๐ Foundation Level
Build your cybersecurity fundamentals - The essential knowledge every pentester needs
Beginner LevelOverview
The Foundation Level is your entry point into the world of penetration testing and cybersecurity. This comprehensive track covers the essential knowledge and skills that form the bedrock of every successful security professional's career.
Learning Objectives
- Master networking fundamentals and protocols
- Develop proficiency in Linux and Windows systems
- Learn essential scripting languages for automation
- Understand core information security principles
- Build OSINT and reconnaissance skills
- Grasp web application basics and HTTP protocols
๐ Network Fundamentals
TCP/IP Stack
Deep understanding of the TCP/IP protocol suite, packet analysis, and network troubleshooting. Essential for any network-based security testing.
- IPv4/IPv6 addressing
- Subnetting and VLSM
- Routing and switching concepts
- Packet analysis with Wireshark
OSI Model
Comprehensive knowledge of the 7-layer OSI model and how each layer contributes to network communication and security.
- Layer-specific protocols
- Encapsulation/De-encapsulation
- Network troubleshooting methodology
- Security implications per layer
Network Protocols
Master essential protocols used in modern networks and understand their security implications.
- HTTP/HTTPS and TLS
- DNS and DNS Security
- DHCP and network services
- SNMP and network management
๐ง Linux Command Line Mastery
File System Navigation
Master Linux file system structure and navigation commands essential for penetration testing.
- Directory structure (/etc, /var, /tmp)
- File permissions and ownership
- Find, locate, and grep commands
- Text processing with sed/awk
Process Management
Understand Linux processes, services, and system monitoring for security analysis.
- ps, top, htop commands
- Process signals and control
- Service management (systemctl)
- Log file analysis (/var/log)
Network Tools
Essential command-line network tools for reconnaissance and testing.
- netstat, ss, lsof
- ping, traceroute, nslookup
- curl, wget for web testing
- nc (netcat) for network testing
๐ช Windows Security Basics
Windows Architecture
Understanding Windows operating system architecture for security testing.
- Windows Registry structure
- File system (NTFS permissions)
- User Account Control (UAC)
- Windows services and processes
PowerShell Fundamentals
Basic PowerShell skills for Windows penetration testing and automation.
- PowerShell cmdlets and syntax
- Object-oriented pipeline
- Script execution policies
- Basic security testing commands
Windows Networking
Windows-specific networking concepts and security implications.
- SMB/CIFS protocols
- Windows Authentication (NTLM/Kerberos)
- Active Directory basics
- Windows firewall and security
๐ Basic Scripting
Python for Security
Python programming fundamentals with a focus on security applications.
- Python syntax and data structures
- Socket programming
- HTTP requests with requests library
- File handling and data parsing
Bash Scripting
Shell scripting for automation and penetration testing workflows.
- Bash syntax and variables
- Control structures (if, while, for)
- Regular expressions
- Script automation and scheduling
PowerShell Scripting
PowerShell scripting for Windows security testing and automation.
- PowerShell ISE and VS Code
- Functions and modules
- Error handling
- Security-focused scripts
๐งช Hands-on Lab: Network Analysis Challenge
Objective: Analyze network traffic and identify potential security issues using Wireshark.
Duration: 2-3 hours
Skills Practiced: Packet analysis, protocol understanding, security assessment
Start Lab Exercise๐ Recommended Resources
- CompTIA Network+ Study Guide - Comprehensive networking fundamentals
- Linux Command Line and Shell Scripting Bible - Complete Linux reference
- Python Crash Course - Programming fundamentals for beginners
- Wireshark Network Analysis - Packet analysis techniques
- Windows Internals - Deep dive into Windows architecture
๐ฏ Certification Alignment
eJPT (eLearnSecurity Junior Penetration Tester)
This foundation level directly aligns with eJPT requirements:
- โ Assessment Methodologies
- โ Host & Network Auditing
- โ Host & Network Penetration Testing
- โ Web Application Penetration Testing
๐ Learning Progress
Track your foundation level progress:
Complete the sections above to track your progress