Cybersecurity, learned like a practitioner.
24 learning paths · 398 modules live · every lesson written by someone who has shipped the control or run the engagement. Free to start.
Latest modules
Most recent practitioner playbooks across every track. Filter by topic, level, or search in the sidebar.
Awareness Programmes That Change Behaviour
Why this module exists. Awareness training is the single most-funded, least-effective security investment in most Indian enterprises. The right structure — frequent, targeted, feedback-driven — produces measurable behaviour change. The wrong structure — annual hour-long video — produces compliance-checkbox theatre. This module is how to build the right one. What does not work Annual one-hour […]
Physical Social Engineering — Tailgating, Badge Cloning, USB Drops
Why this module exists. Physical access still beats remote-only attacks for certain target classes — server-room access to a regulated bank, badge-room access to a stock exchange, network-port access in a coffee-shop floor. This module is the physical-channel social engineering practitioner reference. The attacker toolkit Tailgating — follow an authorised employee through a secured door. […]
Vishing, Smishing & WhatsApp Pretext — The Indian Voice Channel
Why this module exists. The corporate phishing-defence stack — DMARC, anti-phishing platforms, FIDO2 — does not protect against an attacker calling the help desk. India’s PSTN and SMS infrastructure make voice-channel social engineering particularly cheap. This module covers what defenders can actually do. The vishing playbook The canonical Indian-enterprise vishing attack: OSINT to identify a […]
Business Email Compromise (BEC) — Four Variants and the Defender Stack
Why this module exists. BEC does not need malware, credential theft, or AiTM phishing. It only needs to convince one finance person to send money to the wrong account. The defence is mostly process, not technology. This module is the practitioner pattern. The four BEC variants Variant Attacker pose Target CEO fraud CEO/CFO Finance team […]
Phishing — AiTM, MFA Bypass, and the 2026 Defender Stack
Why this module exists. Email-borne phishing is no longer “click this link, enter password.” Modern kits proxy the entire login flow, capture session cookies post-MFA, and let the attacker step into the authenticated session. The defender’s playbook has evolved correspondingly. This module is the current state. The 2026 attacker playbook The modern phishing kit is […]
Unpacking Packed Malware — UPX, ASPack, Custom Packers
Why this module exists. Roughly 70% of malware samples in the wild are packed in some form. Without unpacking, your analysis stops at “calls VirtualAlloc, calls VirtualProtect, jumps somewhere.” With unpacking, the actual payload is in your disassembler. This module is the structured approach to getting from packed to unpacked. What packing actually is A […]
Anti-Analysis Techniques and How to Defeat Them
Why this module exists. A sandbox report that shows “did nothing” or a debugger that crashes when you single-step are not bugs in your tooling — they are the malware authors’ deliberate design. Knowing the catalogue of anti-analysis techniques lets you recognise them and respond appropriately. The four classes of anti-analysis Anti-VM / sandbox detection. […]
Reverse Engineering Windows Malware with Ghidra
Why this module exists. When static and dynamic analysis are not enough — the sample is too novel, the obfuscation is too thick, or you need to understand exactly what an algorithm does — disassembly is the answer. Ghidra is free, capable, and the industry default now that IDA Pro’s pricing has shifted to subscription-only. […]
Dynamic Malware Analysis & Sandboxing
Why this module exists. Sandboxes are not magic — sophisticated malware checks for them and either does nothing or does something different. Reading a sandbox report intelligently means knowing what the malware probably hid, not just what it did. The sandbox landscape Tool Type When to use ANY.RUN Interactive cloud First pass; you can click […]
Static Malware Analysis — Strings, Imports, YARA
Why this module exists. Running unknown malware on your laptop is how new IR responders become old IR responders. Static analysis is the lower-risk first cut: you learn whether the sample is interesting, what platform and architecture it targets, and what plausible behaviour it has — before you commit a sandbox to it. The five-minute […]
Practitioners who've
shipped the controls.
Every module is written by someone who has built the defence or run the engagement. No repackaged tutorials, no generic theory.
Why learn here
Practitioner-written.
Each lesson is authored by someone who has shipped the control or run the engagement in production.
Quiz after every module.
20+ questions with explanations. 70%+ to mark complete. Unlimited retries.
Progress tracked.
Completions, scores and streaks saved automatically. Resume exactly where you left off.
India-priced.
Start free. ₹499/mo for intermediate. ₹4,999/yr for advanced. No hidden fees, ever.