I Learned Cybersecurity the Real Way: HTB and THM Changed Everything

Rahul GargRahul Garg
4 min read

Table of contents

Let’s be honest — you can’t really learn cybersecurity by just reading books or watching a YouTube playlist. You’ve gotta get your hands dirty. And I’m not talking about typing ‘Nmap -A’ and calling yourself a hacker. I mean real-world exploitation, privilege escalation, pivoting through networks, reverse shells, rabbit holes, failed attempts, and finally… root.

If you're on that same path or want to be — let me introduce you to Hack The Box (HTB) and TryHackMe (THM) — the two platforms that legitimately turned my learning curve into a straight-up rocket launch.

Why Theory Alone Just Doesn’t Cut It

Here’s the thing: cybersecurity isn’t like most other tech fields. There’s no one-size-fits-all guide, no universal roadmap. The landscape changes constantly, and if you’re not hands-on, you’re falling behind.

That’s why these platforms are game-changers. HTB and THM put you right into the attacker’s seat. No safety nets. No spoon-feeding. Just you, your tools, and a vulnerable machine daring you to break in.

HTB: The Hacker's Playground

Hack The Box is where I go to test my limits. It's gritty, real-world, sometimes frustrating — but that’s exactly what makes it gold.

  • Machines (aka “boxes”) come in all difficulty levels. Some will make you feel like a god. Others will humble you hard.

  • Pro Labs simulate full enterprise networks. If you’re prepping for red teaming, you’ll love these.

  • HTB Academy is their structured learning platform. Honestly, it’s underrated. Interactive, deep, and very hands-on.

  • CTFs are always around the corner — and if you enjoy solving puzzles under pressure, this is your fix.

I started with easy boxes and slowly worked my way up. Every root.txt hit gave me that dopamine shot. It’s addictive.

TryHackMe: Where It All Begins

TryHackMe was where I really started. I’m talking zero experience — didn’t know what a reverse shell was — kind of beginning.

  • Their learning paths are crazy good. They literally walk you through the basics like networking, Linux, and web exploitation.

  • Every concept is broken into “rooms” — self-contained labs with real exploits and walkthrough-style challenges.

  • What’s cool? You don’t even need to set up your own Kali VM at first. They give you a browser-based VM to hack right away.

  • Hints, quizzes, and even nudges if you get stuck. It’s the perfect balance between support and challenge.

It’s super beginner-friendly but doesn’t feel watered down. And once you’re done with the basics, you’ll be more than ready to take on HTB.

HTB vs THM — The Real Talk

FeatureHTBTHM
Learning CurveSteep — figure it out or get rektSmooth — perfect for self-paced study
HandholdingZero. You’re on your own, hackerEnough to help, not enough to spoil fun
RealismFeels like actual networksSimulated but still solid
CommunityPro-heavy, competitive, serious flexingFriendly, helpful, great for noobs

My advice? Use both. THM builds your fundamentals. HTB tests if you've got the grit.

My Own Learning Flow (You Can Steal It)

  1. Started with THM’s “Pre-Security” path — learned Linux basics, networking, even some cryptography.

  2. Moved to “Complete Beginner” → “Offensive Pentesting” — these two unlocked everything for me.

  3. Switched to HTB, picked Easy boxes, followed write-ups when stuck.

  4. Then went deeper — HTB Academy, some Medium boxes, and started solving CTFs.

  5. Built a portfolio of write-ups and even landed a gig doing real-world pentesting.

And now? I’m that guy who gets excited when I find an open SMB share or a forgotten cron job.

Certs That Pair Nicely

  • TryHackMe preps you beautifully for eJPT, CompTIA Security+, CEH.

  • Hack The Box is a must-do if you're aiming for OSCP, OSEP, or CRTO.

  • HTB Academy also has a certification track that’s gaining respect fast.

Beyond Learning: Why This Actually Matters

  • When you walk into interviews with real rooted boxes, CTF badges, and a write-up blog, it stands out.

  • The mindset you develop — curiosity, persistence, critical thinking — that's what security teams look for.

  • You’re not just studying anymore. You’re training. You’re building muscle memory. And trust me, it shows.

Final Words from a Fellow Hacker

You don’t need a degree to get into cybersecurity. You need obsession. You need curiosity. And you need to start doing — today.

So whether you’re a total beginner or a burnt-out sysadmin looking to switch fields, start with THM. Then challenge yourself on HTB. Learn. Break things. Fix them. Repeat.

Because in the end, it’s not about getting root. It’s about proving to yourself that you can.

0
Subscribe to my newsletter

Read articles from Rahul Garg directly inside your inbox. Subscribe to the newsletter, and don't miss out.

#cybersecurityEthical Hackinginfosec#HackTheBoxtryhackme

Written by

Rahul Garg
Rahul Garg