What You Will Learn

Master the fundamentals of cybersecurity.

SANS Foundations is the most comprehensive, certified introductory cybersecurity course on the market. It supports your early steps into the industry by enabling you to master the fundamental knowledge and demonstrate the practical skills you need to prove you are ready for that first job in cybersecurity.

SANS instructors developed SANS Foundations to help you learn in a way that works best for you. Our engaging, high-definition video lectures are supported by audio recordings, hands-on labs and exercises, ensuring every student graduates with real-world, practical skills.

The course covers the foundations of cybersecurity in 13 modules, they are:

Computer components and concepts
Linux
The Web
Networking Fundamentals
Servers and Services
Practical Programming and Concepts
SQL
Windows Foundations
Advanced Computer Hardware
Assembly
Security concepts
Offensive Security Concepts
Network and Computer infiltration

Upon completion, you will be able to demonstrate programming skills in Python and C, understand the fundamentals of networking, encryption, and Linux, and you will have covered all the core elements of Operating systems, the Web and Security concepts.

"The security labs were my personal favorite as the skills attained through those helped me land a role as a vulnerability analyst in the information security office!" - Kirti Nangia, SANS Foundations Student

Course FAQs

Q: How do I know if this course is right for me?

A: SANS created the Foundations course for students who are new to cyber and looking to take their first step into a technical, cybersecurity career. It is also ideal for IT professionals looking to change their focus to cybersecurity or those who have been working in cybersecurity for a while and would like to refresh their foundational knowledge.

Q: How long does it take to complete the course?

A: The course content can be completed in 50 to 60 hours. To maximize learning outcomes, most students review course content multiple times, repeat labs and quizzes, or do extra exercises.

Q: How long do students have access to the course?

A: Students have access to the course for 4 months, providing plenty of time to go over the material.

Q: How do the labs work?

A: The learning platform for SANS Foundations has an online labs system where students can interact with security tools, get their hands on the Linux command line, and use an Integrated Development Environment (IDE) to write and test code.

Q: What do the quizzes test?

A: The quizzes benchmark a student's knowledge and measure if they understand each module's key concepts and topics. Quizzes are based on course content and can be taken multiple times.

Q: Are there books for this course?

A: All reading materials are electronic and available online. When a student takes the GFACT exam, they'll be provided with a book to aid their learning.

Q: Do students have to take the GIAC SANS Foundations final exam?

A: We strongly advise that all students take the GFACT exam to fully master the SANS Foundations course.

Business Takeaways

SANS Foundations helps Businesses, Government and Federal organizations recruit, train and re-skill cybersecurity professionals across the globe.

Reduce the risk of foundational, cybersecurity knowledge gaps within your organization
Reduce costs of hiring externally by discovering latent talent within your current IT team
Improve new-starter success on advanced courses by covering the foundations first
Enable business growth through training all technical employees to the highest standard
Validate your training investment with your employees passing the GFACT certification
Design effective onboarding frameworks for your employees knowing the foundations of cybersecurity are covered.

Skills Learned

Understand key hardware components and associated memory concepts
Understand the uses of virtualization and containers, with their advantages, and disadvantages.
Be familiar with common exploit anatomy, methodology, and the tools used by attackers
Be familiar with tools used in forensics investigations and their function.
Have a working knowledge of most used Linux commands, permissions, and access control
Understand core networking concepts, protocols, different server types and their uses.
Be able to determine the result of basic logical operation.
Be familiar with programming syntax, constructs, and errors in popular languages.
Recognise different file systems, web technology, and cloud computing models.
Be comfortable with the concepts and terminology associated with cryptography
Be familiar with the ethical and legal concerns associated with hacking
Know the stages of an attack and be familiar with key defensive strategies and concepts.
Be familiar with key Windows CLI commands, permissions and access control.

Hands-On Cybersecurity Foundations Training

To help build on your newfound knowledge, you will practice using the Linux command line, writing computer programs in C and Python, and running common exploits in dozens of hands-on labs and exercises included in the course.

The labs draw on the latest technology, techniques, and concepts in cybersecurity, bringing your knowledge to life in a practical, technical environment, giving you real-world skills that prepare you for the first day of your new cybersecurity career.

'The hands-on labs allowed me to apply theoretical knowledge and improve problem-solving skills. The course stressed the importance of analytical thinking and effective response to security incidents, guiding my approach in real-world scenarios.' - Louise, IT Officer at Insurance Commission

What You Will Receive

Everything is provided in the online learning platform, and no additional software is required to participate in the course. Everything is done online. You can also change between devices and pick up where you left off at any time.

When taking the GFACT exam, students will receive a book to aid their learning.

What Comes Next?

Depending on your current role or career goals, one of these courses is a great next step in your cybersecurity journey

SEC275 and the GFACT certification constitute the initial course for these career-launching programs at the SANS Technology Institute:

Syllabus (38 CPEs)

Download PDF

SEC275: SANS Foundations

Overview
The syllabus is expertly curated to progressively take students from no technical, or security knowledge, to a level where they are speaking the same language as industry professionals.
Topics
Introduction
An introduction to the SANS Foundations course and training platform.
Computer Components and Concepts
This module focuses on the different components of a computer, what they do, and how they work together. It covers topics such as computer hardware, data storage and representation, logic and data manipulation, storing data and files, cloud computing, operating systems, and virtualization
Linux
This module introduces students to Linux, including the Linux environment, navigation, commands, and architecture. Topics include installing Linux, navigation and structure, permissions, and commands like grep, cp, and more. It’s lab-rich, allowing students to practice skills hands on.
The Web
This module covers the fundamentals of how search engines work, effective search techniques, web servers, HTML, and cookies.
Networking Fundamentals
Students learn core networking concepts, including networking components and hardware, packets, network addresses, TCP and UDP protocols, subnetting, and email.
Servers and Services
This module covers different server types, such as web, database, DNS, log, and email servers, including basic setup and installation. It also explores cloud computing, configuration, and hardening basics.
Practical Programming and Concepts
This module covers programming fundamentals and hands-on exercises in Python and C, with labs on topics like variables, user input, file handling, TCP sockets, and more.
SQL
This module introduces SQL basics, including statements, joins, operators, and database administration, laying groundwork for offensive security concepts later in the course.
Windows Foundations
Covers essential Windows CLI commands, permissions, file systems, architecture, networking, and PowerShell. Students learn setup, configuration, logging, registry, user accounts, and more.
Advanced Computer Hardware
Delving into how CPU and RAM functions, and covering advanced storage (e.g., RAID, cloud storage).
Assembly
An introduction to basic assembly, debugging, and reverse engineering using GDB.
Security Concepts
Introduces cryptography and ethical/legal concerns in hacking. Topics include encryption, encoding, hashing, ethics, risk management, reconnaissance tools, and digital forensics.
Offensive Security Concepts
Covers exploitation techniques such as command injection, SQL injection, session guessing, directory traversal, and more. Tools like Metasploit and techniques for privilege escalation and social engineering are also introduced.
Network and Computer Infiltration
Covers persistence, lateral movement, and exfiltration. Students learn about indicators of compromise, ARP cache, rootkits, and common exfiltration methods.
Further Study
The summary reviews all course material, preparing students for the GIAC Foundational Cybersecurity Technologies (GFACT) exam.

GIAC Foundational Cybersecurity Technologies

The GIAC Foundational Cybersecurity Technologies (GFACT) certification validates a practitioner's knowledge of essential foundational cybersecurity concepts. GFACT-certified professionals are familiar with practical skills in computers, technology, and security fundamentals that are needed to kickstart a career in cybersecurity.

Core Computing Components: Hardware and Virtualization, Networking, Operating Systems, Web, Cloud, and Data Storage
IT Fundamentals and Concepts: Logic and Programming, Windows, and Linux
Security Foundations and Threat Landscape: Concepts, Exploitation and Mitigation, Forensics and Post Exploitation

More Certification Details

Prerequisites

There are no prerequisites.
No prior security knowledge is needed.

Laptop Requirements

You'll need the current version of any modern web browser (like Chrome or Firefox).

Everything is provided in the online learning platform, and no additional software is required to participate in the course, you'll find it all on the platform. You can also change between devices and pick up where you left off at any time.

Author Statement

The cybersecurity landscape is changing rapidly and constantly evolving. There are new threats emerging daily, new attackers using novel techniques, and worryingly, a growing shortage of global talent.

Before running to the exciting worlds of application security, reverse malware engineering or threat hunting, every cybersecurity professional needs to have an excellent grounding in essential computing and technology skills. These will be used every day in your career and serve as a baseline for your development and future career.

SANS Foundations is the most comprehensive, certified introductory cybersecurity course on the market. We wanted to make this course as accessible as possible, to eradicate as many potential hurdles stopping people getting into the field. We've specifically designed the course to require minimal equipment or technology proficiency - you do not need any prior specific education, just a keen interest.

Whether you are still in full-time education, a career changer or on an immersive training program, SANS Foundations will provide you with the core IT and computer knowledge integral to a future career in cybersecurity.

- James Lyne - Chief Technology and Innovation officer, SANS

"Despite having a senior level security role, SANS Foundations was a fantastic way to brush up on important concepts that help me better fulfil my job duties." - Noah Pack, SANS Foundations Student

Who Should Attend SEC275?

The course provides exactly what students need to go from zero technical and security knowledge to a level of sufficient understanding and applied practical skills that will enable students to speak the same language as industry professionals. This course is designed for:

Career changers
Online, self-driven learners seeking new skills
College & university students
Business professionals without a deep cybersecurity background
New hires in IT/cybersecurity
Participants in reskilling program

See prerequisites

Display times in

Africa/Abidjan

Africa/Accra

Africa/Addis Ababa

Africa/Algiers

Africa/Asmara

Africa/Asmera

Africa/Bamako

Africa/Bangui

Africa/Banjul

Africa/Bissau

Africa/Blantyre

Africa/Brazzaville

Africa/Bujumbura

Africa/Cairo

Africa/Casablanca

Africa/Ceuta

Africa/Conakry

Africa/Dakar

Africa/Dar es Salaam

Africa/Djibouti

Africa/Douala

Africa/El Aaiun

Africa/Freetown

Africa/Gaborone

Africa/Harare

Africa/Johannesburg

Africa/Juba

Africa/Kampala

Africa/Khartoum

Africa/Kigali

Africa/Kinshasa

Africa/Lagos

Africa/Libreville

Africa/Lome

Africa/Luanda

Africa/Lubumbashi

Africa/Lusaka

Africa/Malabo

Africa/Maputo

Africa/Maseru

Africa/Mbabane

Africa/Mogadishu

Africa/Monrovia

Africa/Nairobi

Africa/Ndjamena

Africa/Niamey

Africa/Nouakchott

Africa/Ouagadougou

Africa/Porto-Novo

Africa/Sao Tome

Africa/Timbuktu

Africa/Tripoli

Africa/Tunis

Africa/Windhoek

America/Adak

America/Anchorage

America/Anguilla

America/Antigua

America/Araguaina

America/Argentina/Buenos Aires

America/Argentina/Catamarca

America/Argentina/ComodRivadavia

America/Argentina/Cordoba

America/Argentina/Jujuy

America/Argentina/La Rioja

America/Argentina/Mendoza

America/Argentina/Rio Gallegos

America/Argentina/Salta

America/Argentina/San Juan

America/Argentina/San Luis

America/Argentina/Tucuman

America/Argentina/Ushuaia

America/Aruba

America/Asuncion

America/Atikokan

America/Atka

America/Bahia

America/Bahia Banderas

America/Barbados

America/Belem

America/Belize

America/Blanc-Sablon

America/Boa Vista

America/Bogota

America/Boise

America/Buenos Aires

America/Cambridge Bay

America/Campo Grande

America/Cancun

America/Caracas

America/Catamarca

America/Cayenne

America/Cayman

America/Chicago

America/Chihuahua

America/Ciudad Juarez

America/Coral Harbour

America/Cordoba

America/Costa Rica

America/Creston

America/Cuiaba

America/Curacao

America/Danmarkshavn

America/Dawson

America/Dawson Creek

America/Denver

America/Detroit

America/Dominica

America/Edmonton

America/Eirunepe

America/El Salvador

America/Ensenada

America/Fort Nelson

America/Fort Wayne

America/Fortaleza

America/Glace Bay

America/Godthab

America/Goose Bay

America/Grand Turk

America/Grenada

America/Guadeloupe

America/Guatemala

America/Guayaquil

America/Guyana

America/Halifax

America/Havana

America/Hermosillo

America/Indiana/Indianapolis

America/Indiana/Knox

America/Indiana/Marengo

America/Indiana/Petersburg

America/Indiana/Tell City

America/Indiana/Vevay

America/Indiana/Vincennes

America/Indiana/Winamac

America/Indianapolis

America/Inuvik

America/Iqaluit

America/Jamaica

America/Jujuy

America/Juneau

America/Kentucky/Louisville

America/Kentucky/Monticello

America/Knox IN

America/Kralendijk

America/La Paz

America/Lima

America/Los Angeles

America/Louisville

America/Lower Princes

America/Maceio

America/Managua

America/Manaus

America/Marigot

America/Martinique

America/Matamoros

America/Mazatlan

America/Mendoza

America/Menominee

America/Merida

America/Metlakatla

America/Mexico City

America/Miquelon

America/Moncton

America/Monterrey

America/Montevideo

America/Montreal

America/Montserrat

America/Nassau

America/New York

America/Nipigon

America/Nome

America/Noronha

America/North Dakota/Beulah

America/North Dakota/Center

America/North Dakota/New Salem

America/Nuuk

America/Ojinaga

America/Panama

America/Pangnirtung

America/Paramaribo

America/Phoenix

America/Port-au-Prince

America/Port of Spain

America/Porto Acre

America/Porto Velho

America/Puerto Rico

America/Punta Arenas

America/Rainy River

America/Rankin Inlet

America/Recife

America/Regina

America/Resolute

America/Rio Branco

America/Rosario

America/Santa Isabel

America/Santarem

America/Santiago

America/Santo Domingo

America/Sao Paulo

America/Scoresbysund

America/Shiprock

America/Sitka

America/St Barthelemy

America/St Johns

America/St Kitts

America/St Lucia

America/St Thomas

America/St Vincent

America/Swift Current

America/Tegucigalpa

America/Thule

America/Thunder Bay

America/Tijuana

America/Toronto

America/Tortola

America/Vancouver

America/Virgin

America/Whitehorse

America/Winnipeg

America/Yakutat

America/Yellowknife

Antarctica/Casey

Antarctica/Davis

Antarctica/DumontDUrville

Antarctica/Macquarie

Antarctica/Mawson

Antarctica/McMurdo

Antarctica/Palmer

Antarctica/Rothera

Antarctica/South Pole

Antarctica/Syowa

Antarctica/Troll

Antarctica/Vostok

Arctic/Longyearbyen

Asia/Aden

Asia/Almaty

Asia/Amman

Asia/Anadyr

Asia/Aqtau

Asia/Aqtobe

Asia/Ashgabat

Asia/Ashkhabad

Asia/Atyrau

Asia/Baghdad

Asia/Bahrain

Asia/Baku

Asia/Bangkok

Asia/Barnaul

Asia/Beirut

Asia/Bishkek

Asia/Brunei

Asia/Calcutta

Asia/Chita

Asia/Choibalsan

Asia/Chongqing

Asia/Chungking

Asia/Colombo

Asia/Dacca

Asia/Damascus

Asia/Dhaka

Asia/Dili

Asia/Dubai

Asia/Dushanbe

Asia/Famagusta

Asia/Gaza

Asia/Harbin

Asia/Hebron

Asia/Ho Chi Minh

Asia/Hong Kong

Asia/Hovd

Asia/Irkutsk

Asia/Istanbul

Asia/Jakarta

Asia/Jayapura

Asia/Jerusalem

Asia/Kabul

Asia/Kamchatka

Asia/Karachi

Asia/Kashgar

Asia/Kathmandu

Asia/Katmandu

Asia/Khandyga

Asia/Kolkata

Asia/Krasnoyarsk

Asia/Kuala Lumpur

Asia/Kuching

Asia/Kuwait

Asia/Macao

Asia/Macau

Asia/Magadan

Asia/Makassar

Asia/Manila

Asia/Muscat

Asia/Nicosia

Asia/Novokuznetsk

Asia/Novosibirsk

Asia/Omsk

Asia/Oral

Asia/Phnom Penh

Asia/Pontianak

Asia/Pyongyang

Asia/Qatar

Asia/Qostanay

Asia/Qyzylorda

Asia/Rangoon

Asia/Riyadh

Asia/Saigon

Asia/Sakhalin

Asia/Samarkand

Asia/Seoul

Asia/Shanghai

Asia/Singapore

Asia/Srednekolymsk

Asia/Taipei

Asia/Tashkent

Asia/Tbilisi

Asia/Tehran

Asia/Tel Aviv

Asia/Thimbu

Asia/Thimphu

Asia/Tokyo

Asia/Tomsk

Asia/Ujung Pandang

Asia/Ulaanbaatar

Asia/Ulan Bator

Asia/Urumqi

Asia/Ust-Nera

Asia/Vientiane

Asia/Vladivostok

Asia/Yakutsk

Asia/Yangon

Asia/Yekaterinburg

Asia/Yerevan

Atlantic/Azores

Atlantic/Bermuda

Atlantic/Canary

Atlantic/Cape Verde

Atlantic/Faeroe

Atlantic/Faroe

Atlantic/Jan Mayen

Atlantic/Madeira

Atlantic/Reykjavik

Atlantic/South Georgia

Atlantic/St Helena

Atlantic/Stanley

Australia/ACT

Australia/Adelaide

Australia/Brisbane

Australia/Broken Hill

Australia/Canberra

Australia/Currie

Australia/Darwin

Australia/Eucla

Australia/Hobart

Australia/LHI

Australia/Lindeman

Australia/Lord Howe

Australia/Melbourne

Australia/NSW

Australia/North

Australia/Perth

Australia/Queensland

Australia/South

Australia/Sydney

Australia/Tasmania

Australia/Victoria

Australia/West

Australia/Yancowinna

Brazil/Acre

Brazil/DeNoronha

Brazil/East

Brazil/West

CET

CST6CDT

Canada/Atlantic

Canada/Central

Canada/Eastern

Canada/Mountain

Canada/Newfoundland

Canada/Pacific

Canada/Saskatchewan

Canada/Yukon

Chile/Continental

Chile/EasterIsland

Cuba

EET

EST

EST5EDT

Egypt

Eire

Etc/GMT

Etc/GMT+0

Etc/GMT+1

Etc/GMT+10

Etc/GMT+11

Etc/GMT+12

Etc/GMT+2

Etc/GMT+3

Etc/GMT+4

Etc/GMT+5

Etc/GMT+6

Etc/GMT+7

Etc/GMT+8

Etc/GMT+9

Etc/GMT-0

Etc/GMT-1

Etc/GMT-10

Etc/GMT-11

Etc/GMT-12

Etc/GMT-13

Etc/GMT-14

Etc/GMT-2

Etc/GMT-3

Etc/GMT-4

Etc/GMT-5

Etc/GMT-6

Etc/GMT-7

Etc/GMT-8

Etc/GMT-9

Etc/GMT0

Etc/Greenwich

Etc/UCT

Etc/UTC

Etc/Universal

Etc/Zulu

Europe/Amsterdam

Europe/Andorra

Europe/Astrakhan

Europe/Athens

Europe/Belfast

Europe/Belgrade

Europe/Berlin

Europe/Bratislava

Europe/Brussels

Europe/Bucharest

Europe/Budapest

Europe/Busingen

Europe/Chisinau

Europe/Copenhagen

Europe/Dublin

Europe/Gibraltar

Europe/Guernsey

Europe/Helsinki

Europe/Isle of Man

Europe/Istanbul

Europe/Jersey

Europe/Kaliningrad

Europe/Kiev

Europe/Kirov

Europe/Kyiv

Europe/Lisbon

Europe/Ljubljana

Europe/London

Europe/Luxembourg

Europe/Madrid

Europe/Malta

Europe/Mariehamn

Europe/Minsk

Europe/Monaco

Europe/Moscow

Europe/Nicosia

Europe/Oslo

Europe/Paris

Europe/Podgorica

Europe/Prague

Europe/Riga

Europe/Rome

Europe/Samara

Europe/San Marino

Europe/Sarajevo

Europe/Saratov

Europe/Simferopol

Europe/Skopje

Europe/Sofia

Europe/Stockholm

Europe/Tallinn

Europe/Tirane

Europe/Tiraspol

Europe/Ulyanovsk

Europe/Uzhgorod

Europe/Vaduz

Europe/Vatican

Europe/Vienna

Europe/Vilnius

Europe/Volgograd

Europe/Warsaw

Europe/Zagreb

Europe/Zaporozhye

Europe/Zurich

GB-Eire

GMT

GMT+0

GMT-0

GMT0

Greenwich

HST

Hongkong

Iceland

Indian/Antananarivo

Indian/Chagos

Indian/Christmas

Indian/Cocos

Indian/Comoro

Indian/Kerguelen

Indian/Mahe

Indian/Maldives

Indian/Mauritius

Indian/Mayotte

Indian/Reunion

Iran

Israel

Jamaica

Japan

Kwajalein

Libya

MET

MST

MST7MDT

Mexico/BajaNorte

Mexico/BajaSur

Mexico/General

NZ-CHAT

Navajo

PRC

PST8PDT

Pacific/Apia

Pacific/Auckland

Pacific/Bougainville

Pacific/Chatham

Pacific/Chuuk

Pacific/Easter

Pacific/Efate

Pacific/Enderbury

Pacific/Fakaofo

Pacific/Fiji

Pacific/Funafuti

Pacific/Galapagos

Pacific/Gambier

Pacific/Guadalcanal

Pacific/Guam

Pacific/Honolulu

Pacific/Johnston

Pacific/Kanton

Pacific/Kiritimati

Pacific/Kosrae

Pacific/Kwajalein

Pacific/Majuro

Pacific/Marquesas

Pacific/Midway

Pacific/Nauru

Pacific/Niue

Pacific/Norfolk

Pacific/Noumea

Pacific/Pago Pago

Pacific/Palau

Pacific/Pitcairn

Pacific/Pohnpei

Pacific/Ponape

Pacific/Port Moresby

Pacific/Rarotonga

Pacific/Saipan

Pacific/Samoa

Pacific/Tahiti

Pacific/Tarawa

Pacific/Tongatapu

Pacific/Truk

Pacific/Wake

Pacific/Wallis

Pacific/Yap

Poland

Portugal

ROC

ROK

Singapore

Turkey

UCT

US/Alaska

US/Aleutian

US/Arizona

US/Central

US/East-Indiana

US/Eastern

US/Hawaii

US/Indiana-Starke

US/Michigan

US/Mountain

US/Pacific

US/Samoa

UTC

Universal

W-SU

WET

Zulu

Filters:

Register for SEC275

Learn about Group Pricing

Prices below exclude applicable taxes and shipping costs. If applicable, these will be shown on the last page of checkout.

Courses

Hands-On Simulations

Certifications

Ways to Train

Training Events & Summits

Free Training Events

Security Awareness

By Focus Area

By NICE Framework

DoDD 8140 Work Roles

By European Skills Framework

By Skills Roadmap

New to Cyber

Leadership

Degree and Certificate Programs

Watch & Listen

Read

Download

SANS Community Benefits

CISO Network

Team Development

Leadership Development

Security Awareness

Public Sector Partnerships

Sponsorship Opportunities

SEC275: Foundations: Computers, Technology, & Security™

GIAC Foundational Cybersecurity Technologies (GFACT)

Course Authors:

James Lyne