This certification has been designed by industry experts to equip you with the core cyber security fundamentals needed to launch a career in the industry.

What is the Cyber Security 101 (SEC1) Certification?

The Cyber Security 101 (SEC1) Certification is a beginner-level, hands-on certification designed for learners who complete TryHackMe's Cyber Security 101 path. It validates foundational offensive, defensive, and investigative skills through real-world, practical scenarios.

Why did TryHackMe build this certification?

TryHackMe created this certification to address several gaps: Most beginner certifications are theory-only or MCQ-based, which don't reflect real cyber security work. Learners repeatedly requested a practical, skills-based credential to help break into the industry. Employers are increasingly demanding proof of real hands-on ability, especially for junior roles. There was no accessible, affordable, and practical certification available for beginners - Cyber Security 101 fills that gap.

Who is the certification designed for?

This certification is ideal for: Students, early-career cyber security learners, interns, career-switchers, anyone with 0-2 years of cyber security experience, and TryHackMe users who complete or are near completion of the Cyber Security 101 path.

What skills does the certification validate?

It validates practical understanding of: Basic offensive security (red team), basic defensive security (blue team), investigative workflows across SIEM, artifacts, and compromised machines, and foundational cyber security concepts needed for junior roles.

What are the prerequisites?

Recommended: Completion of TryHackMe's Cyber Security 101 Path. Recommended: Basic familiarity with Windows, Linux, Networks, Blue & Red teams working on cyber security. No formal prerequisites - but the exam is practical and assumes foundational knowledge.

What is the exam format?
The exam is fully hands-on, split into 7 sections across Red Team, Blue Team, and Purple Team. It includes an analyst VM containing multiple artifacts. Each section includes scenario-based tasks and technical questions based on what you uncover.

How long is the exam and are there retakes?

24 hours and yes, one retake is available post cool down period.

How is this certification different from other beginner cyber security certifications?

Key differentiators: 100% practical and hands-on, not MCQ-based. Uses real systems, real tools, real artifacts, and real attack/defence workflows. Affordable and globally accessible. Integrated directly into a structured learning path. Built on TryHackMe's cloud-based platform - no setup required. Focuses on showing real ability rather than memorised theory. Instant results.

Do I need a TryHackMe subscription to take the exam?

A subscription is not required to purchase the exam. However, parts of the Cyber Security 101 learning path may require a subscription, and it's strongly recommended that candidates complete the path before sitting the exam.

Does Cyber Security 101 (SEC1) expire?

Certification is valid for 3 years. You will need to take the exam again to keep the certification valid.

​Still got more questions?