Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/iloveicedgreentea/infosec-info-and-interview-questions
A collection of interview questions and answers I created while studying for interviews.
https://github.com/iloveicedgreentea/infosec-info-and-interview-questions
Last synced: 10 days ago
JSON representation
A collection of interview questions and answers I created while studying for interviews.
- Host: GitHub
- URL: https://github.com/iloveicedgreentea/infosec-info-and-interview-questions
- Owner: iloveicedgreentea
- License: other
- Created: 2020-02-09T20:13:47.000Z (almost 5 years ago)
- Default Branch: master
- Last Pushed: 2020-02-17T01:44:39.000Z (almost 5 years ago)
- Last Synced: 2024-10-26T04:33:39.723Z (about 2 months ago)
- Size: 93.8 KB
- Stars: 2
- Watchers: 3
- Forks: 2
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE.md
- Code of conduct: CODE_OF_CONDUCT.md
Awesome Lists containing this project
README
# Infosec Interview Q&A, Info
## About
This is a collection of Infosec questions and information that helped me. This can also be used to refresh your knowledge or learn new concepts at your current position.
Why make this?
* I had a lot of notes and this helped me organize them - might as well give back to the community
* This may help someone prepare for an interview or refresh their knowledgeThis is available in web form here for now. I will make this a dedicated site later on.
https://iloveicedgreentea.github.io/infosec-info-and-interview-questions/This is meant to be comprehensive so feel free to contribute anything related to infosec. This includes good devops practices such as securing IAM, CD pipelines, etc. Good devops *is* security.
## Features
* PR and Issue Templates
* Link checks via awesome_botTODO: Serve from /docs, add to domain
TODO: GH Actions for style guide, spell check## Contributing
[How To Contribute](CONTRIBUTING.md)
## Table Of Contents
### General Information
Interview tips, news sources, how to get info, general concepts, etc. Any misc info goes here.[General Info](Info/general_info.md)
### Cloud Security
Cloud security[Cloud Security](Info/cloud.md)
### OSI
Basics of the OSI layers with examples[OSI](Info/osi.md)
### OS
Operating system facts and basics[OS](Info/os.md)
### Containers
Containers facts and basics[Containers](Info/containers.md)
### Shell
Bash, shell scripting, simple shell tools[Shell](Info/shell.md)
### Networking
Networking basics, ports, network security, http, and anything else relating to networks[Networking](Info/networking.md)
### IAM
IAM and related concepts - SSO[IAM](Info/iam.md)
### Compliance
PCI-DSS, HIPAA, SOX, etc. Anything GRC related goes here.[Compliance](Info/compliance.md)
### SIEMs
All SIEM related content - Splunk, ES[SIEMs](Info/siem.md)
### Cryptography
AES, SHA, ECDHE, Cryptanalysis, TLS, HTTP, all the acronyms you need to know[Cryptography](Info/cryptography.md)
### Generic Attacks
Buffer Overflows, MITM, the basics of attacks you should know. Anything specific will be in another section e.g AD attacks will be in the Active Directory page.[Attacks](Info/attacks.md)
### Social Engineering
WIP
[Social Engineering](Info/social_engineering.md)### Active Directory
AD basics, red team concepts for AD[Active Directory](Info/activedirectory.md)
## License
[This project is licensed under the CC BY-NC-SA 4.0 license](license.md).
https://creativecommons.org/licenses/by-nc-sa/4.0/Here are the basic concepts in plain english.
### Permitted items:
* Share — copy and redistribute the material in any medium or format
* Adapt — remix, transform, and build upon the material### Required items:
* Attribution — You must give appropriate credit, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
* ShareAlike — If you remix, transform, or build upon the material, you must distribute your contributions under the same license as the original.### Forbidden items:
* NonCommercial — You may not use the material for commercial purposes.
### Why this license?
I want to make this freely available but I don't want non-contributing entities to profit from it. I put a lot of thought into the licensing model and this is the best one I could find for this kind of data.
I see hard work from infosec blogs and guides getting ripped off by "bloggers" and mixed with ads. This is not okay. First of all, all ads are malware, by definition. Secondly, I am not going to profit from this, nor do I want to, so neither should anyone else especially if they did nothing to contribute. This is especially true because very little information is a de facto "new work". Almost all thoughts, ideas, and creations build upon previous works or knowledge. This principle is the idea behind copyright expiration. For example, a certain highly litigious media company could not have made a movie about a princess and a bunch of dwarfs had [the original work not entered the public domain](https://en.wikipedia.org/wiki/Snow_White).
TL;DR - Share this repo, contribute, just don't sell or profit from this.
## Sources
Some of these questions are original, some of them are based on or taken from various blogs. If you took any information from a linkable source, it should be listed here. If something isn't linked, it doesn't mean it was just taken out of thin air. It's not really worth linking reddit or wikipedia if you aren't reproducing content in whole, e.g, an entire comment or paragraph.https://resources.infosecinstitute.com/top-50-information-security-interview-questions/
https://danielmiessler.com/study/infosec_interview_questions/