Further Reading & Resources
This page is your starting point for going deeper. Everything listed here is free to access unless noted.
Tools to Bookmark
These are tools professionals use. You have already used most of them in the Hands-On sessions.
| Tool | What It Does | URL |
|---|---|---|
| VirusTotal | Scan URLs, files, and domains against 70+ security engines | virustotal.com |
| SSL Labs | Analyse any HTTPS site’s certificate and TLS configuration | ssllabs.com/ssltest |
| ICANN WHOIS | Look up domain registration records | lookup.icann.org |
| DNSChecker | See DNS records from servers around the world | dnschecker.org |
| Google Admin Toolbox | DNS lookup, traceroute, header analysis | toolbox.googleapps.com |
| badssl.com | Collection of test pages for bad TLS configurations | badssl.com |
| Have I Been Pwned | Check if your email appeared in a known data breach | haveibeenpwned.com |
Reading by Topic
How the Internet Works (Session 1)
Cloudflare Learning Centre — DNS Clear, comprehensive explanation of how DNS works. No maths. Good diagrams. → cloudflare.com/learning/dns/what-is-dns/
Cloudflare Learning Centre — How the Internet Works → cloudflare.com/learning/network-layer/how-does-the-internet-work/
MDN — How the Web Works Mozilla’s developer documentation. Written for beginners but technically accurate. → developer.mozilla.org/en-US/docs/Learn/Getting_started_with_the_web/How_the_Web_works
How DNS Works (comic) A well-designed comic that walks through DNS in a visual and accessible way. Great for visual learners. → howdns.works
Encryption and HTTPS (Session 2)
Cloudflare Learning Centre — What Is Encryption → cloudflare.com/learning/ssl/what-is-encryption/
Cloudflare Learning Centre — What Is TLS → cloudflare.com/learning/ssl/transport-layer-security-tls/
Google Safety Centre Available in Hindi. Covers basic online safety in plain language. → safety.google/
Certificates and PKI (Session 3)
Let’s Encrypt — How It Works The organisation that provides free TLS certificates explains the process clearly. → letsencrypt.org/how-it-works/
Cloudflare — SSL Certificates → cloudflare.com/learning/ssl/what-is-a-ssl-certificate/
Cloudflare — What Is PKI → cloudflare.com/learning/ssl/what-is-a-pki/
Attacks and Defence (Session 4)
RBI Be(Aware) Campaign The Reserve Bank of India’s public awareness resources on financial fraud. Practical, India-specific. → rbi.org.in/beaware/
Cloudflare — What Is Phishing → cloudflare.com/learning/access-management/phishing-attack/
RBI — Online Banking Safety Guidelines The Reserve Bank of India’s guidelines for safe online banking. → rbi.org.in/beaware/
CERT-In India’s Computer Emergency Response Team. Publishes advisories on active threats. Useful for staying current on what is targeting India. → cert-in.org.in
Next Steps After This Course
TryHackMe — Pre-Security Path
A free, beginner-friendly learning platform with interactive labs. The Pre-Security path covers the same topics as this course but with interactive exercises, including browser-based virtual machines where you run real security tools. Highly recommended as a complement to Course 2.
→ tryhackme.com/path/outline/presecurity
Cloudflare Learning Centre (Full)
Cloudflare publishes some of the best free educational content on networking and security on the internet. The full learning centre covers topics from DNS to DDoS to Zero Trust. Bookmark it and read whenever you are curious about a topic.
→ cloudflare.com/learning/
OWASP Top 10
The Open Web Application Security Project publishes a list of the ten most critical web application security risks. If you want to understand how web applications get attacked, this is the canonical starting point.
→ owasp.org/www-project-top-ten/
Certification Paths
APITCANS
The certification associated with the IndusForward Skills Series. Information will be shared as availability is confirmed.
CompTIA Security+
An entry-level certification that covers network security fundamentals. Internationally recognised. A good first professional milestone after completing this course and Course 2. → comptia.org/certifications/security
CEH (Certified Ethical Hacker)
An EC-Council certification focused on understanding and using offensive security techniques for defensive purposes. More advanced. Popular with India’s IT industry. → eccouncil.org/train-certify/certified-ethical-hacker-ceh/
A Note on Staying Current
Security is not a subject you learn once and know forever. New attacks appear. Old defences become obsolete. New standards replace old ones.
The best way to stay current:
- Follow CERT-In advisories for India-specific threats
- Read Cloudflare’s blog — they publish accessible write-ups on real-world security incidents
- Join the TryHackMe community and work through new challenges
- When something in the news mentions a cyberattack, look it up — understanding real incidents is the best education
The concepts in this course will not change. DNS will still work the same way in ten years. Asymmetric encryption will still use public and private keys. But the specific attacks, tools, and implementations evolve constantly. Curiosity is the most important skill.