Cybersecurity, learned like a practitioner.

24 learning paths · 398 modules live · every lesson written by someone who has shipped the control or run the engagement. Free to start.

24
Learning paths
398+
Live modules
0
You've completed
Free
Your tier
Browse the academy

Intermediate · modules

Modules tagged Intermediate. Use the sidebar to narrow by track or topic.

273 results · Page 4/28
Filtering: Level: Intermediate × Clear all →
Intermediate Free

Qualitative Risk Assessment — ISO 27005 / NIST 800-30 Done Well

Why this module exists. Done well, qualitative risk assessment is cheap, repeatable, and good enough for 90% of decisions. Done badly, it is theatre. The difference is in the scoring rigour, not the framework choice. What ISO 27005 and NIST SP 800-30 actually prescribe Both frameworks define a process: identify assets, identify threats, identify vulnerabilities, […]

May 14, 2026 30 min Open
Intermediate Free

Building a Risk Register That Drives Decisions

Why this module exists. Every Indian enterprise has a risk register. Few have one anyone uses to decide what to fund. The difference is in the operating model around the register, not the spreadsheet template. This module covers the operating model. What a working risk register actually does Drives the quarterly budget conversation — “what […]

May 14, 2026 30 min Open
Intermediate Free

Physical Social Engineering — Tailgating, Badge Cloning, USB Drops

Why this module exists. Physical access still beats remote-only attacks for certain target classes — server-room access to a regulated bank, badge-room access to a stock exchange, network-port access in a coffee-shop floor. This module is the physical-channel social engineering practitioner reference. The attacker toolkit Tailgating — follow an authorised employee through a secured door. […]

May 14, 2026 30 min Open
Intermediate Free

Vishing, Smishing & WhatsApp Pretext — The Indian Voice Channel

Why this module exists. The corporate phishing-defence stack — DMARC, anti-phishing platforms, FIDO2 — does not protect against an attacker calling the help desk. India’s PSTN and SMS infrastructure make voice-channel social engineering particularly cheap. This module covers what defenders can actually do. The vishing playbook The canonical Indian-enterprise vishing attack: OSINT to identify a […]

May 14, 2026 25 min Open
Intermediate Free

Business Email Compromise (BEC) — Four Variants and the Defender Stack

Why this module exists. BEC does not need malware, credential theft, or AiTM phishing. It only needs to convince one finance person to send money to the wrong account. The defence is mostly process, not technology. This module is the practitioner pattern. The four BEC variants Variant Attacker pose Target CEO fraud CEO/CFO Finance team […]

May 14, 2026 30 min Open
Intermediate Free

Phishing — AiTM, MFA Bypass, and the 2026 Defender Stack

Why this module exists. Email-borne phishing is no longer “click this link, enter password.” Modern kits proxy the entire login flow, capture session cookies post-MFA, and let the attacker step into the authenticated session. The defender’s playbook has evolved correspondingly. This module is the current state. The 2026 attacker playbook The modern phishing kit is […]

May 14, 2026 30 min Open
Intermediate Free

Dynamic Malware Analysis & Sandboxing

Why this module exists. Sandboxes are not magic — sophisticated malware checks for them and either does nothing or does something different. Reading a sandbox report intelligently means knowing what the malware probably hid, not just what it did. The sandbox landscape Tool Type When to use ANY.RUN Interactive cloud First pass; you can click […]

May 14, 2026 30 min Open
Intermediate Free

Static Malware Analysis — Strings, Imports, YARA

Why this module exists. Running unknown malware on your laptop is how new IR responders become old IR responders. Static analysis is the lower-risk first cut: you learn whether the sample is interesting, what platform and architecture it targets, and what plausible behaviour it has — before you commit a sandbox to it. The five-minute […]

May 14, 2026 30 min Open
Intermediate Free

Linux Forensics — Auditd, journalctl, Containers

Why this module exists. Linux IR responders often default to “tar up /var/log and call it done.” Modern Linux estates — especially in Indian cloud-native shops — have far richer artefacts available if you know to capture them. This module is the structured walkthrough. The first-response capture — what to grab in 5 minutes If […]

May 13, 2026 30 min Open
Intermediate Free

Windows Event Log Forensics — The IR Reference

Why this module exists. The defender’s biggest leverage in any Windows IR is the event log. The attacker’s biggest leverage in the same IR is knowing which events to clear. This module gives you the canonical event IDs, the queries that surface attacker activity, and the gaps that tell you something was cleaned. The seven […]

May 13, 2026 30 min Open
02 / Why learn here

Practitioners who've
shipped the controls.

Every module is written by someone who has built the defence or run the engagement. No repackaged tutorials, no generic theory.

Why learn here

01

Practitioner-written.

Each lesson is authored by someone who has shipped the control or run the engagement in production.

02

Quiz after every module.

20+ questions with explanations. 70%+ to mark complete. Unlimited retries.

03

Progress tracked.

Completions, scores and streaks saved automatically. Resume exactly where you left off.

04

India-priced.

Start free. ₹499/mo for intermediate. ₹4,999/yr for advanced. No hidden fees, ever.

Pick a path, get to work.

Browse all 398 modules View skill map