Top 5 Cybersecurity Blogs & Podcasts
PreviousGreat Godly Resources to Feed Your Soul โ๏ธNextGet a Starborn Ship early in Starfield (PC)
Last updated
Was this helpful?
Last updated
Was this helpful?
Blogs & Podcasts are effective short form ways of learning topics and gaining unique insight & perspectives. I personally read blogs and listen to podcasts daily. In this blog post I'm sharing my personal favorite Cybersecurity blogs & podcasts. While I am ranking these in an ordered list, my top favorites constantly change based on authenticity, perspective gained, inspiration and production quality.
Hack The Box's blog is phenomenal. It provides unique insight on how individuals and organizations are using Hack The Box to upskill. The blog also provides insights from industry experts in the form of:
Top Hacking Tool Lists
Stories from the Industry
Career Tips & Journeys
CTF Walkthroughs
Learning & Topic Guides
General Overview of the Cybersecurity industry and immerging trends
Daniel Miessler is a thought leader in Infosec. I like his blog because it reads like he is sitting next to you explaining everything in a practical way. He mostly covers topics in Infosec but also includes some helpful motivational tips and insights on life in general. His podcast and Newsletter called Unsupervised Learning is included on my top podcasts list later in this post.
Security Soup is essentially a series of curated lists that link to recent attacks & breaches, new tools & techniques, industry news and emerging security research. Each post is a weekly round up that organizes all the resources with accompanying links. Its honestly great and can provide you with enough learning to last you well beyond a week.
0xdf is a Cybersecurity content creator that is world renowned for his work at Hack The Box. His blog mostly includes highly detailed & educational walkthroughs of retired Hack The Box boxes. Each post highlights tools and techniques with enough explanation to reproduce. When I first started learning on Hack The Box I started with retired machines because they have walkthroughs available and I'd often default to 0xdf's blog to help me through boxes and to really understand what I was doing. Each post is fantastic and full of learning opportunities.
Darknet Diaries is incredible. In each episode Jack Rhysider (show creator) interviews an interesting person on the Infosec scene. He provides narration and explanation but what really makes the show engaging in my opinion is the excellent production quality. All interviews flow like it is story time and will have you on the edge of your seat as many of the interviewees tell their exciting stories. Honestly this is a MUST LISTEN for any one interested in IT, Cybersecurity and/or Software Development.
Unsupervised Learning is a unique show created by Daniel Miessler. It is essentially the Security Soup of podcasts where Daniel briefly summarizes what is happening in Infosec, Tech as a whole and how all this seems to fit in society. Each episode has a great pace, lots of value and is relatively quick. It is fantastic.
Blueprint is a defensive focused podcast where SANS Instructor & Defensive Cybersecurity professional John Hubbard brings on guests from the Blue Team side of Cybersecurity. Many of the guests manage or are senior in a SOC environment. I like this podcast because it is one of the few consistent podcasts out there that are focused on defense. Lots of content available is built around hacking, red teaming and pentesting, which is understandable because it's fun and exciting but having Blueprint really helps shine light on the importance of playing good defense.
I still can't believe BHIS gives away content like this for free. BHIS's webcasts on their YouTube are like the Ivy league of instructor led content in Cybersecurity. Each video is essentially a well prepared lesson that guides viewers/listeners to an understanding of the topic. John Strand is one of the Infosec GOATs and a world-class educator. The content is easily bingeable.
In my opinion Hack The Box is the best Cybersecurity training company in the industry. Most of their content is designed to be interacted with in a lab environment accessible via VPN and through their websites, which is essential for truly developing skills and abilities.
However, since this is a blog post about blogs and podcasts/webcasts I'm ranking them here because they also happen to have excellent content on their YouTube channel & podcast. The content on their YouTube channel is very well produced and recorded during live community events & CTFs. The content is always educational and hands-on. One of my personal favorites that they recently posted is the video Pivoting, Attacking The "Unreachable Network" by PlainText & r0adrunn3r
Please know these are just some of my personal favorite blogs and podcasts/webcasts available for free online in 2022. If you know of any that others would benefit from, feel free to reach out to me, Ill check it out and maybe add it to the post. You could even create a list of your own on your blog to help others. Thanks for reading this and keep learning!
You can help me continue to improve my content through feedback, words of encouragement and even if you:
The DFIR Report is a series of blog posts that cover real intrusions that happen in enterprise network environments. The identity of the breached companies are never shared but the attackers actions are covered in great detail and mapped to the . At the bottom of each post are some helpful Yara rules sets and specific Tactic & Technique mappings. Each post reads like a camp fire story that a DFIR Analyst is telling. It has great offensive and defensive perspective.
