The PracticalCyberSecGuide
The interactive guide

Cybersecurity for people with real lives

The practical guide to cybersecurity for everyday people, useful in personal life and at work.

1 modules
1 topics
1 checklist
1 examples
Navigable path

A path for protecting yourself in real situations

Start from everyday actions, both personal and work-related, and learn to recognize when a message, login, file or request deserves one more check.

Foundations

Introduction to Cybersecurity

Cybersecurity begins with the way we read digital situations: a message, a login, a shared file or an urgent request. This module introduces risk, threat, vulnerability, impact and likelihood, helping you understand when to pause, check and verify before acting.

6 goals6 topics2 exercises3 examples
Foundations
Open module
  • Explain what cybersecurity is using simple, everyday examples.
  • Understand why security affects every person who uses digital tools, not only technical roles.
  • Identify data, accounts and digital tools that need to be protected.
  • Interpret cyber risk by connecting the situation, the weakness and the possible consequences.
  • Distinguish between threat, vulnerability, impact and likelihood in practical cases.
  • Understand the role of haste, habit and trust in security decisions.
Data and privacy

Security, Privacy and Data

Security and privacy meet every time data is collected, stored, sent or shared. This module helps you read content, metadata, context, recipients and permissions, so you can understand not only whether information is protected, but also whether it is correct to use it in that way.

6 goals8 topics1 checklist2 exercises7 examples
Data and privacy
Open module
  • Distinguish cybersecurity and privacy in everyday cases.
  • Understand why data can be protected but still used in the wrong way.
  • Recognize personal data, business data and particularly sensitive information.
  • Read metadata as contextual information, not as secondary technical details.
  • Reduce risks before sending documents, photos, emails and cloud links.
  • Apply the minimum-necessary principle when sharing information.
Access

Access Management and Digital Identity

Every account is an entry point to email, documents, business systems, banking services or company tools. This module organizes digital identity, open sessions, account recovery, roles, permissions and shared accounts, helping you use a guided map to assess which access points are truly the priority and how to protect them better.

6 goals4 topics2 checklist2 exercises4 examples
Access
Open module
  • Explain why every account is a door to data, tools and responsibilities.
  • Distinguish personal, business, shared, administrative and critical accounts.
  • Recognize the practical risks of shared accounts and open sessions.
  • Check connected devices, recovery methods and access that is no longer needed.
  • Apply the principle of least privilege to files, cloud, business systems and accounts.
  • Choose safer behaviors when access is used from multiple devices.
Access

Passwords: Creation, Management and Storage

A weak, reused or personal-life-based password can put many services at risk at once. This module explains how to reason about length, uniqueness, passphrases, password managers and secure storage, avoiding useless rules and habits that are easy to guess.

4 goals5 topics1 checklist1 exercises1 examples
Access
Open module
  • Create strong passwords.
  • Avoid reuse.
  • Understand when to use a password manager.
  • Know what to do if a password is compromised.
Access

Password Attacks and MFA

Password attacks do not only try random combinations: they reuse stolen credentials, exploit dictionaries, phishing, keyloggers and MFA prompts approved by mistake. This module shows why multi-factor authentication reduces risk and how to manage it without dangerous reflexes.

5 goals5 topics1 checklist1 exercises1 examples
Access
Open module
  • Understand brute force, dictionary attacks and credential stuffing.
  • Distinguish 2FA and MFA.
  • Manage backup codes and phone changes.
  • Reject unexpected MFA prompts.
  • Prioritize the most critical accounts.
Threats

The Attacker Perspective and OSINT

Many attacks start before the first message is sent. Public information, social profiles, documents, roles and habits help attackers build credible stories. This module teaches how to look at public traces with the attacker perspective and reduce unnecessary exposure.

4 goals4 topics1 checklist1 exercises1 examples
Threats
Open module
  • Understand what OSINT is.
  • Recognize useful public information for attackers.
  • Reduce unnecessary exposure.
  • Read social and business information critically.
Threats

Social Engineering

Social engineering exploits emotions, trust, urgency and routine. This module explains the psychological levers that push people to act too quickly and gives practical checks to slow down, verify and use safer channels.

4 goals5 topics1 checklist1 exercises1 examples
Threats
Open module
  • Recognize common manipulation levers.
  • Slow down urgent requests.
  • Verify identity and channel.
  • Respond safely under pressure.
Threats

Phishing, Smishing, Vishing and Scams

Fake emails, text messages, calls and chats are designed to look familiar and push quick action. This module helps read sender, tone, links, attachments, OTP requests and context as connected signals rather than isolated details.

4 goals6 topics1 checklist1 exercises1 examples
Threats
Open module
  • Recognize phishing, smishing and vishing.
  • Analyze links and attachments.
  • Treat OTP requests as high-risk.
  • Verify through official channels.
Threats

Suspicious Links: Before You Click

The moment before clicking is a practical control point. This module turns link checks into a repeatable procedure: real domain, subdomains, shortened URLs, QR codes, HTTPS, context and safer alternatives.

4 goals7 topics1 checklist1 exercises1 examples
Threats
Open module
  • Read domains and subdomains.
  • Recognize shortened or disguised links.
  • Handle QR codes carefully.
  • Choose safer access paths.
Threats

Malware and Ransomware

Malware can arrive through attachments, fake apps, compromised sites, extensions or unsafe downloads. This module explains what malware and ransomware do, how they enter and which habits reduce exposure on computers and smartphones.

4 goals7 topics1 checklist1 exercises1 examples
Threats
Open module
  • Understand malware families.
  • Recognize risky downloads and attachments.
  • Reduce installation risk.
  • Prepare for ransomware with backups and updates.
Foundations

Safe Behaviors for PC, Smartphone, Email and Social Media

Security improves through repeated habits on the tools used every day. This module covers screen lock, updates, app permissions, email handling, social sharing, device loss, safe browsing and practical routines for work and personal life.

4 goals6 topics1 checklist1 exercises1 examples
Foundations
Open module
  • Apply safe habits on devices.
  • Manage email and social media carefully.
  • Protect smartphones and computers.
  • React correctly to loss or suspicious activity.
Data and privacy

Cloud, Backup and Wi-Fi

Cloud sharing, backups and Wi-Fi are convenient, but they require control. This module covers permissions, public links, recovery tests, shared folders, personal hotspots, public networks and practical choices that keep access intentional.

4 goals5 topics1 checklist1 exercises1 examples
Data and privacy
Open module
  • Manage cloud permissions.
  • Avoid uncontrolled public links.
  • Understand backup quality.
  • Use Wi-Fi and hotspots safely.
Response

What to Do During an Incident

When something goes wrong, the first minutes matter. This module gives a practical response method: stop, preserve evidence, change channel, report, avoid improvising and reduce confusion while protecting accounts, devices and data.

4 goals5 topics1 checklist1 exercises1 examples
Response
Open module
  • Recognize signs of an incident.
  • Avoid making things worse.
  • Preserve useful evidence.
  • Report through the right channel.
Response

Personal and Business Security

Personal and business security often overlap: payments, identity documents, remote work, digital identity, suppliers and bank details require traceable checks. This module connects private habits and workplace procedures with practical verification rules.

4 goals3 topics1 checklist1 exercises1 examples
Response
Open module
  • Handle payments and bank-detail changes safely.
  • Protect identity documents.
  • Apply secure remote-work habits.
  • Use traceable checks for sensitive requests.
Response

Summary, Vademecum and Final Check

The final module turns the whole course into an operational vademecum. It collects what to check before clicking, sharing, entering data, approving requests or reacting to an incident, with a concise method that can be reused in daily work.

4 goals3 topics1 checklist1 exercises1 examples
Response
Open module
  • Consolidate the course method.
  • Use a final operational checklist.
  • Apply the pause-check-confirm rule.
  • Know which controls matter most.