Cybersecurity, learned like a practitioner.

Ethical Hacking Tools Advanced Free

EvilGinx — Modern Phishing

For defensive understanding only. Don’t deploy without clear authorisation. EvilGinx is the proof that “MFA stops phishing” was true in 2018, false by 2024. How proxy phishing works Attacker hosts EvilGinx with a phishlet for the target service (Microsoft, Google, etc.). EvilGinx is a transparent reverse proxy: requests come in, get forwarded to legitimate service, […]

Apr 27, 2026 20 min Open

API Security Deep Dive Advanced Free

API Penetration Testing Methodology

Why this module. API pentesting is different from web app pentesting. Less UI, more state, more business logic. The OWASP API Top 10 maps the bug classes; this module is the methodology to find them. The phases Enumeration — find every endpoint. OpenAPI specs, browser inspection, app traffic captures, mobile app reverse engineering. Auth model […]

Apr 27, 2026 30 min Open

API Security Deep Dive Advanced Free

API Security in Microservices Mesh

Why this module. Most API-security advice covers north-south (internet to API). In microservices, east-west traffic (service to service) is 10x more volume and often less protected. Compromise one service, lateral movement to others. The trust model that fails “Internal services trust each other; auth happens at the edge.” Once an attacker is inside (via vuln […]

Apr 27, 2026 30 min Open

API Security Deep Dive Advanced Free

mTLS for API-to-API Authentication

Why this module. “Service A authenticates to service B with an API key in a header” — the dominant pattern, and the source of breaches when keys leak. mTLS replaces shared secrets with cryptographic identity. Operationally harder; cryptographically much stronger. Why bearer tokens fail Tokens leak via logs, errors, screenshots. Rotation requires coordination. Compromise window […]

Apr 27, 2026 30 min Open

DevSecOps Advanced Free

SLSA Levels & Build Provenance

Why this module. 2020 SolarWinds taught the industry that “we trust our build pipeline” is no longer enough. SLSA (Supply-chain Levels for Software Artifacts) is Google’s framework for hardening builds against supply-chain attacks. By 2026, several Indian regulated entities have begun requiring SLSA L2+ attestations from vendors. The four SLSA levels Level What’s required Roughly […]

Apr 27, 2026 25 min Open

Blue Team / SOC Operations Advanced Free

Purple Teaming Methodology

Why this module exists. Red teams find what defenders missed. Blue teams build detections. Purple teams put both in the same room — making a single exercise simultaneously a test, a learning event, and a detection-engineering session. The output: detections that work for the techniques attackers actually use. What purple team isn’t Not “let’s all […]

Apr 27, 2026 30 min Open

Blue Team / SOC Operations Advanced Free

Threat Intelligence Operations

Why this module exists. Threat intelligence is one of the most-purchased and least-utilised security investments. Companies subscribe to feeds that nobody reads, vendor reports that nobody actions. Done well, TI shapes detection, prioritisation, and strategy. Done badly, it’s expensive noise. The three altitudes of TI Type Audience Outputs Cadence Strategic Executives, board Threat landscape, risk-driven […]

Apr 27, 2026 30 min Open

Blue Team / SOC Operations Advanced Free

Incident Response Lifecycle — NIST + SANS in Practice

Why this module exists. Every CISO knows the NIST IR lifecycle (Prepare, Identify, Contain, Eradicate, Recover, Lessons Learned). Few have actually executed it under pressure. The translation from textbook diagram to “the breach is happening, what do we do at 02:30 IST” is what separates exercises from outcomes. The lifecycle in operational terms Phase What […]

Apr 27, 2026 35 min Open

Blue Team / SOC Operations Advanced Free

Insider Threat Detection

Why this module exists. External attackers get the headlines; insiders cause more breaches by volume. Verizon DBIR consistently shows ~20% of breaches are insider-driven (deliberate + accidental combined). Detecting them requires different signals from external-attack detection, and operating in the privacy-respecting envelope DPDP / labour law / cultural norms allow. The insider-threat taxonomy Malicious insider […]

Apr 27, 2026 30 min Open

DPDP Compliance Practitioner Advanced Free

DPIA — Data Protection Impact Assessment Under DPDP

Why this module exists. §10(2)(c) requires Significant Data Fiduciaries (SDFs) to conduct DPIAs. The Rules (when published) will likely extend DPIA expectations to high-risk processing by all Data Fiduciaries. Most Indian businesses have never done one. The methodology is more practical than the legal text suggests. What a DPIA is A structured assessment of a […]

Apr 27, 2026 35 min Open