>>109105405
Demand for security experts will only increase as more companies deploy slop.

>>109105517
> security experts? you mean the guys who'll be cleaning up after the slop they helped deploy

>>109105405
Generally to know how to break a system you first need to know how it's made. There's nothing special about cyber security, just have a deep understanding of the technology and you'd know how to crack it. It's not a path where you'd learn some basic utils on a kali linux VM and become le 1337 h4x0r saar robot.

>>109105621
>you mean the guys who will slop up the slop they helped deploy?

>>109105660
true
the core of 'hacking' never really have changed much

>>109105660
You make it sound like most attacks are anything but jeets sending phishing links to retarded boomers

>>109105688
>You make it sound like most attacks are anything but exploiting jeetcode full of vulnerabilities and jeets sending phishing links to retarded boomers

>>109105405
I work in digital forensics as a consultant (I've another job) and I recommend it. A lot of swe/devops/cs/etc would be perfectly capable of doing the job but they refuse to even look at it because it require human interaction (talking to lawyers, judges, prosecutors, etc.).

From a technical POV the job consists on doing data recovery (but knowing where to look) and wireless analysis (more rare but happened a couple of times in my career). Personally, I like the job, it pays well and since I'm a consultant I can also do another job. HackTheBox should have some CTF designed specifically for forensics, but I'd suggest to learn on your own.

If you have questions just ask and I'll try to help you out.

>>109105405
It depends anon but regardless of what you choose hands on practice will always be king.
For learning purposes specifically I think pwn.college is simply better. You have a structured curriculum on a great variety of topics (including forensics), they give you that little bit of theory that you might need to understand what is going on but aside from that you just start a challenge and jump into it and try to figure shit out by yourself, so from a purely educational perspective it's simply a more efficient use of your time, you focus on critical vulnerabilities and important CS concepts with no bullshit, they are designed to be used in a college class setting by ASU and people who know what they are doing. So if your goal is to learn as much as possible in a structured way where one thing builds on the previous thing then yeah it's probably your best option if you stick with it. For web specifically you have PortSwigger's Web Security Academy. Alternatively I'm pretty sure you could find some labs that are focused only on digital forensics if that's what you want.

Boot2root CTFs (which is different from Jeopardy CTFs that are split into specific categories like reverse engineering, web, forensics etc) such as THM/HTB also have some kind of structure (academy on HTB, learning paths on THM) but the issue is that
1) you might just waste time doing the same thing over and over again, what's the point of wasting 10+ minutes to run some scans when you could use that time to actually learn something new instead (this is less related to what you want to study but there are of course challenges focused on that as well)
2) not all rooms/challenges are designed by professionals/educators which can lead to low quality rooms that only give you a fake sense of progress but you don't internalize much
3) some content is paywalled

Do you create a temp directory on a VPN with an alias to publish your work?

>>109106010
GitHub profile*

>>109105405
If you can get a security clearance then it is a $250k a year salary in the USA.

>>109105688
Sure, you can be a skid with good social engineering and hack even the most secure systems.

>>109105879
thanks bro
any books/websites/projects you would specifically recommend?