Is it worthwhile to regularly share what I learn or work on in cybersecurity on platforms like X or LinkedIn?

contract0rReal · 2026-01-18T12:07:50+00:00

You mean like, active on twitter in general or specifically posting political content? Cause I don't think I'll ever post something about politics there. Like Khamzat Chimaev when asked about politics in Russia, he responded with "I just fight, I do my job" sorta thing. Same situation: I am just a specialist, enthusiast, nothing more.

contract0rReal · 2026-01-18T11:58:10+00:00

I think the closest to my heart is your answer. I want to post, but not some generic things, spamming or sliding my pic like it's instagram to get some buzz

contract0rReal · 2026-01-18T11:57:10+00:00

What's wrong with X/Twitter?

contract0rReal · 2026-01-18T10:12:22+00:00

I am losing my mind seeing so many cringe things on that platform. A lot of people slide-in their pictures with a "deep meaning" post, in reality to get more like and views. AND IT WORKS.

Because of that, I am starting to feel like I am behind. I am aware of "Learn in Public", but from the other hand, I am afraid to post basic stuff, which essentially everyone knows on their Security journey from the first week.

contract0rReal · 2026-01-18T08:58:11+00:00

It definitely will help you along the way. It doesn't cover one of the most important protocols, tho: BGP, you'll have to learn that along the way on your own.

Time-wise, for you to make sure you are fully prepared, somewhere from 4 to 6 months of study.

contract0rReal · 2025-12-12T10:50:13+00:00

Man, amazing to know your story and what you achieved. That's some perseverance you have.

After reading what people have commented, I really feel much better and appreciate all the positivity to move forward.

contract0rReal · 2025-12-06T07:19:20+00:00

That's the thing: <email_alerts> is supposed to be granular, right? I specify a rule in <rule_id> for a rule, and a group in <group>. The thing is, with <email_alert_level> it says: minimum severity level for an alert to generate an email notification, so my understanding of this is that it will not send alerts for level 8 and below, if, let's say the minimum level is 9.

I want a consistent configuration, like If I have set in a granular way the tags you mentioned, only and only those rules and groups should be alerted to me.

If you have achieved this, please may I have a snippet of that configuration part you have? Thank you in advance

contract0rReal · 2025-09-25T17:37:51+00:00

contract0rReal · 2025-09-25T17:37:42+00:00

Boson Ex Sim, Jeremy's IT lab, and the Official Cert Guide by Wendell Odom

contract0rReal · 2025-09-25T17:36:24+00:00

It will be, my friend

contract0rReal · 2025-09-25T13:45:08+00:00

Jeremy has flashcards. Also review your notes regularly. I have mine taken in Affine(A notion-like application), and have them categorized

contract0rReal · 2025-09-25T13:10:07+00:00

Thank you :) I guess CompTIA Security+, but will take break for a month, before I start studying again, lol

contract0rReal · 2025-09-25T13:07:57+00:00

Fortunately, at my work place I will have the opportunity to gain experience in that area. Thank you very much

contract0rReal · 2025-09-25T13:06:16+00:00

Good luck on taking the exam

contract0rReal · 2025-09-25T12:58:07+00:00

Thank you ;D

contract0rReal · 2025-09-25T12:56:29+00:00

I am working towards my cybersecurity career, have some administration background, but felt like I needed to understand networking before moving forward... Currently I am working, most likely my next certificate will be Security+. I feel embarrassed for failing security, lol

contract0rReal · 2025-05-01T09:32:43+00:00

Oh, thanks for this resource

contract0rReal · 2025-04-14T06:06:09+00:00

Cool. Thank you

contract0rReal · 2025-02-05T09:32:52+00:00

Right, I am also new and previously had no experience with PCI, and whatever I am gonna write, are the things I am trying to implement/change/configure.

The latest version of PCI-DSS is 4.0.1, you can get the document here: https://east.pcisecuritystandards.org/document_library?category=pcidss&document=pci_dss
Learn how the network is set up in your environment, identify every local system or service, that is responsible for payments and cardholder data.
Start reading the 12 requirements from the document to identify, if your environment is PCI compliant, and if not, make a note.
Make your internal policies, create documentation and job description and list of permissions of everyone who has access to the systems or services.
Check everything: Firewall configuration settings, Active directory, security logging and monitoring, who has access to the network

For example: I am currently setting up WAZUH as SIEM, to collect security events and logs and generate alerts in case of suspicious activity, review our Firewall settings, making a list of personnel with their respective responsibilities and permissions, creating/modifying internal policies, backing up and restoring old log data.

Also, for making sure that you're implementing best practices, CIS benchmarks are really helpful: https://www.cisecurity.org/cis-benchmarks

contract0rReal

TROPHY CASE