Cybersecurity, learned like a practitioner.
24 learning paths · 398 modules live · every lesson written by someone who has shipped the control or run the engagement. Free to start.
Latest modules
Most recent practitioner playbooks across every track. Filter by topic, level, or search in the sidebar.
Application Security Programme and WAF Tuning
Building an AppSec programme that scales — maturity ladder, security champions, CI/CD security pipeline, tooling baseline, metrics, bug bounty, threat modelling integration.
Social Engineering Defence
Phishing, vishing, smishing, BEC, deepfake voice/video, MFA fatigue — modern social engineering and the layered defence programme: tooling, training, simulation, executive protection.
Security Governance for CISOs
How CISOs build a governance programme that survives both audits and incidents — security committee structure, risk appetite, policy hierarchy, board reporting, KRIs that matter.
Risk Management Practitioner
Risk identification, analysis, treatment, monitoring — practitioner-level workflow with FAIR-style quantification, risk register, KRIs, and the link between risk register and security investment.
Business Continuity and Disaster Recovery
BCP and DR end-to-end — BIA, RTO/RPO, recovery strategies, plan documentation, drill cadence, ransomware-aware DR, and the operational discipline that makes plans real.
Cybersecurity Law for Indian Practitioners
IT Act, BNS/BSA replacement of IPC/Evidence Act, DPDP Act 2023, sectoral regulations (RBI/SEBI/IRDAI), CERT-In directions, evidence handling — a practitioner map of Indian cyber law.
Data Classification and Labelling Programme
Building a data classification programme that engineering and business actually adopt — taxonomy, labelling tools (MIP, Google Drive labels), enforcement, DLP integration, audit evidence.
Data Loss Prevention at Scale
DLP that works in 2026 — endpoint, network, cloud, email channels; pattern + classifier rules; rollout sequence (audit → block); fatigue management; integration with classification programme.
CASB and SaaS Data Governance
CASB modes (forward proxy, reverse proxy, API), SaaS-to-SaaS OAuth governance, shadow-IT discovery, sensitive-data inventory across 200+ SaaS apps, and the rollout pattern that doesn't break business.
Privacy Engineering — Tokenisation and k-Anonymity
Privacy-preserving primitives — tokenisation, format-preserving encryption, k-anonymity, l-diversity, differential privacy — when each applies, the engineering trade-offs, and DPDP §10 implications.
Practitioners who've
shipped the controls.
Every module is written by someone who has built the defence or run the engagement. No repackaged tutorials, no generic theory.
Why learn here
Practitioner-written.
Each lesson is authored by someone who has shipped the control or run the engagement in production.
Quiz after every module.
20+ questions with explanations. 70%+ to mark complete. Unlimited retries.
Progress tracked.
Completions, scores and streaks saved automatically. Resume exactly where you left off.
India-priced.
Start free. ₹499/mo for intermediate. ₹4,999/yr for advanced. No hidden fees, ever.