#Cybersecurity #Programming #CareerAdvice
Hey everyone! 👋 So, you’re dreaming of becoming a SOC analyst and eventually diving into ethical hacking and pen testing – that’s awesome! 🌟 Now, you’re wondering if learning programming languages like JavaScript and Python would be beneficial for your cybersecurity career. Here are some points to consider:
– Learning Python can be incredibly beneficial in cybersecurity for tasks like automation, scripting, and building tools.
– JavaScript may also be helpful, especially for web application security.
– Networking certifications like CCNA and Security+ are great for understanding the fundamentals of networking and security protocols.
– Frontend web development skills can be useful, but may not be as directly applicable to cybersecurity roles.
In conclusion, a well-rounded skill set that includes programming languages like Python, alongside networking knowledge, can definitely boost your career in cybersecurity. Find the right balance that aligns with your career goals and start learning! 🚀💻 #DreamBig #CybersecurityCareer
I am a dev not a cybersecurity expert, but I hear pentesters need so be somewhat well versed in software as a good portion of vulnerabilities they are meant to discover are caused by bad programming practices and bugs.
Yes and No. Cyber Security is a very very large field, and in order to breach something you need a basic understanding of how it works. So if you want to attack programs directly, you need to be at least somewhat proficient at coding and have a very solid understanding of the low level mechanics of code (which is what trips most people up, so that’s what you need to know)
Python specifically is also good for automation. When running attacks, you don’t want to sit there (and often can’t) and send messages to a server manually: You need to automate that. And Python is one of the best languages to do that (although you can basically use any language)
But there are ways to perform hacking and pentasting without any code knowledge, for example by social engineering or simple user level exploits, like copying a URL directly into your browser instead of using a link that a website is trying to block. (Yes, that is a stupid example, but it used to actually work often. Now, not so much)
You need good knowledge on C, C++, powershell and bash to do effective pentesting and write exploits.
One hundred percent
you should learn
python scripting
Sql
and Javascript
power-shell
bash scripting
You need to write and run scripts, you need to use AI tools. It’s good if you know basics of webdev to know where to look for possible attack vectors.
The ugly truth is that you need to know all of those topics at an intermediate level. The good news is that you can approach these topics in sequence in your professional journey. My suggested sequence is:
1) OS – Linux basics, Windows basics – Linux LPI Essentials, Windows 365 Administrator
2) Networking – CCNA
3) Security basics – Security+
4) Python basics
5) Web basics (HTTP, Javascript, CLI tools such as curl, GUI tools such as Postman)
6) Virtual systems & SDN – GNS3 Associate (tests networking, virtualization, APIs)
7) Cloud networking – AWS Cloud Practitioner, Azure Administrator
8) Security deep dives – PenTest+, CEH, OSCP, OWSP
9) Security management – CISSP, CISM
Well if your only question is if it’s “good” or “beneficial”, then yes. Yes it is. That’s something nobody will dispute. Whether you NEED it, then no. Whether you should devote your time to it anyway? Only you can know that.
you must have road map; for example 1) comtia network plus 2) comtia security plus 3) ….. because if you start to trip inside of the forest ; you may lose you motivation and time; if you have another question; ask me; i am a security analyst and am working in a Company in Germany