First think about a question: Why study safety?
In recent years, cyber security incidents have emerged one after another. I believe you have heard a lot of them even if you haven't encountered them. For example, servers are invaded and hacked, user accounts are stolen; phishing, ransomware, etc., once these occur, it is a big blow to the enterprise.
Therefore, network security cannot be ignored. At the same time, with the continuous development of the times, the company's requirements for operation and maintenance and network engineers are becoming more and more stringent. In the future, more and more popular talents must be compound talents with a wide range of skills.
Network security can be said to be a very good development path.
During the two sessions this year, Zhou Hongyi, a member of the National Committee of the Chinese People's Political Consultative Conference, the founder and chairman of 360 Group, submitted a proposal on special talents in the cyber security industry to strive for better treatment for the majority of white hats.
According to statistics, the current technical staff can only fill up less than 1% of the gap! This imbalance in supply and demand is directly reflected in the salary of security penetration engineers. Simply put, the pressure of competition is low, and the salary is still high.
In fact, the most important thing to learn about network security is how to better defend and attack. If you want to develop on the development system, then learn C language; if you want to do some powerful desktop software, then learn C++; if you want to develop cross-platform enterprise-level applications, then learn Java.
So choosing a learning direction that suits you is very important, because it will determine how you should study next. Just like you want to buy Hongxing Erke, and you walk into Nike's store, it must be that you can't buy the high-quality domestic products you want!
Why study cybersecurity?
When I chose to study cybersecurity, I was actually blind. After all, I changed my career and didn't know the programming field at all. Thanks to the advice of my friend, I took a lot of detours. They told me to learn about cybersecurity for the following reasons:
1. The advantages of cyber security
Network security has now risen to the national level. In recent years, various countries have seen frequent cyber security issues and various illegal products.
The country is vigorously developing this industry, so it's right to follow the general direction!
2. What can I do after learning network security
Although there are still many people who don't understand network security very well, with the development of the times, the influence of network security has surpassed those of its predecessors. There are already web security engineers, penetration testing, level protection, code auditing and so on. .
The application is very wide.
3. Salary and treatment of cyber security
Cybersecurity has now risen to the national strategic level. This field has generated a large number of security technical job requirements. Even the security engineers in ordinary second- and third-tier cities have reached an annual salary of 100,000 to 200,000, not to mention North, Shanghai, Guangzhou, and Shenzhen. Such a big city.
Isn't this better than your 6/7K salary?
4. Industry prospects for cyber security
With the advent of the 5G era, network security has risen to the height of national strategy. There are not many BBs and will always follow the party.
How to learn network security?
In fact, the method of learning varies from person to person, and you can adjust it according to the direction you choose.
Here are some of my personal learning suggestions:
1. Choose a good learning goal
Only when you know your learning direction can you understand what you want to achieve in learning network security, so that you can have a clearer thinking about learning. In fields such as web crawling, web security, penetration testing, emergency response, automated operation and maintenance, code auditing, etc., whichever you are interested in, go deep into the field. Only by delving into this field can you obtain the ability to match this field!
[Mind map of network security system learning route]
2. Make a study plan
I personally divide network security learning into three learning stages: basic, advanced, and master:
basic stage of Linux basics, system management, command management, directory knowledge, file management, network basics, network protocols, HTML, CSS, PHP programming basics, MYSQL and so on.
The advanced stage mainly learns: Web application basics, information security, vulnerability scanning, SQL injection attack technology, XSS cross-site, upload bypass verification, file containment vulnerability, CSRF attack technology, remote code execution vulnerability, XXE principle use defense, editor Vulnerabilities, brute force guessing, brute force verification code security, logic loopholes, business security issues
Master stage main learning: SHELL, shelling and reverse engineering, blockchain, anti-virus, etc.
Seeing so much to learn, do you start to feel dizzy? At the stage of its realization, you only need to understand that these are what you will learn in the future. Followed by the plan to learn step by step, it is not too difficult.
3. The foundation must be solid
There is a saying that high-rise buildings are built on the ground. Only when the foundation is firm can they be built. Therefore, learning network security is the same. Only when you have a solid foundation of knowledge, can you better understand the following knowledge and be able to deepen your work in this field. Therefore, the following basics must be mastered:
4. More hands-on practice
Practice is the only way to test the theory. According to the theoretical knowledge you have mastered during your study, you can carry out practical operations so that you can understand your true ability and know what knowledge you have not mastered enough in your study.
5. Make friends with more security bosses
During your study, you will definitely encounter difficult problems that you can’t solve. If you can meet a few senior bosses who like to help others, the problems that make you headache for most of the day, maybe they only use two or three sentences. Can easily help you solve it. I have benefited from this a lot. Whether it is studying or looking for a job later, it has helped me a lot.
at last
I am a penetration test engineer, and I share some of my own learning experience and dry goods, about my system learning route, and some practical tutorials, all packaged and organized, you can click below to do white prostitution . If it can be helpful to you, I also hope to help like, follow, and collect. Your encouragement is my motivation for sharing! (Bow to everyone)
java
**粗体** _斜体_ [链接](http://example.com) `代码` - 列表 > 引用。你还可以使用@来通知其他用户。