Security Awareness

Includes instructor-led training sessions + Ransomleak hands-on labs

A next-generation security awareness training designed to help organizations defend against AI-driven cyber threats, advanced social engineering, and the security risks associated with Large Language Models (LLMs) and autonomous AI agents through practical, real-world learning.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. 

In collaboration with:

This training is delivered through expert-led instruction by Cyber Helmets, enriched with RansomLeak’s interactive 3D threat simulations to provide an engaging, hands-on security awareness experience focused on today’s AI-driven and modern cyber threats.

What you’ll gain:

Recognize modern social engineering

Identify phishing, business email compromise (BEC), AI voice-cloning, executive impersonation, and other advanced social engineering attacks.

Built strong security hygiene

Develop secure everyday habits for password management, data sharing, browser security, remote work, and physical workplace security.

Use AI securely

Learn to use Large Language Models (LLMs) and AI agents safely while reducing common AI security risks and following OWASP best practices.

Strengthen security culture

Build confidence in incident reporting, timely escalation, and security-conscious decision-making across your organization.

Level:
Beginner/
Foundational

Duration:
Custom & tailored
to your requirements

Who this course is designed for

Suitable for organizations of all sizes, with tailored content for non-technical staff, technical teams, and leadership, preparing every role to recognize AI-driven and modern cyber threats.

All organizational employees & remote staff from HR and Finance to Marketing and Sales. Ideal for non-technical team members who use email, communication platforms, and the web daily, ensuring they can spot advanced social engineering and protect sensitive company data.

Product Managers, Developers & Tech Teams for teams actively integrating or utilizing Large Language Models (LLMs) and autonomous agents in their workflows. This training provides the foundational awareness needed to avoid critical OWASP Top 10 vulnerabilities in AI applications.

System Administrators & Security Engineers looking to harden their environments, identify hidden attack paths in BloodHound, and implement resilient GPO and PKI defenses.

Key takeaways:

> Real-time threat detection: The concrete ability to identify and intercept advanced, AI-driven social engineering tactics, including deepfake audio, executive impersonation, and highly tailored BEC attacks.

> Proactive security habits: A workforce that seamlessly executes daily operational security, from strong credential hygiene and secure remote work practices to eliminating Shadow IT and physical workplace risks.

> Safe AI integration: Clear, actionable guardrails for your teams utilizing AI tools, ensuring they know how to interact with LLMs securely without exposing sensitive company data or API keys.

> Immediate incident escalation: A transparent, low-friction blueprint for reporting suspected breaches, minimizing containment windows through rapid internal communication.

> Reduced human risk profile: A measurable shift from passive, check-the-box compliance to an active, threat-aware organizational culture backed by RansomLeak’s immersive 3D simulations.

How the training works:

> Expert instructor-led delivery: Engaging, live presentations and interactive discussions led by seasoned cybersecurity professionals who bring real-world threat landscapes directly to your team.

> Live attack & defense demonstrations: Watch cyber attacks happen in real time. Instructors walk through live simulations of modern threat vectors, including AI voice-cloning, advanced social engineering, and OWASP Top 10 LLM risks, giving context to how adversaries think.

> Immersive interactive simulations: Powered by RansomLeak’s cutting-edge platform, teams experience threat scenarios firsthand. Training includes live Q&A, interactive decision-making, and tailored scenarios optimized for modern organizational and software development environments.

> Reinforced self-paced labs: Practical, self-paced homework labs are assigned after sessions to solidify key concepts, ensuring daily operational security and hygiene habits become second nature.

FAQs:

Accordion Content

Not at all. The course is designed from the ground up to be a Beginner/Foundational program accessible to everyone, from HR and Finance to Executives. However, because we also cover advanced topics like AI safety and the OWASP Top 10 for LLM Applications, the curriculum is uniquely valuable for Product Managers, Developers, and technical teams as well.

The program is entirely flexible and customizable. While a standard high-impact track typically features quarterly 4-hour sessions, the final session count, duration, and schedule are fully negotiable. We tailor the scope based on an initial evaluation of your organization’s specific needs, size, and threat profile.

Traditional training relies on boring, repetitive slideshows and passive videos. Through our partnership with RansomLeak, we combine live, elite instructor expertise with immersive, interactive simulations and self-paced labs. We don’t just help you check a compliance box, we actively build practical, defensive habits.

Yes, absolutely. Part of our blended learning approach includes real-world attack scenarios that can be explicitly optimized for software development environments, corporate offices, or remote workforces depending on who is attending the session.

Shadow IT is a major risk; your employees may already be using public LLMs (like ChatGPT or Claude) to optimize their daily tasks without corporate oversight. Furthermore, modern attackers are already using AI (such as AI voice-cloning and deepfakes) to target classic workplace environments. This training future-proofs your team against the threats of today and tomorrow.

The first step is to click “Request an evaluation.” We will hop on a brief call to assess your organization’s current security posture, discuss your specific goals, and design a custom training proposal tailored perfectly to your team.

Syllabus:

Intro to GCP

  • GCP Hierarchy
  • Google Workspace
  • gcloud config
  • Basic Hacking Techniques

Exploitation of GCP Services

  • IAM
  • KMS
  • Secrets 
  • Storage
  • Compute Instances & VPC
  • Cloud Functions
  • CloudSQL
  • Pub/Sub
  • App Engine
  • Google APIs
  • Cloud Shell

Methodologies

  • White box

Security Services

  • GCP Logging & Monitoring

Syllabus:

Intro to AWS

  • AWS Organization
  • AWS Principals
  • Basic Hacking Techniques

Exploitation of AWS Services

  • IAM
  • STS
  • KMS
  • Secrets Manager
  • S3
  • EC2 & VPC
  • Lambda
  • RDS
  • SQS
  • SNS

Methologies

  • White box

Common Detection Mechanisms

  • CloudTrail

Syllabus:

Azure Basics

  • Azure Organization
  • Entra ID
  • Azure Tokens & APIs
  • Basic Enumeration Tools

 

Exploitation of Azure Services

  • Entra ID IAM
  • Azure IAM
  • Azure Applications
  • Azure Key Vault
  • Azure Virtual Machine & Networking
  • Storage Accounts
  • Azure File Share
  • Azure Table Storage
  • Azure SQL Database
  • Azure MySQL & PostgreSQL
  • Azure CosmosDB
  • Azure App Service
  • Basic Azure Research Technique
  • Azure Function Apps
  • Static Web Apps
  • Azure Container Registry
  • Azure Container
  • Instances, Apps & Jobs
  • Azure Queue
  • Azure Service Bus
  • Azure Automation Account
  • Azure Logic Apps
  • Azure Cloud Shell
  • Azure Virtual Desktop

 

Methologies

  • White box
  • Black box
  • Pivoting between Entra ID & AD

 

Common Detection Mechanisms

  • Azure & Entra ID Logging & Monitoring
  • Microsoft Sentinel
  • Microsoft Defender for Cloud & Microsoft Defender EASM

Fundamentals and Setup

  1. Overview of Android’s architecture and ecosystem dynamics.
  2. Exploration of security features native to Android using Java, Kotlin, C++, and Rust.
  3. Mobile Application Threat Model
    a) Differences between mobile and web application threat models.
    b) Applying threat modeling techniques specifically to mobile applications.
    c) Case studies highlighting potential threats and vulnerabilities.
    d) How do we secure and test cross platform apps (e.g. ReactNative, Xamarin, etc).
  4. Introduction to industry mobile security standards
    a) OWASP Mobile Application Security (MAS) project
    b) Effective usage of the Mobile Application Security Verification Standard (MASVS).
    c) Effective usage of the Mobile Security Testing Guide (MSTG).
    d) Overview of the OWASP top 10 for mobile.
  5. Setting up and preparing a mobile security testing lab
    a) Configuration of industry-standard tools and guidance on their appropriate use.
    b) Setup of virtual mobile devices using Corellium, including its advantages.
    c) Introductory exercises to familiarize with the tools.
  6. Secure Coding Overview
    a) Exercises to identify vulnerabilities in code examples
    b) Discussion of the appropriate mechanisms for remediation
    c) Practical session on remediation and re-testing the app
  7. Secure storage
    a) Overview of application storage mechanisms.
    b) Introduction to cryptographic storage solutions on Android.

Advanced Techniques and Practical Application

  • Mobile penetration testing methodology
    a) Methodologies used in real-world scenarios with practical tips and tricks.
  • Identifying issues with backend APIs
    a) Examination of client-side trust issues.
    b) Analysis of insecure communications including certificate validation and pinning.
  • Cryptography in Android apps
    a) Utilization of Android’s Crypto APIs.
    b) Implementation of native cryptography using libraries like libnacl and OpenSSL.
    c) Management of cryptographic keys.
  • Authentication and Authorization
    a) Testing client-side authentication mechanisms, including secure usage of biometrics.
    b) Strategies to detect and bypass authentication flaws.
    c) Security measures for API authentication.
  • Android IPC
    a) Detailed exploration of Intents, deep links, Binders/services, and broadcast receivers.
  • Webviews
    a) Identifying and resolving common security issues in Android Webview configurations.
  • Software Composition Analysis (SBOM)
    a) Techniques to determine the components of an Android app.
    b) Identifying known vulnerabilities within these components.
  • Mobile Device Management (MDM)
    a) Introduction to Mobile Device Management: definition, core features, and its role in enhancing organizational security.
    b) Discussion on the benefits and practical applications of MDM in controlling and securing mobile devices across an enterprise.
  • Mobile Application Management (MAM)
    a) Overview of Mobile Application Management: what it entails and its significance in enterprise environments.
    b) Exploration of how MAM contributes to managing and securing applications specifically, detailing its utility for enterprise security strategies.

Advanced Techniques and Practical Application

  • Mobile penetration testing methodology
    a) Methodologies used in real-world scenarios with practical tips and tricks.
  • Identifying issues with backend APIs
    a) Examination of client-side trust issues.
    b) Analysis of insecure communications including App Transport Security issues & certificate pinning.
  • Cryptography in IOS apps
    a) Utilization of iOS’s CryptoKit & CommonCrypto APIs.
    b) Implementation of native cryptography using libraries like libnacl and OpenSSL.
    c) Management of cryptographic keys and leveraging the secure enclave.
  • Authentication and Authorization
    a) Testing client-side authentication mechanisms, including secure usage of Local Authentication (biometrics).
    b) Strategies to detect and bypass authentication flaws.
    c) Security measures for API authentication.
    d) Using Device Check and App Attest
  • iOS IPC
    a) Detailed exploration of URL schemes, deep (universal) links, and extensions.
  • Webviews
    a) Identifying and resolving common security issues in iOS Webview configurations.
  • Software Composition Analysis (SBOM)
    a) Techniques to determine the components of an iOS app.
    b) Identifying known vulnerabilities within these components.
  • Implementing App Integrity
    a) What to look for
    b) How to implement
  • Mobile Device Management (MDM)
    a) Introduction to Mobile Device Management: definition, core features, and its role in enhancing organizational security.
    b) Discussion on the benefits and practical applications of MDM in controlling and securing mobile devices across an enterprise.
  • Mobile Application Management (MAM)
    a) Overview of Mobile Application Management: what it entails and its significance in enterprise environments.
    b) Exploration of how MAM contributes to managing and securing applications specifically, detailing its utility for enterprise security strategies.

Fundamentals & Setup

  1. Overview of iOS’s architecture and ecosystem dynamics.
  2. Exploration of security features native to to iOS using Objective-C, Swift, and C(++).
  3. Mobile Application Threat Model
    a) Differences between mobile and web application threat models.
    b) Applying threat modeling techniques specifically to mobile applications.
    c) Case studies highlighting potential threats and vulnerabilities.
    d) How do we secure and test cross platform apps (e.g. ReactNative, Xamarin, etc).
  4. Introduction to industry mobile security standards
    a) OWASP Mobile Application Security (MAS) project
    b) Effective usage of the Mobile Application Security Verification Standard (MASVS).
    c) Effective usage of the Mobile Security Testing Guide (MSTG).
    d) Overview of the OWASP top 10 for mobile.
  5. Setting up and preparing a mobile security testing lab
    a) Configuration of industry-standard tools and guidance on their appropriate use.
    b) Setup of virtual mobile devices using Corellium, including its advantages.
    c) Introductory exercises to familiarize with the tools.
  6. Secure Coding Overview
    a) Exercises to identify vulnerabilities in iOS code examples
    b) Discussion of the appropriate mechanisms for remediation
    c) Practical session on remediation and re-testing the app
  7. Secure storage
    a) Overview of application storage mechanisms.
    b) Introduction to cryptographic storage solutions on iOS.