I share this link a lot but it’s really the best advice I have for getting into the field. shellsharks.com/getting-into-information-security. It takes some persistence for sure but the industry needs new blood. You CAN absolutely do it. Start small and build up core skills. Being able to “code malware” is something you can worry about much later down the road. Work on coding smaller projects, learn networking and OS basics, etc… Good luck and come back here as you have more questions!
Comment on Mentorship Monday - Discussions for career and learning!
alex_02@infosec.pub 1 year ago
Been questioning if I should continue with my side projects and coding my tools since I’ve had people that known me for 5+ years be like “You’ve been trying to code malware for the past five years” and it is honestly depressing that with whatever progress I make people either demand more or they just end up asking me things like “What is the purpose?”.
I do this mostly for fun and I want to go back to the community college to go through the programs for networking and security certs that they offer, but last time I tried to go back I went to this online event thing where counselors were supposed to help me and the woman I got acted like my questions were stupid and would sigh and other things.
I start this new welding job on Thursday and my mom seems to trying to push me to do it for god knows how long, and things are just feeling like they are going toward a direction I don’t want. Sure welding seems cool and all, but I still kind of want to get into Red Team except I don’t think I’m good enough and so far my experiences with most folks supposedly in the field seem to just be in the mindset of when they started when the field has changed dramatically.
I’ve tried going the helpdesk route, but it just made me lose my soul, and I was overworked to the point I would get burnt out. I’ve tried writing articles and participate in various communities, but in all honesty, everyone made me feel inadequate and invisible. I used to be part of the 0x00sec community, but the people there were horrible to me, and so I started acting out even though I was a teenager. Tried going to Uni, but the boys there were pretty awful, to the point that one of the professors who talked to my mom the other day said they were shitheads.
Sorry for this rant, but in all honesty I don’t know anymore if I should even bother anymore trying to get into the industry, and I’m starting to really doubt if all I’ve been doing is even that good. My love is in hardware and osint. I’ve been trying to write things I think could help people and sharing what I can, but I feel like it just not good enough.
shellsharks@infosec.pub 1 year ago
alex_02@infosec.pub 1 year ago
Yeah. I will take a look. Just been questioning a lot for a while now if I really belong since most of the time I just don’t think I do since my interests and my focus I feel like aren’t “traditional”. I’ve been coding a lot more thanks to some encouragement from people, but a lot of times I don’t think whatever I code is fancy or sexy enough since I keep everything simple. Been reading as much as I can article of real world attacks and the tools/techniques use which has helped a lot to make me feel more adequate since a lot of times you don’t need all this fancy techniques and reading how attackers drop whole zip files of like notepad++ with the necessary dlls or whatever helps give a more realistic insight.
I think if I ever end up with my foot in the door and actually end up doing work, I might end up trying to teach and mentor people since nobody, especially girls, should have to put up with all the bs I had to.
shellsharks@infosec.pub 1 year ago
Try. It to feel that way. If anything infosec (and “hacker culture at large) is unique thanks to the fact that we are “non-traditional”. Use this to your advantage and don’t give up!
shellsharks@infosec.pub 1 year ago
I’ve captured a bunch of training sites you can peruse shellsharks.com/online-training. If you’re into OSINT, familiarize yourself with some more OSINT tools, I’ve captured some here shellsharks.com/infosec-tools.