Cybersecurity, learned like a practitioner.
24 learning paths · 398 modules live · every lesson written by someone who has shipped the control or run the engagement. Free to start.
Advanced · modules
Modules tagged Advanced. Use the sidebar to narrow by track or topic.
Secure Code Review at Scale
Per-PR vs feature-level vs deep-dive code reviews, OWASP Top 10 hunt patterns, Semgrep custom-rule programme, what humans find that tools miss, rollout for engineering scale.
Digital Forensics and Chain of Custody
Order of volatility, RAM and disk imaging, NTFS/Linux artefacts, cloud forensics, mobile forensics, IT Act §65B, BSA admissibility — the practitioner forensic workflow.
Reverse Engineering and Malware Analysis
Static and dynamic RE workflow, Ghidra/IDA/Binary Ninja, packers, anti-analysis bypass, sandbox setup, YARA-rule writing — turning unknown binaries into hunting queries.
Application Security Programme and WAF Tuning
Building an AppSec programme that scales — maturity ladder, security champions, CI/CD security pipeline, tooling baseline, metrics, bug bounty, threat modelling integration.
Data Loss Prevention at Scale
DLP that works in 2026 — endpoint, network, cloud, email channels; pattern + classifier rules; rollout sequence (audit → block); fatigue management; integration with classification programme.
CASB and SaaS Data Governance
CASB modes (forward proxy, reverse proxy, API), SaaS-to-SaaS OAuth governance, shadow-IT discovery, sensitive-data inventory across 200+ SaaS apps, and the rollout pattern that doesn't break business.
Privacy Engineering — Tokenisation and k-Anonymity
Privacy-preserving primitives — tokenisation, format-preserving encryption, k-anonymity, l-diversity, differential privacy — when each applies, the engineering trade-offs, and DPDP §10 implications.
Security Architecture Patterns and Models
Reference architectures encode known-good designs — authentication, authorisation, secrets, service-to-service, logging, encryption patterns. Catalogue, deviation process, ARB governance.
Hardware Roots of Trust — TPM, HSM, Secure Boot
TPM 2.0, HSM, ARM TrustZone, SGX/SEV, secure-element chips — what HRoT primitives offer, measured boot, key storage, attestation, confidential computing for cloud workloads.
Quantum-Safe Cryptography Readiness
ML-KEM, ML-DSA, SLH-DSA — what NIST PQC standards mean for 2026 organisations, harvest-now-decrypt-later threat, crypto-agility, hybrid TLS, migration roadmap for Indian banks.
Practitioners who've
shipped the controls.
Every module is written by someone who has built the defence or run the engagement. No repackaged tutorials, no generic theory.
Why learn here
Practitioner-written.
Each lesson is authored by someone who has shipped the control or run the engagement in production.
Quiz after every module.
20+ questions with explanations. 70%+ to mark complete. Unlimited retries.
Progress tracked.
Completions, scores and streaks saved automatically. Resume exactly where you left off.
India-priced.
Start free. ₹499/mo for intermediate. ₹4,999/yr for advanced. No hidden fees, ever.