Professor Messer’s SY0-601 CompTIA Security+ Course

This is the index to my free SY0-601 CompTIA Security+ training course videos.
All of my Security+ and cybersecurity exam training videos are completely free; prepare for your exam by watching them online right now!

Click here to see how you can own a comprehensive summary of my course information with my 120-page printed or downloadable PDF Course Notes.

 

Section 0: The SY0-601 CompTIA Security+ Exam

How to Pass Your SY0-601 Security+ Exam (7:03)

Section 1 – Attacks, Threats, and Vulnerabilities

Phishing (8:57)

Impersonation (5:40)

Dumpster Diving (3:00)

Shoulder Surfing (2:25)

Hoaxes (4:08)

Watering Hole Attacks (4:02)

Spam (5:23)

Influence Campaigns (3:01)

Other Social Engineering Attacks (5:16)

Principles of Social Engineering (4:56)

An Overview of Malware (4:01)

Viruses and Worms (6:20)

Ransomware and Crypto-malware (3:53)

Trojans and RATs (5:26)

Rootkits (2:45)

Spyware (3:39)

Bots and Botnets (2:30)

Logic Bombs (4:02)

Password Attacks (13:03)

Physical Attacks (6:03)

Adversarial Artificial Intelligence (3:54)

Supply Chain Attacks (3:27)

Cloud-based vs. On-Premises Attacks (3:32)

Cryptographic Attacks (5:19)

Privilege Escalation (3:18)

Cross-site Scripting (7:25)

Injection Attacks (4:25)

Buffer Overflows (2:38)

Replay Attacks (7:20)

Request Forgeries (8:14)

Driver Manipulation (4:51)

SSL Stripping (5:58)

Race Conditions (5:00)

Other Application Attacks (9:05)

Rogue Access Points and Evil Twins (3:43)

Bluejacking and Bluesnarfing (2:09)

Wireless Disassociation Attacks (5:50)

Wireless Jamming (3:15)

RFID and NFC Attacks (4:00)

Randomizing Cryptography (4:18)

On-Path Attacks (6:04)

MAC Flooding and Cloning (7:53)

DNS Attacks (8:19)

Denial of Service (8:35)

Malicious Scripts (4:47)

Threat Actors (9:58)

Attack Vectors (10:34)

Threat Intelligence (10:46)

Threat Research (7:34)

Vulnerability Types (14:32)

Third-party Risks (6:48)

Vulnerability Impacts (6:24)

Threat Hunting (5:15)

Vulnerability Scans (14:53)

Security Information and Event Management (7:41)

Penetration Testing (7:27)

Reconnaissance (5:08)

Security Teams (4:17)

Section 2 – Architecture and Design

Configuration Management (5:15)

Protecting Data (10:36)

Data Loss Prevention (4:37)

Managing Security (16:17)

Site Resiliency (3:39)

Honeypots and Deception (5:52)

Cloud Models (11:19)

Edge and Fog Computing (6:48)

Designing the Cloud (13:43)

Infrastructure as Code (6:16)

Virtualization Security (3:18)

Secure Deployments (6:26)

Provisioning and Deprovisioning (5:50)

Secure Coding Techniques (11:33)

Software Diversity (2:05)

Automation and Scripting (3:09)

Authentication Methods (11:14)

Biometrics (4:28)

Multi-factor Authentication (9:00)

Disk Redundancy (5:09)

Network Redundancy (5:43)

Power Redundancy (5:31)

Replication (4:27)

Backup Types (10:26)

Resiliency (6:39)

Embedded Systems (13:39)

Embedded Systems Communication (5:43)

Embedded Systems Constraints (5:31)

Physical Security Controls (19:15)

Secure Areas (4:59)

Secure Data Destruction (5:58)

Cryptography Concepts (5:31)

Symmetric and Asymmetric Cryptography (9:21)

Hashing and Digital Signatures (10:52)

Cryptographic Keys (7:25)

Steganography (3:47)

Quantum Computing (5:45)

Stream and Block Ciphers (7:36)

Blockchain Technology (3:14)

Cryptography Use Cases (3:36)

Cryptography Limitations (6:35)

Section 3 – Implementation

Secure Protocols (13:21)

Endpoint Protection (9:48)

Boot Integrity (8:25)

Database Security (7:18)

Application Security (13:31)

Application Hardening (9:49)

Load Balancing (6:35)

Network Segmentation (9:49)

Virtual Private Networks (11:35)

Port Security (10:25)

Secure Networking (10:54)

Firewalls (19:06)

Network Access Control (5:06)

Proxy Servers (4:49)

Intrusion Prevention (5:47)

Other Network Appliances (4:31)

Wireless Cryptography (7:52)

Wireless Authentication Methods (8:15)

Wireless Authentication Protocols (8:26)

Installing Wireless Networks (7:32)

Mobile Networks (9:58)

Mobile Device Management (13:44)

Mobile Device Security (5:34)

Mobile Device Enforcement (13:50)

Mobile Deployment Models (4:19)

Cloud Security Controls (5:02)

Securing Cloud Storage (6:28)

Securing Cloud Networks (6:10)

Securing Compute Clouds (7:53)

Cloud Security Solutions (6:32)

Identity Controls (7:27)

Account Types (7:08)

Account Policies (8:34)

Authentication Management (5:44)

PAP and CHAP (5:56)

Identity and Access Services (6:26)

Federated Identities (5:05)

Access Control (10:04)

Public Key Infrastructure (13:07)

Certificates (8:04)

Certificate Formats (4:23)

Certificate Concepts (7:52)

Section 4 – Operations and Incident Response

Reconnaissance Tools – Part 1 (17:33)

Reconnaissance Tools – Part 2 (17:53)

File Manipulation Tools (13:36)

Shell and Script Environments (4:17)

Packet Tools (4:43)

Forensic Tools (9:11)

Incident Response Process (10:27)

Incident Response Planning (12:09)

Attack Frameworks (7:21)

Vulnerability Scan Output (6:36)

SIEM Dashboards (5:02)

Log Files (9:49)

Log Management (9:51)

Endpoint Security Configuration (4:26)

Security Configurations (8:10)

Digital Forensics (8:11)

Forensics Data Acquisition (10:33)

On-Premises vs. Cloud Forensics (4:33)

Managing Evidence (6:18)

Section 5 – Governance, Risk, and Compliance

Security Controls (4:14)

Security Regulations and Standards (4:33)

Security Frameworks (7:31)

Secure Configurations (5:23)

Personnel Security (10:10)

Third-party Risk Management (9:30)

Managing Data (3:23)

Credential Policies (7:50)

Organizational Policies (4:37)

Risk Management Types (5:56)

Risk Analysis (11:01)

Business Impact Analysis (7:48)

Privacy and Data Breaches (5:44)

Data Classifications (5:12)

Enhancing Privacy (7:35)

Data Roles and Responsibilities (2:53)

SY0-601 Security+ Study Group Replays

Do you need more Q&A and exam discussions? Join our monthly live Study Groups, and watch the complete archives of previous Study Groups.

Watch the replays