Academy Pro
Medium and Hard Academy modules — Pro tier required
Module 7 · File Upload — Three Attacks in One
Upload = attack at parsing + storage + serving. All three have their own rules, and mistakes compound.
AcademyModule 8 · APIs — Your Mobile App Is Public Attack Surface
Every endpoint your mobile or SPA calls is exposed to the internet. Shadow endpoints, version drift, mass assignment.
AcademyModule 9 · Session Tokens — Where Auth Bugs Live After Login
Developers focus on login; attackers target sessions. Theft, rotation, revocation, and the edge cases that break.
AcademyModule 10 · The Framework-Assumption Gap
'The framework handles it' is the most dangerous phrase in modern web security. Escape hatches, third-party integrations, and non-REST transports.
AcademyModule 7 · Hybrid AD & ADFS Attack Surface
Entra Connect crown jewel, ADFS Golden SAML, PHS attacks, on-prem ↔ cloud lateral movement, Tier 0 isolation.
AcademyBGP Security and RPKI — How the Internet Trusts Itself, and Why It Sometimes Should Not
BGP is the routing protocol of the Internet — every ISP, hyperscaler, and large enterprise speaks it. It assumes good behaviour by…
AcademyModule 15 · Insecure Deserialization
Java/.NET/Python/PHP/Ruby deserialization vulns, gadget chains, ysoserial, signed-data defense.
AcademyModule 16 · Race Conditions in Web Apps
TOCTOU, single-packet attacks, where races hide, Burp testing, transactional + idempotency-key defenses.
AcademyModule 17 · Prototype Pollution
JS prototype model, pollution sources, attack vectors (auth bypass, RCE chains), Object.create(null) defense.
AcademyModule 14 · HTTP Request Smuggling
CL.TE / TE.CL / TE.TE, HTTP/2 downgrade smuggling, exploitation impacts, detection via timing, defenses.