Cybersecurity, learned like a practitioner.
24 learning paths · 398 modules live · every lesson written by someone who has shipped the control or run the engagement. Free to start.
Attacker Mindset — Cloud · modules
Shared responsibility reality, IAM sprawl, metadata endpoints, K8s + serverless + supply chain, data exposure, cloud-specific detection.
Module 4 · Cross-Account Trust Attacks
Overly broad Principal, confused deputy, External ID, Azure Lighthouse. MSSP compromise cascades.
Module 5 · Kubernetes — The Platform That Multiplies Attack Surface
Pod → node → cluster, service account tokens, RBAC paths, exposed kubelet/etcd. kube-hunter, peirates.
Module 6 · Serverless — New Surface, Not Smaller Surface
Lambda role credential theft, event source injection, dep vulns, supply chain. Serverless shifts attack surface.
Module 7 · Cloud Supply Chain — CI to Production
Codecov, CircleCI, SolarWinds patterns in cloud. OIDC federation, least-priv deploy roles, pinned artifacts.
Module 9 · Cloud Detection — Different Telemetry, Different Rules
CloudTrail, Activity Log, Audit Log. Identity-first detection. GuardDuty/Defender/SCC. Maturity model.
Practitioners who've
shipped the controls.
Every module is written by someone who has built the defence or run the engagement. No repackaged tutorials, no generic theory.
Why learn here
Practitioner-written.
Each lesson is authored by someone who has shipped the control or run the engagement in production.
Quiz after every module.
20+ questions with explanations. 70%+ to mark complete. Unlimited retries.
Progress tracked.
Completions, scores and streaks saved automatically. Resume exactly where you left off.
India-priced.
Start free. ₹499/mo for intermediate. ₹4,999/yr for advanced. No hidden fees, ever.