PiSence

Learn Cybersecurity — Roadmaps, Labs & Practical Steps

Structured learning path for students, developers and engineers. Practical labs, role-based roadmaps and a small quiz to check understanding.

Progressive Curriculum

Foundations (0 → 1 month)

  • Basic computer and networking concepts (IP, DNS, HTTP/S).
  • Intro to security principles: CIA triad, least privilege, attack surface.
  • Basic Linux command line and Windows essentials.
  • Safe online habits: phishing recognition, password hygiene, MFA.

Applied Basics (1 → 3 months)

  • Intro to web security (OWASP Top 10) and simple vulnerability testing.
  • Intro to packet inspection (Wireshark) and basic network scanning (Nmap).
  • Hands-on: build a lab with a VM and intentionally vulnerable app (e.g., Juice Shop).

Intermediate (3 → 9 months)

  • Secure coding basics and code review principles.
  • Authentication, sessions, cookies, CORS, and API security.
  • Intro to threat modelling and basic incident handling.
  • Hands-on: CTF exercises, capture-the-flag platforms, bug bounties (beginner tracks).

Advanced / Career (9+ months)

  • Network exploitation, reverse engineering basics, and forensics foundations.
  • Cloud security, IAM, and infrastructure hardening (AWS/Azure/GCP basics).
  • Red team vs blue team paths, certifications mapping (e.g., CompTIA Security+, OSCP, eJPT).

Roadmap by Role

Student / Beginner

  1. Foundations
  2. Build a home lab
  3. Complete beginner CTFs
  4. Learn Git & Linux

Developer

  1. Secure coding patterns
  2. SAST tools (SonarQube)
  3. Threat modelling
  4. Secure CI/CD pipelines

Sysadmin / Cloud Engineer

  1. Network fundamentals
  2. Harden servers
  3. IAM best practices
  4. Cloud posture management

Aspiring Red-teamer / Researcher

  1. Exploit dev basics
  2. Reverse engineering
  3. Binary analysis tools
  4. Participate in CTFs and write-ups

Tools & Learning Paths

Burp Suite (Community)
HTTP intercepting proxy for testing web apps
Open resource
OWASP ZAP
Free web security scanner and intercepting proxy
Open resource
Juice Shop
Intentionally insecure app for practice
Open resource

Click a category to reveal curated tools & starter links for that speciality.

Quick Self-Check

Which of these is strongest for account protection?

Frequently Asked Questions

This page is a practical learning guide and not a certification pathway by itself. For career transitions, combine hands-on practice, formal coursework and mentorship.