Last updated 5/2026

English

What you'll learn

Architect production-grade cybersecurity infrastructures using Linux, Kubernetes, cloud security, and Zero Trust principles.
Deploy and harden enterprise Linux systems using CIS Benchmarks, auditd, nftables, LUKS encryption, and SSH security controls.
Design SIEM and observability platforms with OpenSearch, Fluent Bit, Grafana, Loki, Sigma rules, and MITRE ATT&CK mapping.
Build resilient multi-environment cloud infrastructures using Terraform, policy-as-code, immutable recovery workflows, and secure networking.

Course content

12 sections • 112 lectures • 7h 16m total length

Introduction to Cyber security Specialization5:04

Cybersecurity Foundations and Initial Operational Success4:32
Lab 1 — Building the Enterprise Linux CLybersecurity Workstation4:54
Lab 2 — Installing Virtualization Infrastructure with KVM and VirtualBox4:49
Lab 3 — Creating the Multi-VM Security Research Environment5:03
Lab 4 — Linux Command Line Operations for Security Engineers5:04
Lab 5 — Network Fundamentals for Modern Cybersecurity3:35
Lab 6 — Understanding TCP, UDP, DNS, HTTP, and TLS Traffic3:34
Lab 7 — Building the First Packet Capture Laboratory with Wireshark3:31
Lab 8 — Linux File Permissions and Access Control Fundamentals3:26
Lab 9 — Bash Automation for Security Operations3:11
Lab 10 — Initial Success Milestone: Building a Secure Isolated Lab Network3:18

Linux Hardening and Enterprise System Security10:21
Lab 11 — User and Group Security Management3:36
Lab 12 — SSH Hardening and Secure Remote Administration3:24
Lab 13 — Firewall Engineering with nftables and UFW3:48
Lab 14 — Linux Service Isolation with systemd Security Controls2:57
Lab 15 — Kernel Security Parameters with sysctl3:41
Lab 16 — Disk Encryption with LUKS3:07
Lab 17 — Audit Logging with auditd3:16
Lab 18 — Intrusion Prevention with Fail2Ban3:03
Lab 19 — File Integrity Monitoring with AIDE3:12
Lab 20 — Enterprise Linux Hardening with CIS Benchmarks3:42

Networking, Traffic Analysis, and Secure Communication8:05
Lab 21 — Building a Secure Enterprise Network Topology3:44
Lab 22 — Deep Packet Inspection with Zeek3:18
Lab 23 — IDS Engineering with Suricata3:39
Lab 24 — Secure DNS Architecture and DNSSEC3:42
Lab 25 — VPN Infrastructure with WireGuard3:46
Lab 26 — TLS Certificate Management and PKI Fundamentals3:14
Lab 27 — Reverse Proxy Security with NGINX3:19
Lab 28 — Network Segmentation with VLANs3:59
Lab 29 — Zero Trust Networking Principles4:02
Lab 30 — Building a Secure Bastion Host Architecture3:33

Identity, Authentication, and Access Governance1:38
Lab 31 — Identity and Access Management Foundations3:39
Lab 32 — Building SSO with Keycloak3:35
Lab 33 — OAuth2 and OpenID Connect in Practice3:43
Lab 34 — Multi-Factor Authentication Deployment3:06
Lab 35 — LDAP Integration and Centralized Authentication3:29
Lab 36 — Role-Based Access Control Engineering3:25
Lab 37 — Secrets Management with HashiCorp Vault3:27
Lab 38 — Machine Identity Security with SPIFFE and SPIRE3:29
Lab 39 — Session Security and Token Validation3:48
Lab 40 — Zero Trust Identity Enforcement Architecture3:29

Cloud Security and Infrastructure as Code8:16
Lab 41 — Secure Cloud Architecture Principles3:13
Lab 42 — AWS IAM Security Engineering3:44
Lab 43 — Infrastructure as Code with Terraform3:27
Lab 44 — Terraform State Security and Remote Backends3:39
Lab 45 — Cloud Network Security Groups and Routing3:34
Lab 46 — Secure Object Storage Design3:33
Lab 47 — Cloud Logging and Audit Trails3:24
Lab 48 — Policy-as-Code with Open Policy Agent3:12
Lab 49 — Detecting Cloud Misconfigurations3:31
Lab 50 — Building a Secure Multi-Environment Cloud Deployment Pipeline3:42

Containers, Kubernetes, and Runtime Security9:13
Lab 51 — Docker Security Foundations3:08
Lab 52 — Container Image Hardening3:38
Lab 53 — Vulnerability Scanning with Trivy3:09
Lab 54 — Kubernetes Architecture Fundamentals3:15
Lab 55 — Kubernetes RBAC and Namespace Isolation3:22
Lab 56 — Kubernetes Network Policies3:22
Lab 57 — Admission Control with Kyverno3:09
Lab 58 — Runtime Threat Detection with Falco3:38
Lab 59 — Secrets Security Inside Kubernetes3:38
Lab 60 — Building a Production-Grade Hardened Kubernetes Cluster4:02

DevSecOps and Secure Software Delivery8:04
Lab 61 — Git Security and Repository Protection3:23
Lab 62 — Secure CI/CD Pipelines with GitHub Actions3:29
Lab 63 — Static Application Security Testing3:13
Lab 64 — Dependency and Supply Chain Scanning3:13
Lab 65 — Secret Detection with Gitleaks3:13
Lab 66 — Software Bill of Materials Generation3:43
Lab 67 — Artifact Signing with Sigstore Cosign3:06
Lab 68 — Secure GitOps Delivery with ArgoCD3:41
Lab 69 — Continuous Compliance Validation3:39
Lab 70 — End-to-End DevSecOps Pipeline Architecture3:37

SIEM Engineering, Detection, and Threat Hunting10:04
Lab 71 — Centralized Logging Architecture with OpenSearch3:24
Lab 72 — Log Aggregation with Fluent Bit2:56
Lab 73 — Security Dashboards with Grafana3:17
Lab 74 — Building SIEM Detection Rules3:11
Lab 75 — Threat Intelligence Integration with STIX and TAXII3:26
Lab 76 — Detection Engineering with Sigma Rules3:06
Lab 77 — MITRE ATT&CK Mapping3:17
Lab 78 — Behavioral Analytics and Threat Correlation3:09
Lab 79 — Threat Hunting Workflows3:29
Lab 80 — Building an Enterprise Detection Engineering Platform3:52

Offensive Security and Adversarial Simulation4:28
Lab 81 — Ethical Hacking Methodology and Legal Boundaries3:49
Lab 82 — Reconnaissance and Enumeration Operations3:06
Lab 83 — Web Application Security Testing with OWASP ZAP3:40
Lab 84 — API Security Assessment Techniques3:29
Lab 85 — Password Security and Credential Attack Simulation3:31
Lab 86 — Exploitation Fundamentals in Isolated Environments3:29
Lab 87 — Lateral Movement Simulation3:42
Lab 88 — Active Directory Attack Surface Analysis3:30
Lab 89 — Red Team and Blue Team Operational Coordination4:19
Lab 90 — Full Adversarial Simulation Exercise3:48

Requirements

You do NOT need prior cybersecurity experience to start this course.
However, the more curious and hands-on you are, the more powerful this journey becomes.
Recommended Knowledge :
Basic computer usage
Basic Linux familiarity is helpful but not required
No prior Kubernetes or cloud experience required
No prior programming experience required (Bash and Python automation are taught progressively)
Hardware Requirements :
Because this is a true enterprise lab environment, students should ideally have:
Minimum: 16 GB RAM
Recommended: 32 GB RAM
Quad-core CPU or better
200+ GB free SSD storage

Description

This course contains the use of artificial intelligence.

Most cyber security training focuses on isolated tools and theoretical concepts.

Modern enterprise environments are far more complex and commonly include:

Kubernetes clusters
Cloud infrastructure
APIs and microservices
CI/CD pipelines
Identity providers
Remote infrastructure
Runtime environments
Infrastructure as Code workflows

This course is designed to provide practical, hands-on experience across these modern cyber security domains through a structured lab-based learning approach.

What You Will Learn

This specialization contains 100 progressively connected labs covering enterprise cyber security engineering, infrastructure security, DevSecOps, cloud security, detection engineering, and incident response workflows.

Students will build, configure, secure, troubleshoot, and validate real-world systems in guided environments.

Topics include:

Linux Security & System Hardening

Learn to secure Linux systems using:

CIS Benchmarks
nftables
auditd
Fail2Ban
LUKS encryption
systemd isolation
Kernel security tuning

Networking & Zero Trust Architecture

Build and secure networking environments including:

VLAN segmentation
WireGuard VPNs
DNSSEC configurations
Bastion hosts
Reverse proxy security
Enterprise PKI workflows

Identity & Access Management

Deploy and manage:

Keycloak SSO
OAuth2
OpenID Connect
MFA systems
Vault secret management
RBAC policies
Machine identities

Cloud & Infrastructure Security

Work with:

AWS IAM security
Terraform security practices
Policy-as-Code
Cloud audit logging
Infrastructure validation
Secure deployment workflows

Kubernetes Security

Learn Kubernetes security concepts including:

RBAC
Admission controllers
Network policies
Runtime security
Secrets management
Container supply chain security
Hardened multi-node clusters

DevSecOps Engineering

Implement secure software delivery workflows using:

GitHub Actions security
SBOM generation
Gitleaks scanning
Sigstore signing
ArgoCD GitOps workflows
Continuous compliance validation

SIEM & Detection Engineering

Build monitoring and detection systems with:

OpenSearch
Grafana
Sigma rules
Threat hunting workflows
MITRE ATT&CK mapping
Threat intelligence integrations

Offensive Security & Incident Response

Practice security operations including:

Ethical hacking simulations
API security testing
Incident response
Digital forensics
Recovery operations
SOC workflows

Final Capstone Project

The course concludes with a large-scale capstone project focused on building and securing a modern enterprise cyber security environment integrating:

Hardened Linux systems
Kubernetes security controls
GitOps deployment workflows
SIEM and logging pipelines
Runtime monitoring
Threat detection
Compliance automation
Disaster recovery workflows

Hands-On Learning Approach

Each lab is designed with practical operational exercises that may include:

Environment validation
Troubleshooting scenarios
Recovery procedures
Security testing
Configuration verification
Detection engineering exercises

Who This Course Is For

This course is intended for:

Cyber security students
DevOps engineers
System administrators
SOC analysts
Cloud engineers
IT professionals interested in enterprise security
Learners interested in hands-on cyber security labs

Requirements

Basic familiarity with Linux and networking concepts is recommended. Some labs may require virtualization or cloud resources depending on the exercises performed.

Learning Outcome

By completing the labs, students will gain practical exposure to modern enterprise cyber security workflows and infrastructure security concepts commonly used in cloud-native and DevSecOps environments.

Who this course is for:

The Aspiring Cybersecurity Engineer
The DevOps / Cloud Engineer Transitioning into DevSecOps
The Advanced Engineer Building Sovereign Infrastructure

Cyber Security Specialization: 100 Hands-On Labs

What you'll learn

Explore related topics

Course content

Introduction1 lecture • 5min

Module 1 — Cybersecurity Foundations and Initial Operational Success11 lectures • 45min

Module 2 — Linux Hardening and Enterprise System Security11 lectures • 44min

Module 3 — Networking, Traffic Analysis, and Secure Communication11 lectures • 44min

Module 4 — Identity, Authentication, and Access Governance11 lectures • 37min

Module 5 — Cloud Security and Infrastructure as Code11 lectures • 43min

Module 6 — Containers, Kubernetes, and Runtime Security11 lectures • 44min

Module 7 — DevSecOps and Secure Software Delivery11 lectures • 42min

Module 8 — SIEM Engineering, Detection, and Threat Hunting11 lectures • 43min

Module 9 — Offensive Security and Adversarial Simulation11 lectures • 41min

Requirements

Description

Who this course is for: