Bloom Exam
Find out where you stand across the 6 levels of knowledge.
A radar-charted self-assessment based on the 6 levels of Bloom's Taxonomy — Remembering · Understanding · Applying · Analyzing · Evaluating · Creating. At the end, a personalized program recommendation based on your weakest level.
OWASP Top 10 · Web Security Self-Assessment
The 10 major families of web vulnerabilities · 18 questions across 6 Bloom levels. Code examples · log snippets · real scenarios. At the end, a program recommendation based on your weakest level.
ISO 27001 + KVKK · Compliance Fundamentals
ISMS · risk management · KVKK · audit and compliance. 18 questions, 6 Bloom levels. At the end, a KVKK Auditor recommendation based on your weakest level.
MITRE ATT&CK · Threat Hunting
Hypothesis-based hunting · TTP chain correlation · Sysmon · EDR · SIEM detection-as-code. 18 questions, 6 Bloom levels. At the end, a SOC Analyst program based on your weakest level.
Digital Forensics Fundamentals · ISO 27037 + Chain of Custody
Chain of custody · SHA-256 · write-blocker · order of volatility. 18 questions, 6 Bloom levels. Concludes with a DSET Forensic Investigator recommendation.
Mobile Forensics · iOS + Android + Pegasus
Cellebrite · BFU/AFU · chip-off · MVT · WhatsApp/Signal extraction. 18 questions, 6 Bloom levels. A complete framework for modern mobile forensics.
Ransomware Response · NIST IR + LockBit/Akira
NIST IR lifecycle · containment · krbtgt double rotation · immutable backup · double extortion. 18 questions, 6 Bloom levels. For SOC + IR teams.
RAID Data Recovery · Geometry + Reconstruction
RAID 0/1/5/6/10 · degraded mode · stripe size · parity rotation · clean room. 18 questions, 6 Bloom levels. The basis of the DSET Data Recovery Specialist track.
Memory Forensics · Volatility 3 + Fileless Detection
RAM dump · Volatility 3 · pslist/psscan · malfind · Cobalt Strike beacon · LSASS dump. 18 questions, 6 Bloom levels. Threat hunting + IR.
PTES · Pentest Methodology + Ethics
7-phase PTES framework · RoE · OSINT · threat modeling · reporting · re-test. 18 questions, 6 Bloom levels. The basis of the DSET CEH-TR track.
Active Directory Attacks · Kerberoast + BloodHound
Kerberoast · Pass-the-Hash · Golden Ticket · DCSync · BloodHound · krbtgt rotation · Tier Model. 18 questions.
Network Pentest · Nmap + Wireshark + Lateral
Nmap scan · MITM · VLAN hopping · pivoting · SMB enumeration · IDS bypass · IT vs OT. 18 questions, 6 Bloom levels.
Wireless Security · WPA3 + Enterprise + WIPS
WPA2/3 · 4-way handshake · PMKID · Evil Twin · Enterprise EAP-TLS · WIPS · BLE. 18 questions.
Mobile App Pentest · OWASP MASVS L2
MASVS L2 27 controls · Frida · pinning bypass · root detection · Keychain/Keystore · re-test. 18 questions.
AWS Cloud Security · IAM + S3 + GuardDuty
IAM least privilege · S3 misconfig · IMDSv2 · CloudTrail · GuardDuty · Security Hub. 18 questions, 6 Bloom levels.
Azure Cloud Security · Entra ID + Sentinel
Entra ID · Conditional Access · PIM · Key Vault · Defender for Cloud · Sentinel KQL. 18 questions, 6 Bloom levels.
Container Security · Docker + Kubernetes
Rootless containers · RBAC · Network Policy · Pod Security · Falco · Trivy · supply chain. 18 questions.
DevSecOps · CI/CD + Shift-Left + Supply Chain
SAST + DAST + SCA · secrets in git · log4shell · SBOM · SLSA · GitHub Actions security. 18 questions.
Cryptography Fundamentals · TLS + AES + RSA + PQ
Symmetric/Asymmetric · AES-GCM · TLS 1.3 · PFS · JWT algorithms · hashing · post-quantum. 18 questions.
SOC Operations · Tier 1/2/3 + Playbooks
Alert triage · MTTR/MTTD · playbooks · SOAR · alert fatigue · use case engineering. 18 questions, 6 Bloom levels.
EDR/XDR Management · CrowdStrike + SentinelOne + Defender
Behavior vs signature · rollback · isolate host · LSASS detection · fileless · deployment + tuning. 18 questions.
SIEM + KQL · Sentinel + Splunk + Threat Hunting
Log normalization · KQL queries · use cases · alert tuning · cost optimization · MITRE coverage. 18 questions.
Cyber Threat Intelligence · IOC + TTP + STIX/TAXII
IOC vs TTP · Pyramid of Pain · Strategic/Tactical/Operational · MISP + ISAC · APT vs FinMo. 18 questions.
Phishing + Social Engineering · BEC + Whaling + Awareness
Whaling · BEC · DMARC · Evilginx2 · MFA bypass · simulation · awareness · FIDO2. 18 questions.
Advanced SSD & NAND Data Recovery · FTL + Chip-off
Wear-leveling · FTL reconstruction · TRIM/GC · chip-off NAND · XOR scrambling · ECC · bad-block. 18 questions, 6 Bloom levels. DSET Data Recovery Specialist advanced level.
HDD Firmware & Service Area Recovery · Translator + ROM
ROM/NVRAM · translator · P-list/G-list · head map · service area modules · PCB+ROM transfer · donor matching · PC-3000. 18 questions, 6 Bloom levels.
Encrypted Volume Data Recovery · BitLocker + LUKS + FileVault
BitLocker (recovery key/TPM/FVEK/VMK) · LUKS (header/keyslot) · FileVault 2 · APFS · VeraCrypt · key storage · before-decryption workflow. 18 questions, 6 Bloom levels.
Advanced RAID & NAS Recovery · ZFS · Btrfs · SHR · Nested RAID
ZFS vdev/pool/RAIDZ · zpool import · Btrfs CoW · Synology SHR · nested RAID 10/50/60 · parity rotation · mdadm metadata · NAS firmware. 18 questions, 6 Bloom levels. Advanced level of the DSET Data Recovery Specialist track.
Mobile eMMC & UFS Data Recovery · ISP · JTAG · Chip-off
eMMC pinout & ISP · UFS · monolith devices · JTAG · BGA chip-off & reballing · encrypted iOS (Secure Enclave) / Android (FBE) · test point access. 18 questions, 6 Bloom levels. Advanced level of the DSET Data Recovery Specialist track.
Advanced Windows Artifact Analysis · $MFT + Registry + Timeline
$MFT/$LogFile/$UsnJrnl · registry hives · ShimCache/Amcache · Prefetch · SRUM · ShellBags · VSS. 18 questions, 6 Bloom levels. An advanced framework for the DSET Forensic Investigator track.
Cloud Forensics · M365 + Azure + AWS
M365 Unified Audit Log · Entra sign-in · CloudTrail · Workspace audit · API evidence acquisition · token theft & MFA fatigue. 18 questions, 6 Bloom levels.
Network Traffic Forensic Analysis · PCAP + Zeek + NetFlow
PCAP analysis · Wireshark/tshark · Zeek logs · NetFlow/IPFIX · JA3 · C2 beacon · DNS tunneling · data exfiltration reconstruction. 18 questions, 6 Bloom levels.
Malware Forensic Analysis · Static + Dynamic + IOC
PE headers · import table · entropy · sandbox · unpacking · code injection · YARA · anti-VM · persistence. 18 questions, 6 Bloom levels. A complete framework for advanced malware analysis.
Anti-Forensics & Super Timeline · Timestomping + Plaso
$STANDARD_INFO vs $FILE_NAME · timestomping detection · plaso/log2timeline · log tampering · carving · secure deletion traces · steganography. 18 questions, 6 Bloom levels.