
Welcome to the Hands-On Training for CompTIA Security Course.
This course equips learners with foundational cybersecurity knowledge and practical skills through interactive, hands-on activities.
By the end of this course, students will have developed the technical proficiency needed to set up secure virtual environments, conduct network reconnaissance, and master essential Linux file manipulation techniques.
Participants will gain a strong understanding of critical cybersecurity tools and methodologies, empowering them to analyze, secure, and manage systems effectively in alignment with the CompTIA Security+ certification objectives.
This is the Beginner course of a comprehensive Cybersecurity program that includes Intermediate and Advanced levels. Start with Module 1: Setting Up Your Environment, and progress through the Beginner course at your own pace. Once complete, continue onto the Intermediate and Advanced topics within the curriculum.
The labs follow the I Do, We Do, You Do format
I Do: I’ll guide you through each exercise with step-by-step instructions, complemented by side-by-side video demonstrations. This approach ensures clarity and hands-on understanding.
I Do: Please keep in mind, though, that this class focuses on teaching concepts, not necessarily exact steps. For example, at the time of this video, we’re using the latest or most stable release of the software. By the time you watch, there may be slight changes—and that’s a good thing! It encourages adaptability and critical thinking.
We Do: You can follow along with the exercises by pausing, speeding up, or slowing down the video at your own pace.
You Do: Lastly, the "You Do" model is where the magic happens!
Recreate the testing environment on your own.
Engage in self-study using the companion guide and related materials.
Follow the DIY approach by downloading the companion guide and all the free software packages used in this course. (No paid subscriptions are required.)
At every step, we aim to "walk the talk" and ensure you have the resources and confidence to succeed.
We’re excited to have you join us on this learning journey. Remember, cybersecurity is a dynamic field that thrives on curiosity, critical thinking, and continuous learning. Embrace each challenge, and by the end of this course, you’ll not only gain technical skills but also the confidence to apply them effectively. Let’s get started—your path to mastering cybersecurity begins now!
Main Differences Between 601 and 701:
Focus Areas:
The 601 exam emphasizes Operations and Incident Response, where you learn tasks like using tools such as ping, traceroute, and nslookup. These are essential for identifying and responding to incidents.
The 701 exam shifts to Security Operations, focusing more on proactive and continuous security measures, like automation, orchestration, and cloud-based security.
Practical Applications:
While 601 leans toward reactive strategies—what to do after a security event—the 701 dives into ongoing operations, teaching you how to maintain and secure systems consistently.
Tools Used:
The specific tools covered in the 601 may or may not appear in the 701 series, as the newer objectives reflect evolving industry practices. However, these tools remain foundational in the cybersecurity world.
Why You Should Still Study 601 Tools:
Even if you’re aiming for the 701, mastering the tools and tasks in the 601 objectives is an excellent idea. Here’s why:
Applicable Across Certifications: Tools like ping, traceroute, and nslookup are not just limited to Security+ 601. You’ll see them in other certifications like Network+, Cisco’s CCNA, and advanced cybersecurity certifications.
Widely Used in Real-World Scenarios: These tools are staples in the IT and cybersecurity fields. Whether you’re troubleshooting network issues, analyzing security incidents, or simply verifying connectivity, they’re used regularly.
Foundational Knowledge: Learning these tools gives you a strong foundation for more advanced cybersecurity tasks. For example:
Using ping helps you understand ICMP traffic.
Traceroute maps network paths, a critical skill in identifying potential network weaknesses.
nslookup or dig assists in DNS analysis, which is crucial for detecting malicious redirections.
Prepares You for Industry Expectations: Employers value candidates who can confidently apply these tools in operational tasks. Mastering them shows you’re ready to hit the ground running in a real-world IT or cybersecurity role.
Develops Troubleshooting and Critical Thinking Skills: These tasks teach you to methodically diagnose and resolve issues, skills that are invaluable for security analysts, network administrators, and IT professionals.
Cost-Effective Learning: Tools like ping and traceroute don’t require advanced software or hardware, making them accessible and budget-friendly for practice.
Versatility Across Roles: Beyond cybersecurity, these tools are widely used in networking, system administration, and even helpdesk roles, opening doors to multiple career paths.
So, while the CompTIA Security+ 701 focuses on modern, ongoing security operations, the tools and tasks in the 601 are timeless and incredibly valuable. Studying them not only prepares you for other certifications but also equips you with practical, real-world skills that employers look for.
By mastering these tools, you’re setting yourself up for success in your cybersecurity journey—no matter which exam you choose to take. Thanks for listening, and happy studying!
Welcome to Creating Your Cybersecurity Playground. This module introduces students to essential tools and techniques for building and managing a secure virtual environment. Through guided activities, students gain practical skills that serve as a foundation for deeper exploration in cybersecurity.
Course Objectives - By the end of this course, students will be able to:
Set Up a Virtual Environment Using VirtualBox
Learn the step-by-step process to install and configure VirtualBox, enabling a safe and isolated space for cybersecurity experimentation.
Install and Configure Kali Linux for Penetration Testing
Understand how to set up Kali Linux, a leading tool for penetration testing, and explore its features and utilities for ethical hacking.
Configure Ubuntu for Cyber Defense
Develop skills to secure an Ubuntu operating system by implementing robust defense measures, enhancing its resilience against threats.
Deploy and Configure pfSense as a Firewall Solution
Gain hands-on experience in installing pfSense, a widely trusted open-source firewall, and setting up basic configurations.
Apply Advanced pfSense Firewall Rules for Enhanced Security
Learn to configure firewall rules within pfSense, ensuring comprehensive network protection and efficient traffic management.
This course is designed to inspire curiosity and build confidence as students take their first steps into the world of cybersecurity. Each topic is presented in a way that is approachable, ensuring students understand the importance of securing digital spaces while gaining valuable technical skills.
In this lesson, we'll set up your personal Cybersecurity Playground using VirtualBox. The goal is to create a secure and isolated environment where you can run different operating systems. This will provide you with a safe space to test and experiment with cybersecurity commands, settings, concepts, and ideas.
Throughout the course, we'll work with Kali Linux, an advanced Linux distribution specifically designed for Penetration Testing and Security Auditing. We'll also install target computers that we can safely attack. By the end, you'll have a Cybersecurity Playground where you can practice and gain practical proficiency in the 4.0 Operations and Incident Response section of the CompTIA Security+ Exam. This section focuses on using the appropriate tools to assess organizational security.
It all starts with VirtualBox, so let's kick things off. What exactly is VirtualBox?
► What: VirtualBox is a software that enables the creation and management of virtual machines on a host computer.
► Who: VirtualBox is used by individuals, developers, and IT professionals.
► When: VirtualBox can be used at any time, as it provides virtualization capabilities on various operating systems.
► Where: VirtualBox can be installed and used on different platforms, including Windows, macOS, Linux, and Solaris.
► Why: VirtualBox is used for various purposes such as testing software, running multiple operating systems on a single machine, and creating isolated development environments.
► How: VirtualBox achieves virtualization by emulating hardware components and providing a virtual environment where guest operating systems can run independently of the host system. The rest of this video is on how VirtualBox Works
► How: Well the how is what this video is all about, so lets get into it!
First, you'll need the companion guide, which you can find through the link in the show notes below.
In this lesson, we'll continue to setup your personal Cybersecurity Playground using Kali Linux. This will provide you with a safe space to test and experiment with cybersecurity commands, settings, concepts, and ideas.
Throughout the course, we'll work with Kali Linux, an advanced Linux distribution specifically designed for Penetration Testing and Security Auditing. We'll also install target computers that we can safely attack. By the end, you'll have a Cybersecurity Playground where you can practice and gain practical proficiency in the 4.0 Operations and Incident Response section of the CompTIA Security+ Exam. This section focuses on using the appropriate tools to assess organizational security.
It all starts with Kali Linux so let's kick things off.
► What: Kali Linux is a Debian-based Linux distribution that provides an advanced platform for penetration testing, digital forensics, and ethical hacking.
► Who: Kali Linux is primarily used by cybersecurity professionals, ethical hackers, and penetration testers.
► When: Kali Linux was first released in March 2013 and continues to be updated with new versions and features.
► Where: Kali Linux can be installed on various hardware platforms and is widely used around the world by individuals and organizations involved in cybersecurity.
► Why: Kali Linux is used for security testing and vulnerability assessment to identify and fix potential weaknesses in computer systems, networks, and applications, helping to strengthen overall cybersecurity defenses.
► How: Kali Linux provides a comprehensive suite of tools, including security auditing tools, password crackers, network analyzers, and wireless testing tools, to facilitate various aspects of cybersecurity testing and analysis.
First, you'll need the companion guide, which you can find through the link in the show notes below.
In this lesson, we will download, install, and configure the Ubuntu desktop environment.
We have reached a point in the series of sessions where we require a target computer to safely conduct port scans using tools like nmap, hping3, sn1per, and other cybersecurity tools. It is crucial to never direct these tools towards computers that you do not own or do not have permission to scan. Doing so may be considered an act of aggression.
Initially, we began with VirtualBox and subsequently installed Kali Linux as our Offensive Security platform. Now, we need a target computer. Enter Ubuntu.
► What: Ubuntu is a popular open-source desktop operating system.
► Who: Ubuntu is developed and maintained by Canonical Ltd. and a community of volunteers.
► When: The first version of Ubuntu was released in October 2004.
► Where: Ubuntu is primarily used on personal computers and is available for free download and installation.
► Why: Ubuntu aims to provide a user-friendly, secure, and customizable operating system based on the principles of open-source software.
► How: Ubuntu is built on the Linux kernel and uses the GNOME desktop environment, providing a graphical interface and a wide range of software applications. The rest of the "how" is what this video is all about, so let's get into it!
First, you'll need the companion guide, which you can find through the link in the show notes below.
In this lesson, we'll continue with the installation and configuration of pfSense, more specifically, we will implement Firewalling.
Our mission is simple: restrict the 172.16.1.0/16 network from pinging 8.8.8.8, but allow ICMP traffic to/from other hosts. In this fake scenario, we are going to act as if we received a complaint from the owners of Google’s DNS and they asked us to restrict ICMP traffic from the pings from 172.16.1.0/16. This is part of "putting it all together" set of tasks. So, what is Firewalling?
► What: Firewalling refers to the process of implementing and managing a network security system using the pfSense open-source firewall distribution.
► Who: Network administrators and IT professionals are responsible for configuring and managing the pfSense firewall.
►When: Firewalling is an ongoing process that needs to be in place whenever the firewall is active, typically whenever the network is operational.
►Where: The firewall is deployed on the network's edge or at strategic points within the network to control the flow of traffic between different network segments.
►Why: The main purpose of firewalling is to enhance network security by regulating incoming and outgoing traffic, protecting against unauthorized access, and preventing malicious attacks.
►How: Firewalling in is achieved through the configuration of rules, which define what types of traffic are allowed or denied based on specific criteria such as source and destination IP addresses, ports, and protocols. This enables the firewall to inspect and control network traffic effectively. The rest of the "how" is what this video is all about, so let's get into it!
► The rest of the "how" is what this video is all about, so let's get into it!
To get started, grab the companion guide from the link in the show notes below
Congratulations on completing the "Creating Your Cybersecurity Playground" module! ?
You’ve built a strong foundation in setting up and managing secure virtual environments—a crucial step in developing practical cybersecurity expertise. Keep practicing, stay curious, and continue honing your skills as you progress toward certification success. The cybersecurity field thrives with dedicated professionals like you! ?
Welcome to the Cybersecurity+ Hands-On Training Course!
In this module, "Network Reconnaissance and Discovery" you will introduces learners to essential network diagnostic and analysis tools such as tracert, ping, nmap, and netstat. Students will practice gathering DNS and IP information, mapping network paths, and analyzing open ports and connections—all while learning how these tools are applied ethically in cybersecurity investigations.
Let’s dive in and get started!
Welcome to the Cybersecurity+ Hands-On Training Course!
In Module 3, "File Manipulation," you will explore essential Linux commands and tools for managing and securing system files. Through hands-on exercises, you’ll develop skills in viewing and filtering file contents, logging system events, and managing file permissions—all critical for maintaining strong system security.
Let’s jump in and start building your expertise! ?
In this lesson, we will review key Linux commands used in this course.
We are currently in the File Management section and will focus on important Linux commands that will be applied throughout the remainder of this course, as well as in the Intermediate and Advanced courses. While many of these commands are not explicitly tested, understanding them is still valuable for building a solid foundation.
Quick-reference guides are particularly useful for saving time and improving accuracy.
Please note:
Different Linux Distributions: Debian, Red Hat, SUSE
Command Variations: Linux commands are generally similar across distributions but differ based on tools, package managers, and system configurations.
Debian-Based Distributions: Examples include Ubuntu and Kali Linux.
Scope of Lesson: This is not an exhaustive lesson on Linux; it merely scratches the surface.
Additional Resources: Enhance cheat sheet effectiveness with resources like man pages, official documentation, courses from the library, forums, and above all. Practice makes permanent .
This lesson is part of a video series that prepares you for the hands-on portion of the CompTIA Security+ exam and is designed to give you hands-on experience with the Operations and Incident Response section of the exam. So, lets get started.
To get started, grab the companion guide from the link in the show notes below.
In this lesson, we will use the cat utilities to assess organizational security.
We are in the cat portion of the video series. This lesson is part of a video series that prepares you for the hands-on portion of the CompTIA Security+ exam and is designed to give you hands-on experience with the Operations and Incident Response section of the exam. So, what is the cat command?
► What: The cat command is used in Linux to concatenate and display file contents
► Who: System administrators, developers, and anyone working with text files in Linux
► When: It is used when you need a quick preview of a file's content.
► Where: It’s Primarily in Linux/Unix terminal environments, within scripts, or directly in the command line.
► Why: To quickly inspect or verify files without loading the entire content.
► How: By typing cat followed by the filename(s) or options in a Linux terminal
►The rest of the 'how' is what this video is all about, so let's get into it!
To get started, grab the companion guide from the link in the show notes below.
In this lesson, we will use the head and tail utilities to assess organizational security.
We are in the head and tail portion of the video series. The head and tail utilities are literally two sides of the same coin: one shows the beginning of a file, and the other reveals the end, making them perfect complements for file content analysis, so it makes sense to analyze them together.
This lesson is part of a video series that prepares you for the hands-on portion of the CompTIA Security+ exam and is designed to give you hands-on experience with the Operations and Incident Response section of the exam. So, what are the head and tail utilities.
► What: The head command displays the first few lines of a file or standard input, while the tail command displays the last few lines
► Who: System administrators, developers, and anyone working with text files in Linux
► When: Used when you need a quick preview of a file's content.
► Where: Primarily in Linux/Unix terminal environments, within scripts, or directly in the command line.
► Why: To quickly inspect or verify files without loading the entire content.
► How: By running head <filename> or piping output from another command (e.g., cat file | head).
►The rest of the 'how' is what this video is all about, so let's get into it!
To get started, grab the companion guide from the link in the show notes below.
In this lesson, we will use the grep utility to assess organizational security.
We are in the grep portion of the video series. This lesson is part of a video series that prepares you for the hands-on portion of the CompTIA Security+ exam and is designed to give you hands-on experience with the Operations and Incident Response section of the exam. So, what is the grep command?
► What: Grep stands for Global Regular Expression Print. A Linux command-line tool used to search for patterns in text files.
► Who: Anyone using Linux systems, including system administrators, developers, and data analysts.
► When: When searching for specific text, patterns, or strings in one or more files.
► Where: Within the Linux command-line interface or scripts.
► Why: To efficiently locate and filter text, saving time in large files or datasets.
► How: By executing grep followed by the desired pattern and the filename(s), e.g., grep "pattern" file.txt.
►The rest of the 'how' is what this video is all about, so let's get into it!
To get started, grab the companion guide from the link in the show notes below.
In this lesson, we will use the chmod utility to assess organizational security.
We are in the chmod portion of the video series. This lesson is part of a video series that prepares you for the hands-on portion of the CompTIA Security+ exam and is designed to give you hands-on experience with the Operations and Incident Response section of the exam. So, what is the chmod command?
►What: The chmod command is used to change the file or directory permissions in Linux.
►Who: It is typically used by users with sufficient privileges, such as the file owner or a superuser.
►When: It is used when you need to modify access rights for a file or directory to control read, write, or execute permissions.
►Where: It is executed in the Linux terminal within the directory containing the file or directory to be modified (or by specifying the path).
►Why: It ensures appropriate access control, preventing unauthorized users from reading, modifying, or executing files and directories.
► How: By running the chmod, command followed by the message or options,
►The rest of the 'how' is what this video is all about, so let's get into it!
To get started, grab the companion guide from the link in the show notes below.
In this lesson, we will use the logger utility to assess organizational security.
We are in the logger portion of the video series. This lesson is part of a video series that prepares you for the hands-on portion of the CompTIA Security+ exam and is designed to give you hands-on experience with the Operations and Incident Response section of the exam. So, what is the logger command?
► What: The logger command is a utility that writes messages to the system log.
► Who: Any user or process with appropriate permissions can use logger to log messages.
► When: It is used whenever there is a need to record events, errors, or custom messages in the system logs.
► Where: The messages are logged to the system log file, typically located at /var/log/syslog or /var/log/messages, depending on the Linux distribution.
► Why: It helps in monitoring, debugging, and maintaining a record of events for system administration or troubleshooting.
► How: By running the logger, command followed by the message or options,
►The rest of the 'how' is what this video is all about, so let's get into it!
To get started, grab the companion guide from the link in the show notes below.
Congratulations on completing the "File Manipulation" module! ?
You’ve gained valuable expertise in using Linux commands to manage and secure system files. From viewing and filtering file contents to logging system events and controlling file permissions, you’ve mastered critical skills essential for maintaining robust system security.
Keep applying these skills, stay curious, and continue advancing toward your cybersecurity goals. Your dedication is paving the way for success in this ever-evolving field. Great job
Congratulations! ? You've officially completed the Hands-On Training for CompTIA Security+ beginner course! Take a moment to celebrate this achievement—it’s a significant milestone in your journey toward mastering cybersecurity.
Over the past few sessions, you've gained hands-on experience in critical areas like:
Setting up and securing virtual environments to simulate real-world scenarios,
Performing network reconnaissance and analyzing vulnerabilities, and
Mastering essential Linux commands to manage and secure systems effectively.
These skills are not just theoretical; they are the practical, real-world tools that form the backbone of cybersecurity. You should be proud of how far you’ve come.
But remember, this is just the beginning. The cybersecurity landscape is constantly evolving, and staying ahead requires continuous learning and skill-building. That’s why I want to encourage each of you to take the next step and enroll in the Intermediate Hands-On Training for CompTIA Security+ course.
In the intermediate course, you’ll:
Deepen your understanding of advanced cybersecurity tools and techniques,
Tackle more complex scenarios to enhance your problem-solving skills, and
Prepare even more effectively for the CompTIA Security+ certification.
Whether you’re pursuing a career in cybersecurity, transitioning from IT, or simply exploring this exciting field, the intermediate course is designed to take your expertise to the next level.
You’ve already proven that you have what it takes to succeed. Don’t let this momentum go to waste. Keep building on the strong foundation you’ve created here.
Once again, congratulations! I’m proud of the effort you’ve put into this course, and I can’t wait to see what you achieve next. Let’s keep going—together.
Thank you, and see you in the next course!
The Hands-On Training for CompTIA Security+ | Gain Practical Proficiency course equips learners with foundational cybersecurity knowledge and practical skills through interactive, hands-on activities. By the end of this course, students will have developed the technical proficiency needed to set up secure virtual environments, conduct network reconnaissance, and master essential Linux file manipulation techniques. Participants will gain a strong understanding of critical cybersecurity tools and methodologies, empowering them to analyze, secure, and manage systems effectively in alignment with the CompTIA Security+ certification objectives.
The "Hands-On Training for CompTIA Security+ | Gain Practical Proficiency" course is designed to provide aspiring cybersecurity professionals with a practical, interactive learning experience. This beginner-friendly course focuses on building technical skills and confidence through real-world scenarios and hands-on activities.
In Module 1, "Welcome to Creating Your Cybersecurity Playground," students will learn how to set up and manage secure virtual environments using industry-standard tools like VirtualBox, Kali Linux, Ubuntu, and pfSense. This foundational module sets the stage for deeper exploration into cybersecurity practices.
In Module 2, "Network Reconnaissance and Discovery," introduces learners to essential network diagnostic and analysis tools such as tracert, ping, nmap, and netstat. Students will practice gathering DNS and IP information, mapping network paths, and analyzing open ports and connections—all while learning how these tools are applied ethically in cybersecurity investigations.
In Module 3, "File Manipulation," students will dive into key Linux commands and tools for managing and securing system files. Through practical exercises, they will gain expertise in viewing and filtering file contents, logging system events, and controlling file permissions to maintain robust system security.
This course is ideal for individuals pursuing the CompTIA Security+ certification or seeking to build a strong foundation in cybersecurity. By the end of the course, students will have gained practical, hands-on experience with the tools and techniques necessary for securing systems, networks, and data in today’s digital landscape.