Stories by Abhigyan Nath on Medium

How TryHackMe’s Pre-Security Path Helped Me Kickstart My Cybersecurity Journey

Abhigyan Nath — Thu, 22 May 2025 16:21:00 GMT

I’ve always wanted to dive into cybersecurity but didn’t know where to start. When I discovered TryHackMe, I found an easy, beginner-friendly platform to learn hacking and security skills step-by-step. Their Pre-Security learning path seemed perfect to build a solid foundation.

What the Pre-Security Path Includes

The Pre-Security path is designed for absolute beginners to get familiar with cybersecurity basics. It covers topics like:

Introduction to Cyber Security
Basic Networking concepts
How the Web Works
Linux fundamentals
Security tools and concepts

It’s a great mix of theory and hands-on labs that make learning interactive and fun.

My Experience and Key Learnings

I completed several rooms in the Pre-Security path and here’s what stood out for me:

The labs were beginner-friendly and easy to follow.
I learned essential networking basics which are crucial for understanding attacks.
The Linux introduction was perfect for those new to command lines.
The hands-on exercises helped me build confidence in using real security tools.

One challenge was that some rooms require a premium subscription, which I don’t have. But even the free content was enough to get a good grasp of foundational concepts.

Why I Recommend the Pre-Security Path

Whether you’re new to cybersecurity or just want a refresher on basics, this path is a fantastic starting point. It breaks down complex ideas into manageable steps and helps build confidence through practical exercises.

The learning path helped me decide to continue my journey in cybersecurity, and I’m excited to explore more advanced topics next!

Useful Links

Check out TryHackMe: https://tryhackme.com
Explore the Pre-Security path: https://tryhackme.com/path/outline/presecurity

The Pre-Security path on TryHackMe is a must-try for beginners. It’s well-structured, engaging, and provides a solid foundation in cybersecurity. I’m thankful for the opportunity to learn on this platform and encourage others to start here too!

Thanks for reading!

️ Cybersecurity Roadmap with Certifications (Beginner → Advanced)

Abhigyan Nath — Wed, 21 May 2025 16:09:21 GMT

✅ Phase 1: Foundation (Beginner)

Goal: Learn the basics of networking, Linux, and how the internet works.

🧩 Platforms & Certifications:

TryHackMe — Pre Security Path 🏅
🔹 tryhackme.com/path/01-pre-security
🎯 Certificate + Profile Badge
Cisco — Introduction to Cybersecurity 🏅
🔹 netacad.com
🎯 Free certificate from Cisco Networking Academy
IBM Cybersecurity Fundamentals (Coursera) 🏅
🔹 coursera.org
🎯 Free via audit mode + certification if eligible

✅ Phase 2: Core Skills (Beginner → Intermediate)

Goal: Start ethical hacking hands-on and understand tools.

🧩 Platforms & Certifications:

PortSwigger Web Security Academy 🏅
🔹 portswigger.net/web-security
🎯 Badges + shareable profile
INE Intro to Cybersecurity (Free Starter Pass) 🏅
🔹 ine.com
🎯 Includes free intro courses + badges

✅ Phase 3: Specialization (Intermediate)

Goal: Choose a path (Web, PrivEsc, Network, or Red Team)

🧩 Web Hacking

TryHackMe — Web Fundamentals Path 🏅

https://tryhackme.com/path/outline/web
🔹 Certificate + Badge

Burp Suite Certified Practitioner (BSCP) 🏅 (Optional Paid)
🔹 portswigger.net
🎯 Professional-level exam

🧩 Privilege Escalation & Tools

TryHackMe — Offensive Pentesting Path 🏅
🔹 Includes PrivEsc, Metasploit, web exploits
🎯 Certificate + XP + Badge
HTB Academy — Tier 0 & Tier 1 (Free Modules) 🏅
🔹 academy.hackthebox.com
🎯 Achievements + Profile XP

✅ Phase 4: Real Pentesting & Red Team (Intermediate → Advanced)

Goal: Practice in real environments, build labs, advanced topics.

🧩 Labs & Certifications:

Hack The Box — Starting Point / Pro Labs 🏅
🔹 hackthebox.com
🎯 Ranks + Badges + Career Profile
eJPT v2 (INE) — Junior Penetration Tester 🏅
🔹 ine.com
🎯 First industry-recognized practical cert (~$10–30 via discount)

✅ Phase 5: Advanced / Expert-Level

Goal: Deep knowledge, exploit development, AD, red team operations.

🧩 Expert-Level Certifications:

TryHackMe — Red Teaming, AD, Malware Analysis Paths 🏅
🎯 Earnable badges + completion certificates
HTB — CPTS (Paid, Advanced) 🏅
🔹 Certified Penetration Testing Specialist
🎯 Professional badge & credential
OSCP — Offensive Security Certified Professional 🏅
🔹 offsec.com (Optional Paid)
🎯 Industry gold standard

🚀 Bonus: Showcase Your Progress

Create a public GitHub repo or Notion page to log each cert
Add TryHackMe & HTB profiles to your LinkedIn
Build a cybersecurity resume with badge links

Tryhackme-Lab-Links

Abhigyan Nath — Wed, 21 May 2025 03:21:25 GMT

**Intro Rooms:**
https://tryhackme.com/room/hello
https://tryhackme.com/room/howtousetryhackme
https://tryhackme.com/room/gettingstarted
https://tryhackme.com/room/welcome
https://tryhackme.com/room/tutorial
https://tryhackme.com/room/openvpn
https://tryhackme.com/room/beginnerpathintro
https://tryhackme.com/room/startingoutincybersec
https://tryhackme.com/room/introtoresearch

**Recon:**
https://tryhackme.com/room/passiverecon
https://tryhackme.com/room/activerecon
https://tryhackme.com/room/contentdiscovery
https://tryhackme.com/room/ohsint
https://tryhackme.com/room/shodan
https://tryhackme.com/room/googledorking
https://tryhackme.com/room/searchlightosint
https://tryhackme.com/room/webosint
https://tryhackme.com/room/sakura

**Scripting:**
https://tryhackme.com/room/pythonbasics
https://tryhackme.com/room/pythonplayground
https://tryhackme.com/room/intropocscripting
https://tryhackme.com/room/peakhill
https://tryhackme.com/room/javascriptbasics
https://tryhackme.com/room/bashscripting
https://tryhackme.com/room/rust
https://tryhackme.com/room/yara

**Networking:**
https://tryhackme.com/room/introtonetworking
https://tryhackme.com/room/whatisnetworking
https://tryhackme.com/room/bpnetworking
https://tryhackme.com/room/introtolan
https://tryhackme.com/room/httpindetail
https://tryhackme.com/room/dnsindetail
https://tryhackme.com/room/rfirmware

**Crypto & Hashes:**
https://tryhackme.com/room/cryptographyfordummies
https://tryhackme.com/room/crackthehash
https://tryhackme.com/room/crackthehashlevel2
https://tryhackme.com/room/passwordsecurity
https://tryhackme.com/room/agentsudoctf
https://tryhackme.com/room/bruteit

**Android:**
https://tryhackme.com/room/androidhacking101

**Forensics:**
https://tryhackme.com/room/linuxserverforensics
https://tryhackme.com/room/forensics
https://tryhackme.com/room/memoryforensics
https://tryhackme.com/room/bpvolatility
https://tryhackme.com/room/autopsy2ze0

**Wifi Hacking:**
https://tryhackme.com/room/wifihacking101

**Reverse Engineering:**
https://tryhackme.com/room/introtox8664
https://tryhackme.com/room/win64assembly
https://tryhackme.com/room/reverseengineering
https://tryhackme.com/room/reverselfiles
https://tryhackme.com/room/jvmreverseengineering
https://tryhackme.com/room/ccradare
https://tryhackme.com/room/ccghidra2
https://tryhackme.com/room/aster
https://tryhackme.com/room/classicpasswd
https://tryhackme.com/room/reloaded

**Malware Analysis**
https://tryhackme.com/room/historyofmalware
https://tryhackme.com/room/malmalintroductory
https://tryhackme.com/room/basicmalwarere
https://tryhackme.com/room/malresearching
https://tryhackme.com/room/mma
https://tryhackme.com/room/c2carnage
https://tryhackme.com/room/dunklematerieptxc9

**Steganography**
https://tryhackme.com/room/ccstego
https://tryhackme.com/room/cicada3301vol1
https://tryhackme.com/room/musicalstego
https://tryhackme.com/room/madness
https://tryhackme.com/room/psychobreak
https://tryhackme.com/room/unstabletwin

**PrivEsc:**
https://tryhackme.com/room/linprivesc
https://tryhackme.com/room/linuxprivesc
https://tryhackme.com/room/linuxprivescarena
https://tryhackme.com/room/windows10privesc
https://tryhackme.com/room/windowsprivescarena
https://tryhackme.com/room/linuxagency

**Windows:**
https://tryhackme.com/room/windowsfundamentals1xbx
https://tryhackme.com/room/windowsfundamentals2x0x
https://tryhackme.com/room/windowsfundamentals3xzx
https://tryhackme.com/room/investigatingwindows
https://tryhackme.com/room/investigatingwindows2
https://tryhackme.com/room/investigatingwindows3
https://tryhackme.com/room/blueprint
https://tryhackme.com/room/vulnnetactive
https://tryhackme.com/room/anthem
https://tryhackme.com/room/blue

**Active Directory:**
https://tryhackme.com/room/attacktivedirectory
https://tryhackme.com/room/postexploit
https://tryhackme.com/room/ustoun
https://tryhackme.com/room/enterprise
https://tryhackme.com/room/raz0rblack

**PCAP Analysis**
https://tryhackme.com/room/h4cked
https://tryhackme.com/room/c2carnage
https://tryhackme.com/room/cct2019
https://tryhackme.com/room/overpass2hacked

**BufferOverflow:**
https://tryhackme.com/room/bufferoverflowprep
https://tryhackme.com/room/gatekeeper
https://tryhackme.com/room/chronicle
https://tryhackme.com/room/introtopwntools

**Special Events:**
https://tryhackme.com/room/hackerofthehill
https://tryhackme.com/room/25daysofchristmas
https://tryhackme.com/room/learncyberin25days
https://tryhackme.com/room/adventofcyber2
https://tryhackme.com/room/adventofcyber3
https://tryhackme.com/room/cyberweek2021
https://tryhackme.com/room/tickets1
https://tryhackme.com/room/tickets2

PENETRATION TEST OR SECURITY EVALUATION GUIDE(FOR BEGINNERS)::

Abhigyan Nath — Fri, 01 Dec 2023 10:14:50 GMT

ENUMERATION:

1. First step is the enumeration (documentation of current state of the target)

2. Learn as much as possible about it.

PORTS :

1. Scanning the open ports.

2. Every server uses ports to serve data to other clients

3. Find the purpose and vulnerabilities of the target on the network

NMAP :

Nmap stands for Network Mapper.
Nmap command: sudo nmap -sV (IP)
-sV is service detection flag to determine the name and description of the identified services.

PING :

Ping the target’s IP address to see if our packets reach their destination.

After four successful replies from the target, we can determine that our connection is formed and stable.

Ctrl + C to cancel the ping command.

Use different tools or scripts to access the contents of the target.
Do research, use google and find the information.
Following the completion of the scan, identify port( eg: tcp) and its state( eg: open),
Exploit the service using the required commands.
Find Weakpoints / loopholes.