WelcomeUser Guide
ToSPrivacyCanary
DonateBugsLicense

©2026 Poal.co

685

Looking for advice on where to start.

In my 30's and been Mac person since like 2010.

I looked up some courses to learn Linux and downloaded Ubuntu to my Virtual Box VM.

Looking at free beginner and intro level cybersecurity programs to familiarize myself with the foundational stuff.

Downloaded Tor and have Express VPN on my phone (yes, an iPhone) and have yet to really explore Tor until I am better acclimated with the risks.

My questions are mostly around how to best and most efficiently get up to speed on what I would need to best secure my own systems as well as learn blackhat and whitehat "hacking" techniques -- both for my own defense and also for a possible career change.

Any advice from people with experience would be greatly appreciated:

Course recommended and to avoid Tools recommend and to avoid Any other tips and tricks I should know starting out.

Looking for advice on where to start. In my 30's and been Mac person since like 2010. I looked up some courses to learn Linux and downloaded Ubuntu to my Virtual Box VM. Looking at free beginner and intro level cybersecurity programs to familiarize myself with the foundational stuff. Downloaded Tor and have Express VPN on my phone (yes, an iPhone) and have yet to really explore Tor until I am better acclimated with the risks. My questions are mostly around how to best and most efficiently get up to speed on what I would need to best secure my own systems as well as learn blackhat and whitehat "hacking" techniques -- both for my own defense and also for a possible career change. Any advice from people with experience would be greatly appreciated: Course recommended and to avoid Tools recommend and to avoid Any other tips and tricks I should know starting out.

(post is archived)

You are currently inside a comment thread.
Click here to see all the comments (24).
[–] 0 pt

I'm learning by running a Raspberry Pi as a local web and file server. It hosts a bookmark page using PHP and SQL, AdguardHome DNS filtering, and a Python / Flask server. Getting all this running made me learn a lot of the Linux command line stuff. It's not allowed on the internet outside my LAN, but I have done that before to collect attempted attacks using UFW and Apache configs. I add them to Fail2ban's ban list, then set up IP blocking for non-US non-EU IP addresses. Most attacks come from Africa, asia, and Russia.