I want to be a hacker

Do not imagine the times when some student of a class or a course tells me about ‘I want to be hacker.‘. They don’t skip the first step and tell me they want to. study CyberSecurity or what readings I recommend to you to learn and deepen a little more on CyberSecurity (from that we will talk in another entry, I am in). I tell everyone the same thing: the first thing that You have to read a lot, then specialize in something that we really APASIONE, and finally keep reading but already focused on the subject we like..

What do I have to study?

I mean, that there is no manual to learn CyberSecurity just like there’s not a single subject. CyberSecurity comprises many different branches and no one is expert in all. I personally think to the branch of Security is reached by two different places: the developer who is learning how to improve your code and make it safer and more optimized and the system manager who wants to check that the systems he manages are safe in all its aspects. Not even one of the two ways is better than another, they simply complement each other. In my case, I gave the jump to

the security part after being several years as System Manager. During those years I learned a lot about Linux and Windows, services, networks… and also about Security, as once I installed a system I had to check that that system was safe before it was put into production, it was not enough to install it and put it in the latest updates, it had to be checked that it was really safe. Those years gave me the possibility to set up a small laboratory with withdrawn machines and install different operating systems to see which of them did what the company needed to do in the most efficient and safer way, so I installed many versions

different from Windows in Workstation, Windows Server, Linux, Unix, * BSD… and I read thousands of hours about secure settings, service installation, firewalls… In fact there were days that some partner asked me ‘why don’t you go home? Your day is over long ago’ and I would answer ‘is that at home I’m going to do the same and I have more bandwidth here.‘.

But also I have friends who are currently in Security who have come from the Development area. They also have a vision. different complementary to mine. Many of them are not

It’s interesting to know what a Fortigate or a ping flood, but know how to control the memory assignments to avoid a overflo buffer w and how to create a complex blind SQL consultation to exploit a vulnerability of Blind SQL Injection, things I only know how to do at the basic level.

In the company where I work not currently

There are only these two profiles, I also havepartners who are very good in networks. These. they don’t care which version of the operating system is running on the server because they know in which segments of the network the information ‘travels’ without encryption and is likely to be captured. And of course. They know how to fix it. what hardware would have to be installed for the encryption of all these communications or what configuration to modify in the firewall so that it is not possible for network users to access that confidential information.

‘Just can’t, with friends yes’

That’s why I was telling you about To specialize in something that we really APASIONE because we can’t know about everything and We’ll have to work as a team. with other people who complement us. The idea of the typical bad hacker with a hood in his dark room sailing through three-dimensional databases only belongs to the cinema. Besides the bad movies. Luckily today it seems that the screenwriters are documented more than when they wrote the film ‘Hackers‘( the only good thing in that

and we have series like Mr. Robot where some are executed explosives to access a system:

At this point you should have things a little clearer. What do you like the most about what we have said so far? Do you like developing in Java? Are you the one who spent our lives formatting and installing a new version of the operating system to test things? Or have you been administering Oracle for some time and are you very comfortable in this environment?. So focus on that and keep reading and investigating vulnerabilities, safe code, optimization, go to events where you talk about the subject, listen to different approaches, start a blog where you tell your advances,

You even make a talk! There is not a course that will teach you to be a hacker, but you can study and practice that you like so much to have enough level to prove and put to you things that no one had ever raised up to now about a specific technology. And that’s being hacker.