CIA Triad — basic foundation
Confidentiality (data private-a irukkanum), Integrity (data change aagama irukkanum), Availability (system use panna mudiyanum). Every security control maps to one of these three. Lab example: SQL injection breaks confidentiality; CSRF breaks integrity.
OWASP Top 10 — industry standard
The ten most common web application risks: injection, broken authentication, sensitive data exposure, XXE, broken access control, security misconfiguration, XSS, insecure deserialization, vulnerable components, insufficient logging. Cyfotok has labs for most of these.
Tamil Nadu college syllabus overlap
Many Anna University and autonomous college cyber security electives cover network security, cryptography, and web security theory. Cyfotok labs give you the practical half — actually exploiting and fixing vulnerabilities instead of memorizing definitions.
Free resources to combine
Cyfotok for labs, college lectures for exams, OWASP documentation for reference, Tamil security communities on Telegram/Discord for peer support. Do not rely on one source.