Academy Pro
Medium and Hard Academy modules — Pro tier required
Module 6 · Memory Forensics
Memory forensics is the discipline of examining volatile memory (RAM) to find evidence that disk-only forensics miss. Credentials cached in memory, in-memory…
AcademyModule 7 · Cloud Incident Response
Cloud incidents move fast. An attacker with a leaked access key can enumerate the account in minutes and begin exfiltration. Response time…
AcademyModule 6 · Cross-Account Attacks in AWS
Multi-account AWS (or multi-subscription Azure / multi-project GCP) is the norm. Production in one account, staging in another, security tooling in a…
AcademyModule 13 · JWT Attacks
JSON Web Tokens (JWT) have become the default authentication token format in modern APIs. They’re compact, stateless, and when implemented correctly, secure.…
AcademyModule 10 · XML External Entity Injection (XXE)
XML External Entity (XXE) injection exploits XML parsers that process references to external entities. A classic vulnerability in XML-consuming applications — SOAP…
AcademyModule 9 · Server-Side Request Forgery (SSRF)
Server-Side Request Forgery (SSRF) is a vulnerability where an attacker tricks a server into making HTTP requests on their behalf. In a…
AcademyModule 6 · Active Directory Certificate Services Attacks
Active Directory Certificate Services (ADCS) is how Windows issues certificates — for user authentication, computer authentication, web services, VPN, code signing. It’s…
AcademyIPv6 Security — Why You Already Have IPv6 Even If You Did Not Notice
IPv6 is on by default in every modern operating system. If you only configured IPv4 ACLs, half your network is unprotected. This…
AcademyModule 5 · Privilege Escalation Defence
Root escalation — getting from “regular user” to “root” or SYSTEM — is how most breaches turn catastrophic. A foothold becomes domain…
AcademyModule 8 · API Security (OWASP API Top 10)
OWASP API Top 10 in practice, GraphQL testing, gRPC, SSRF, LLM-integrated API attacks. The 2026 API attack surface. Pro module.