Sabitlenmiş Tweet
XXIII
8.5K posts
XXIII
@Maskoff023
SOC Analyst (Blue Team) Documenting my journey from beginner → pro SIEM | Log Analysis | Threat Detection Open to opportunities
Lagos Nigeria Katılım Eylül 2024
1.6K Takip Edilen1.6K Takipçiler
XXIII retweetledi
Cisco CCNA is legit.
Even outside cybersecurity, it gives you strong networking knowledge that helps you understand how real environments actually work. Many security beginners skip networking and struggle later because of it.
OSCP is legit.
Difficult, respected, and heavily practical. It doesn’t hold your hand. A lot of people fail it the first time, which is exactly why employers respect it.
Google Cybersecurity Certificate is legit for beginners.
Good for absolute newcomers trying to understand cybersecurity basics, terminology, and career paths before diving deeper into technical labs.
Blue Team Level 1 (BTL1) is legit.
One of the few certifications that focuses heavily on actual SOC analyst skills like log analysis, incident response, phishing investigation, and SIEM usage.
Cybersecurity is not a shortcut career. Real growth usually comes from consistent practice, labs, networking knowledge, and hands-on troubleshooting.
The uncomfortable truth:
The cybersecurity industry respects skills more than hype.
You can own 10 certifications and still fail a real incident investigation if you never practised.
Ahmedkhan@Ahmed___khaan
CompTIA Security +, is legit it's one of the entry level foundational Certificates to have. CEH is a SCAM, it's low quality and overpriced and its doesn't actually gives you any skills to make you a hacker. HackTheBox is legit one of the best practical hands-on training platforms for beginners, intermediate and advanced. TryHackMe is legit, another excellent hands-on platforms for beginners. ISO27001 Lead Auditor is legit, it shows that you understand ISO27001 industry standards and you get it as part of GRC Mastery Training. SANS GIAC is legit, it's an excellent training, however it's really really overpriced. Bootcamps that guarantee job is a SCAM, there's no such thing as guaranteeing jobs infact all Cybersecurity bootcomps are overpriced low in quanlity, avoid them at all cost. Following @Ahmed___khaan legit, one of the best you can do for you Cybersecurity career.
English
When I started learning networking in cybersecurity, I hated it so much 😭
Subnetting alone used to ruin my mood. IP addresses, routing tables, ports, VLANs… it all looked like pure confusion to me.
I was seriously searching things like: “Can I do cybersecurity without networking?” “Which cybersecurity role doesn’t need networking?” 😅
Instead of learning networking, I was busy looking for ways to escape it.
But later I realized something…
Almost everything in cybersecurity connects back to networking somehow.
SOC alerts. Firewalls. Packet analysis. VPNs. Attack investigations. Even simple troubleshooting.
You really can’t avoid it.
So I stopped trying to run from it and just started learning slowly. One video. One lab. One confusing concept at a time.
And funny enough… the same networking I used to hate is now one of the most interesting parts of cybersecurity for me.
If networking currently makes you feel frustrated or dumb, trust me, you’re not alone.
Most of us suffered through it at first.
Keep learning. One day the things that look impossible right now will suddenly start clicking.
English
If you want to become a SOC Analyst, these are some of the best free hands-on platforms to practice real skills:
1. TryHackMe
Beginner-friendly. Has SOC paths, SIEM labs, phishing analysis, Windows logs, Splunk, Wireshark, incident response, and detection engineering labs.
2. Blue Team Labs Online
One of the best for blue team/SOC practice. Real investigations, log analysis, threat hunting, malware analysis, and CTF-style SOC challenges.
3. LetsDefend
Very realistic SOC simulation platform. You investigate alerts like a real analyst working in a SOC.
4. CyberDefenders
Excellent DFIR and SOC investigations. Practice packet analysis, Windows event logs, malware traffic, phishing, and threat hunting.
5. Hack The Box Academy
Mostly known for red team stuff, but their defensive/security fundamentals and SOC-related modules are very solid.
6. Security Blue Team Labs
Good blue team learning platform with practical labs focused on SOC operations and incident response.
7. Splunk Boss of the SOC (BOTS)
Real SOC investigation datasets using Splunk. Very useful for learning SIEM investigations.
8. RangeForce Community Edition
Free blue team training with hands-on labs and guided exercises.
For a complete beginner, this path works well:
Start with TryHackMe SOC Level 1
Move to LetsDefend
Practice investigations on CyberDefenders
Then challenge yourself with Blue Team Labs Online
That combination gives both theory + real SOC analyst workflow experience.
English
XXIII retweetledi
Cybersecurity skills open global doors from Naija.
One guy I know landed a remote role earning in USD while based in Lagos no blue-chip degree, just consistent learning on platforms like TryHackMe and Coursera.
Your network + skills = opportunities. Start this week.
English
NETWORKING KNOWLEDGE
A company has two PCs connected to the same switch.
PC-A can ping PC-B using an IP address but can not access websites using domain names.
What is the MOST likely problem?
A) Faulty Ethernet cable
B) DNS issue
C) Incorrect subnet mask
D) Bad switch port
English
XXIII retweetledi
@Maskoff023 gotta be DNS lol
Deerfield Beach, FL 🇺🇸 English
XXIII retweetledi
@heismarvellous_ @jayhemz You don’t need to master networking for GRC, but understanding the basics will definitely help you a lot. A holistic view is actually a good approach.😂
English
@jayhemz @Maskoff023 What if someone wants to get into GRC do they need to master Networking? Im just getting my foot in and always feel like I need to have a holistic view.
English
After I failed CCNA twice in flying colours, no one told me Networking wasn't for me.
However, the knowledge got from concepts like Subnetting has helped in my Cloud Architecting journey.
XXIII@Maskoff023
Cisco CCNA is legit. Even outside cybersecurity, it gives you strong networking knowledge that helps you understand how real environments actually work. Many security beginners skip networking and struggle later because of it. OSCP is legit. Difficult, respected, and heavily practical. It doesn’t hold your hand. A lot of people fail it the first time, which is exactly why employers respect it. Google Cybersecurity Certificate is legit for beginners. Good for absolute newcomers trying to understand cybersecurity basics, terminology, and career paths before diving deeper into technical labs. Blue Team Level 1 (BTL1) is legit. One of the few certifications that focuses heavily on actual SOC analyst skills like log analysis, incident response, phishing investigation, and SIEM usage. Cybersecurity is not a shortcut career. Real growth usually comes from consistent practice, labs, networking knowledge, and hands-on troubleshooting. The uncomfortable truth: The cybersecurity industry respects skills more than hype. You can own 10 certifications and still fail a real incident investigation if you never practised.
English
XXIII retweetledi
⚠️ Windows Server 2016 Domain Controller May Fail with 15-Character Hostname
Source: cybersecuritynews.com/microsoft-doma…
Windows administrators are facing a disruptive bug in Windows Server 2016 following Microsoft's May 12, 2026, security update KB5087537.
The update introduced a critical flaw that caused domain controller discovery to completely fail on servers configured with hostnames exceeding the 15-character NetBIOS limit, leaving administrators unable to perform essential network operations.
Microsoft acknowledged the issue ten days after the patch release, confirming that affected systems return ERROR_INVALID_PARAMETER errors when attempting DCLocator commands, effectively breaking domain controller communication.
#cybersecurutynews
English
