Narrative Security

Look, I'm going to be honest with you. Teaching cybersecurity the traditional way — PowerPoint slides, textbook chapters, vocabulary lists... All very professional. Very boring. Basically a guarantee that you'd forget everything by Friday. But then I thought: if I had to choose between "memorizing the definition of lateral movement" and "watching a fictional teen's digital life implode in real time," which one would actually stick with me? The answer is obvious. Chaos is memorable. So I created Marcus Washington. Marcus is having the kind of day where his Instagram gets hacked, his mom becomes an impromptu IT security consultant, and he realizes that his email is literally connected to his mom's work which is connected to Navy contractors which means he's accidentally a potential door into the entire Hampton Roads defense sector. That's not abstract. That's a problem. And the beautiful part? Marcus's problem is your problem. Right now. Today. Except you probably haven't realized it yet. (You should probably check your app permissions after you read this.) But Marcus is just the beginning. Because once your students actually care about the story, the next question is: can they do something about it? That's where I hand them a terminal and tell them to get to work. Ghost Protocol puts students inside a real Linux command-line interface — not a simulation of one, not a worksheet dressed up in a dark theme — an actual CLI where they type real commands and watch real things happen. And Operation: Black Horizon drops them into the role of a penetration tester, making methodology decisions that have consequences. There are arcade games. There are CTF challenges. There are Red Team vs. Blue Team scenarios where someone has to defend and someone has to attack and both sides learn something they didn't expect. Here's my deal with you: I'm going to teach real cybersecurity through stories, missions, and simulated disasters instead of a spreadsheet. Your students are going to care about what happens to Marcus because watching someone else's security disaster is way more interesting than reading about threat modeling in a textbook. They're going to feel like hackers before they think like defenders. And somewhere around Chapter 3 — or maybe halfway through a terminal mission at 2am the night before the exam — they're going to realize they've accidentally become security-literate. It's sneaky. I know. But it works. The book is called Compromised: Tales from the Breach, which is objectively cooler than "Cybersecurity Unit 1: Introduction to Vulnerabilities." The terminal trainer is called Ghost Protocol, which is objectively cooler than "Linux Lab Activity Sheet." I have a brand now. I lean into it. I rest my case. — Mike Crespo, CTE Department Chair · Cybersecurity Instructor · Narrative Security P.S. — No, Marcus isn't real. But the attacks? Totally real. You should probably check your Instagram. P.P.S. — Everything in this store runs as a single HTML file on a Chromebook with no setup required, because I also teach in the real world and I know how Monday mornings go.