Cybersecurity Mentorship Program

Unlock the Practical Skills and Tools Employed by Today's Cybersecurity Defenders.

Created byKendrick Washington

Last updated 4/2025

English

What you'll learn

Essential Windows Skills
PowerShell
Vulnerability Management
Endpoint Security

Course content

5 sections • 72 lectures • 4h 56m total length

cd (Change Directory)2:33
Description: Navigates to a specified directory (folder) within the file system.
Syntax: cd [drive]:\[path]
[drive]: The drive letter (e.g., C:, D:).
[path] The path to the desired directory.
Example: cd C:\Users\username\Documents
dir (Directory)2:06
Description: Lists the contents of the current directory.
Syntax: dir [options]
Options: /p (pause output), /w (wide format), /a (show hidden/system files).
Example: dir /w
mkdir (Make Directory) / md1:15
Description: Creates a new directory.
Syntax: mkdir [directory name] or md [directory name]
Example: mkdir "New Folder"
rmdir (Remove Directory) / rd2:53
Description: Deletes an empty directory.
Syntax: rmdir [directory name] or rd [directory name]
Use /s option to delete non-empty directories (with caution!).
Example: rmdir "Old Folder"
copy1:52
Description: Copies files from one location to another.
Syntax: copy source destination
Example: copy C:\file1.txt D:\backup
move0:54
Description: Moves or renames files.
Syntax: move source destination
Example: move C:\file1.txt D:\
del (Delete)0:38
Description: Deletes files.
Syntax: del [filename]
Use with caution! del *.* deletes all files in the current directory.
Example: del file1.txt
ren (Rename)1:36
Description: Renames files.
Syntax: ren oldname newname
Example: ren file1.txt newfile.txt
type1:14
Description: Displays the contents of a text file.
Syntax: type [filename]
Example: type file1.txt
attrib3:31
Description: Displays or changes file attributes (read-only, hidden, system, archive).
Syntax: attrib [+/-][RASH] [filename]
Example: attrib +R file1.txt (sets read-only attribute)
systeminfo0:39
systeminfo:
Description: Displays detailed system information.
Syntax: systeminfo
tasklist0:18
Description: Lists all running processes.
Syntax: tasklist
taskkill4:07
Description: Terminates running processes.
Syntax: taskkill /IM processname /F
/IM: Specifies the process name.
/F: Forces the process to terminate.
Example: taskkill /IM notepad.exe /F
ipconfig2:48
Description: Displays network configuration information (IP addresses, MAC addresses, DNS servers).
Syntax: ipconfig /all (displays all network adapters)
ping1:47
Description: Tests network connectivity to a remote host.
Syntax: ping [hostname or IP address]
Example: ping www[.]google[.]com
tracert2:59
Description: Traces the route that data packets take to reach a destination.
Syntax: tracert [hostname or IP address]
Example: tracert www.example.com
netstat1:21
Description: Displays network statistics and connections.
Syntax: netstat -an (shows all active connections)
sfc /scannow0:50
Description: Scans for and restores corrupted system files.
Syntax: sfc /scannow
chkdsk1:03
Description: Checks a disk for errors and attempts to repair them.
Syntax: chkdsk C: (checks drive C:)
shutdown1:30
Description: Shuts down or restarts the computer.
Syntax: shutdown /s (shuts down), shutdown /r (restarts)
ver / winver0:39
Description: Displays the Windows version.
Syntax: ver or winver
driverquery0:24
Description: Displays information about installed drivers.
Syntax: driverquery
nslookup0:36
Description: Queries DNS records for a hostname or IP address.
Syntax: nslookup [hostname]
Example: nslookup www[.]google[.]com
net1:58
Description: A versatile command for managing network resources (users, shares, services).
Syntax: net [command] (e.g., net user, net share, net start)
arp1:03
Description: Displays or modifies the ARP cache (mapping IP addresses to MAC addresses).
Syntax: arp -a (displays ARP cache)
route1:06
Description: Displays or modifies the routing table.
Syntax: route print (displays routing table)
diskpart1:36
Description: A powerful command-line disk partitioning utility.
Syntax: diskpart (launches the diskpart utility)
regedit2:36
Description: The Registry Editor (use with extreme caution!).
Syntax: regedit
gpupdate2:12
Description: Updates Group Policy settings on the local computer.
Syntax: gpupdate /force
gpresult1:47
Description: Displays the applied Group Policy settings for the current user and computer.
Syntax: gpresult /R
powershell1:39
Description: Launches the PowerShell command-line shell.
Syntax: powershell

Getting Started with Networking2:45
Have you ever wondered how networks work? How two computers communicate? How the Internet works? This course explains these concepts, starting with the basic building blocks of networks, and how Ethernet Local Area Networks (LANs) operate. We discuss IP addressing and subnetting, and how data gets routed from one LAN to another using various Wide Area Networking (WAN) technologies.
Difficulty Level: Foundational

Get-Process4:57
Description: Retrieves a list of processes running on the local computer.
Syntax: Get-Process [-Name <string[]>] [-Id <int[]>] [-ComputerName <string[]>] [-Module <string[]>] [-FileVersionInfo] [-IncludeUserName] [<CommonParameters>]
Example: Get-Process | Where-Object {$_.CPU -gt 10} (Finds processes using high CP
Stop-Process2:58
Description: The Stop-Process cmdlet stops one or more running processes. You can specify a process by process name or process ID (PID), or pass a process object to Stop-Process. Stop-Process works only on processes running on the local computer.
Syntax:
Stop-Process -Name <String[]> [-PassThru] [-Force] [-WhatIf] [-Confirm] [<CommonParameters>]
Stop-Process [-Id] <Int32[]> [-PassThru] [-Force] [-WhatIf] [-Confirm] [<CommonParameters>]
Example: Stop-Process -Name "notepad".
Start-Process4:33
Description: The Start-Process cmdlet starts one or more processes on the local computer.
Syntax: Start-Process [-FilePath] <string> [[-ArgumentList] <string[]>] [-Credential <pscredential>] [-WorkingDirectory <string>] [-LoadUserProfile] [-NoNewWindow] [-PassThru] [-RedirectStandardError <string>] [-RedirectStandardInput <string>] [-RedirectStandardOutput <string>] [-WindowStyle <ProcessWindowStyle>] [-Wait] [-UseNewEnvironment] [-Environment <hashtable>] [-WhatIf] [-Confirm] [<CommonParameters>]
Example: Start-Process "notepad".
Get-Service6:59
Description: The Get-Service cmdlet gets objects that represent the services on a computer, including running and stopped services. By default, when Get-Service is run without parameters, all the local computer's services are returned.
Syntax: Get-Service [-Name <string[]>] [-ComputerName <string[]>] [-DependentServices] [-RequiredServices] [<CommonParameters>]
Example: Get-Service | Where-Object {$_.Status -eq "Running"} (Lists running services).
Stop-Service4:02
Description: The Stop-Service cmdlet sends a stop message to the Windows Service Controller for each of the specified services. You can specify the services by their service names or display names, or you can use the InputObject parameter to pass a service object that represents the service that you want to stop.
Syntax: Stop-Service [-Force] [-NoWait] [-Name] <String[]> [-PassThru] [-Include <String[]>] [-Exclude <String[]>] [-WhatIf] [-Confirm] [<CommonParameters>]
Example: Stop-Service -Name "eventlog" (This command stops the EventLog service on the local computer.)
Start-Service5:23
Description: The Start-Service cmdlet sends a start message to the Windows Service Controller for each of the specified services. If a service is already running, the message is ignored without error. You can specify the services by their service names or display names, or you can use the InputObject parameter to supply a service object that represents the services that you want to start.
Syntax: Start-Service [-Name] <String[]> [-PassThru] [-Include <String[]>] [-Exclude <String[]>] [-WhatIf] [-Confirm] [<CommonParameters>]
Example: Start-Service -Name "eventlog" (This example starts the EventLog service on the local computer. The Name parameter identifies the service by its service name)
Get-Item3:52
Description: The Get-Item cmdlet gets the item at the specified location. It doesn't get the contents of the item at the location unless you use a wildcard character (*) to request all the contents of the item.
This cmdlet is used by PowerShell providers to navigate through different types of data stores.
Syntax: Get-Item [-Path] <string[]> [-Filter <string>] [-Include <string[]>] [-Exclude <string[]>] [-Force] [-Credential <pscredential>] [-Stream <string[]>] [<CommonParameters>]
Example: Get-Item C:\Windows\System32\* or Get-Item "HKLM:\Software\Microsoft\Windows\CurrentVersion\Uninstall\*"
Get-ItemProperty7:21
Description: The Get-ItemProperty cmdlet gets the properties of the specified items. For example, you can use this cmdlet to get the value of the LastAccessTime property of a file object. You can also use this cmdlet to view registry entries and their values.
Syntax: Get-ItemProperty [-Path] <String[]> [[-Name] <String[]>] [-Filter <String>] [-Include <String[]>] [-Exclude <String[]>] [-Credential <PSCredential>] [<CommonParameters>]
Example: Get-ItemProperty C:\Windows
Test-Path4:17
Description: The Test-Path cmdlet determines whether all elements of the path exist. It returns $true if all elements exist and $false if any are missing. It can also tell whether the path syntax is valid and whether the path leads to a container or a terminal or leaf element. If the Path is a whitespace or empty string, then the cmdlet returns $false. If the Path is $null, an array of $null or an empty array, the cmdlet returns a non-terminating error.
Syntax: Test-Path [-Path] <String[]> [-Filter <String>] [-Include <String[]>] [-Exclude <String[]>] [-PathType <TestPathType>] [-IsValid] [-Credential <PSCredential>] [-OlderThan <DateTime>] [-NewerThan <DateTime>] [<CommonParameters>]
Get-EventLog5:45
Description: Gets events from event logs on the local or remote computers.
Syntax: Get-EventLog [-LogName] <String> [-ComputerName <String[]>] [-Newest <Int32>] [-After <DateTime>] [-Before <DateTime>] [-UserName <String[]>] [[-InstanceId] <Int64[]>] [-Index <Int32[]>] [-EntryType <String[]>] [-Source <String[]>] [-Message <String>] [-AsBaseObject] [<CommonParameters>]
Example: Get-EventLog -LogName Security -Newest 100 (Gets the newest 100 security events).
Select-String4:01
Description: The Select-String cmdlet uses regular expression matching to search for text patterns in input strings and files. You can use Select-String similar to grep in UNIX or findstr.exe in Windows.
Select-String is based on lines of text. By default, Select-String finds the first match in each line and, for each match, it displays the file name, line number, and all text in the line containing the match. You can direct Select-String to find multiple matches per line, display text before and after the match, or display a Boolean value (True or False) that indicates whether a match is found.
Select-String can display all the text matches or stop after the first match in each input file. Select-String can be used to display all text that doesn't match the specified pattern.
You can also specify that Select-String should expect a particular character encoding, such as when you're searching files of Unicode text. Select-String uses the byte-order-mark (BOM) to detect the encoding format of the file. If the file has no BOM, it assumes the encoding is UTF8.
Syntax: Select-String [-Pattern] <string[]> [-Path] <string[]> [-Context <int[]>] [-CaseSensitive] [-Culture <string>] [-Encoding <Encoding>] [-List] [-NoEmphasis] [-NotMatch] [-Quiet] [-Raw] [-SimpleMatch] [-Include <string[]>] [-Exclude <string[]>] [-LiteralPath <string[]>] [<CommonParameters>]
Example: Select-String -Path "C:\logs\security.log" -Pattern "Failed login" (Finds failed login attempts in a log file).
Out-File2:51
Description: The Out-File cmdlet sends output to a file. It implicitly uses PowerShell's formatting system to write to the file. The file receives the same display representation as the terminal. This means that the output may not be ideal for programmatic processing unless all input objects are strings.
Redirecting the output of a PowerShell command (cmdlet, function, script) using the redirection operator (>) is functionally equivalent to piping to Out-File with no extra parameters. PowerShell 7.4 changed the behavior of the redirection operator when used to redirect the stdout stream of a native command. For more information about redirection, see about_Redirection.
Syntax: Out-File [-FilePath] <string> [[-Encoding] <Encoding>] [-Append] [-Force] [-NoClobber] [-Width <int>] [-NoNewline] [-InputObject <psobject>] [-WhatIf] [-Confirm] [<CommonParameters>]
Example: Get-Process | Out-File -FilePath "C:\logs\processes.txt" (Saves process list to a file).
Invoke-WebRequest8:41
Description: The Invoke-WebRequest cmdlet sends HTTP and HTTPS requests to a web page or web service. It parses the response and returns collections of links, images, and other significant HTML elements.
Syntax: Invoke-WebRequest [-UseBasicParsing] [-Uri] <Uri> [-HttpVersion <Version>] [-WebSession <WebRequestSession>] [-SessionVariable <String>] [-AllowUnencryptedAuthentication] [-Authentication <WebAuthenticationType>] [-Credential <PSCredential>] [-UseDefaultCredentials] [-CertificateThumbprint <String>] [-Certificate <X509Certificate>] [-SkipCertificateCheck] [-SslProtocol <WebSslProtocol>] [-Token <SecureString>] [-UserAgent <String>] [-DisableKeepAlive] [-ConnectionTimeoutSeconds <Int32>] [-OperationTimeoutSeconds <Int32>] [-Headers <IDictionary>] [-SkipHeaderValidation] [-AllowInsecureRedirect] [-MaximumRedirection <Int32>] [-MaximumRetryCount <Int32>] [-PreserveAuthorizationOnRedirect] [-RetryIntervalSec <Int32>] [-Method <WebRequestMethod>] [-PreserveHttpMethodOnRedirect] [-UnixSocket <UnixDomainSocketEndPoint>] [-Proxy <Uri>] [-ProxyCredential <PSCredential>] [-ProxyUseDefaultCredentials] [-Body <Object>] [-Form <IDictionary>] [-ContentType <String>] [-TransferEncoding <String>] [-InFile <String>] [-OutFile <String>] [-PassThru] [-Resume] [-SkipHttpErrorCheck] [<CommonParameters>]
Example: Invoke-WebRequest -Uri "hxxps[://]download[.]mozilla[.]org/folder/FireFox.exe." -OutFile "C:\Users\technologyinterpret1\Downloads\FireFox.exe"
Get-Acl3:07
Description: The Get-Acl cmdlet gets objects that represent the security descriptor of a file or resource. The security descriptor contains the access control lists (ACLs) of the resource. The ACL specifies the permissions that users and user groups have to access the resource.
Beginning in Windows PowerShell 3.0, you can use the InputObject parameter of Get-Acl to get the security descriptor of objects that do not have a path.
Syntax: Get-Acl [[-Path] <String[]>] [-Audit] [-Filter <String>] [-Include <String[]>] [-Exclude <String[]>] [<CommonParameters>]
Example: Get-Acl C:\Windows\System32\notepad.exe (Shows permissions for a file notepad.exe).
Get-LocalUser3:33
Description: The Get-LocalUser cmdlet gets local user accounts. This cmdlet gets default built-in user accounts, local user accounts that you created, and local accounts that you connected to Microsoft accounts.
Syntax: Get-LocalUser [[-Name] <String[]>] [<CommonParameters>]
Example: Get-LocalUser | Where-Object {$_.Enabled -eq $false} (Gets disabled local users).
Get-LocalGroup1:15
Description: The Get-LocalGroup cmdlet gets local security groups in Security Account Manager. This cmdlet gets default built-in groups and local security groups that you create.
Syntax: Get-LocalGroup [[-Name] <String[]>] [<CommonParameters>]
Example: Get-LocalGroup -Name "Administrators"
Get-LocalGroupMember1:59
Description: The Get-LocalGroupMember cmdlet gets members from a local group.
Syntax: Get-LocalGroupMember [-Group] <LocalGroup> [[-Member] <String>] [<CommonParameters>]
Example: Get-LocalGroupMember -Group "Administrators"
Get-FileHash1:55
Description: Computes the hash value for a file.
Syntax: Get-FileHash [-Path] <String[]> [[-Algorithm] <String>] [<CommonParameters>]
Example: Get-FileHash -Path "C:\Windows\System32\notepad.exe" -Algorithm SHA256 (Gets SHA256 hash of a file).
-Algorithm accepatble values: SHA1, SHA256, SHA384, SHA512, MD5

Console Overview13:14
Tenable Product Overview5:18
Tenable One Exposure Management Platform: Provides visibility across the attack surface, prioritizes efforts to prevent attacks, and communicates cyber risk. Features include attack path analysis, exposure views, and AI-powered insights.
Tenable Cloud Security (CNAPP): Secures cloud environments by identifying and mitigating risks from misconfigurations, risky entitlements, and vulnerabilities.
Tenable CIEM (Cloud Infrastructure Entitlement Management): Secures cloud environments by addressing risks related to identities and excessive permissions.
Tenable Just in Time Access (JIT): Minimizes the cloud attack surface while maintaining developer agility.
Tenable Vulnerability Management: Identifies, prioritizes, and closes security gaps within IT infrastructures.
Tenable Security Center: Identifies and prioritizes vulnerabilities based on their potential risk to the business (on-premises solution).
Tenable Web App Scanning: Offers automated vulnerability scanning for web applications.
Tenable Patch Management: Automates patch correlation and deployment to accelerate remediation.
Tenable Enclave Security: Identifies and closes IT and container vulnerabilities.
Tenable Attack Surface Management: Provides visibility into internet-connected assets to eliminate blind spots.
Tenable Nessus: Vulnerability assessment solution for modern attack surfaces. Nessus Essentials is available for educators, students, and individuals starting careers in cybersecurity.
Tenable OT Security: Provides unified security for converged OT/IT environments, offering visibility and control over OT, IoT, and IT assets.
Tenable Identity Exposure: Finds and fixes exposures across identity environments to prevent identity-based attacks.
Terrascan: An open-source infrastructure as code scanning tool for secure cloud provisioning.
Installing Windows Agents9:31
Creating a Nessus Agent Scan3:15
Dashboards8:15
Assets5:23
Findings18:05
Sensors12:55
Reports2:40
Tags5:18
Access Control Part 13:32
Access Control Part 21:21

Requirements

No experience needed.

Description

The Cybersecurity Mentorship Program offers a training curriculum designed to provide individuals with the necessary skills to secure employment in the cybersecurity industry and continuously excel. The program covers the following topics and includes:

Essential Windows Skills for Cybersecurity, is meticulously designed to equip aspiring and current cybersecurity professionals with the crucial command-line proficiency necessary to navigate, analyze, and secure Windows environments effectively. Understanding and utilizing these fundamental Windows tools is paramount for tasks ranging from basic system administration and file manipulation to in-depth security analysis and troubleshooting. This module takes you beyond the graphical user interface, delving into the power and flexibility of the Windows command prompt (CMD) and providing an initial introduction to PowerShell. You'll gain hands-on understanding of essential commands that form the bedrock of interacting with the Windows operating system at a fundamental level.
Building upon your foundational understanding of the Windows command line, PowerShell Commands for Cybersecurity delves into the power and versatility of PowerShell, a critical scripting language and command-line shell for modern cybersecurity professionals. PowerShell offers a more robust and object-oriented approach to system administration, automation, and security-related tasks compared to the traditional CMD. Mastering these fundamental PowerShell cmdlets (pronounced "command-lets") will significantly enhance your ability to interact with and analyze Windows systems.
Fundamentals of Computer Networking, provides the essential building blocks for understanding how computers communicate and how networks function. A solid grasp of networking principles is absolutely paramount for any cybersecurity professional, as it forms the basis for understanding threats, vulnerabilities, and implementing effective security measures.
Endpoint Security, provides you with the critical knowledge and practical skills to effectively implement, manage, and leverage EDR solutions. In today's sophisticated threat landscape, traditional antivirus often falls short in detecting and responding to advanced persistent threats (APTs), ransomware, and other complex attacks. EDR provides a crucial layer of security by continuously monitoring endpoints, collecting and analyzing activity data, and enabling rapid detection and response to threats that bypass traditional defenses.
Vulnerability Management and Remediation, equips you with the essential knowledge and practical skills to proactively identify, assess, treat, and track security weaknesses within an organization's IT infrastructure. In the ever-evolving threat landscape, a robust vulnerability management program is a cornerstone of any effective cybersecurity strategy.

Our overarching goal is to empower individuals with a truly comprehensive and deeply ingrained set of practical skills, theoretical knowledge, and adaptive thinking capabilities that are absolutely essential to not only gain entry into the highly competitive cybersecurity industry but also to flourish, advance, and become influential leaders within it. We strive to cultivate a holistic understanding of the multifaceted cybersecurity landscape, going far beyond surface-level concepts to instill a profound appreciation for the interconnectedness of various security domains.

Who this course is for:

Anyone interested in learning real cybersecurity.

Cybersecurity Mentorship Program

What you'll learn

Explore related topics

Course content

Essential Windows Skills for Cybersecurity31 lectures • 52min

Networking for Cybersecurity Professionals1 lecture • 3min

PowerShell Commands for Cybersecurity18 lectures • 1hr 17min

Vulnerability Management12 lectures • 1hr 29min

Endpoint Detection and Response10 lectures • 1hr 16min

Requirements

Description

Who this course is for: