30 interactive visual guides + 4 hands-on tools — all free, click to open instantly in your browser.
Core principles of Confidentiality, Integrity & Availability with defence in depth, risk management and security controls.
Nmap, Wireshark, Metasploit, Burp Suite, BloodHound, Volatility & 50+ tools with categories and use cases.
Ransomware, phishing, DDoS, APTs, social engineering, supply chain attacks & modern attack vectors with defences.
GDPR, HIPAA, PCI-DSS, ISO 27001, SOC 2, NIST CSF, NIS2 & CMMC with requirements and compliance checklists.
NIST & SANS IR frameworks — Preparation, Detection, Containment, Eradication, Recovery and Lessons Learned.
Reconnaissance, Scanning, Exploitation, Post-Exploitation & Reporting — complete methodology with tools and legal framework.
AWS/Azure/GCP IAM, encryption, CSPM, DevSecOps, container security & misconfiguration prevention with practical guides.
AI for threat detection, adversarial ML attacks, LLM security risks, OWASP LLM Top 10, deepfakes & AI red teaming.
Device hardening, firmware analysis, OWASP IoT Top 10, IIoT/OT security, Purdue Model & network segmentation.
Technical questions, behavioural answers, salary negotiation, resume tips & role-specific prep for SOC, pentest and GRC.
A01–A10 vulnerabilities: broken access control, injection, SSRF, misconfigurations & real-world exploitation and fixes.
Kerberoasting, Pass-the-Hash, DCSync, BloodHound attack paths, Golden Ticket & enterprise AD hardening strategies.
Recon, vulnerability classes, methodology, writing reports & top platforms: HackerOne, Bugcrowd, Intigriti.
Never trust, always verify — identity, device, network, data pillars & NIST SP 800-207 implementation guide.
Security+, OSCP, CISSP, CEH, GIAC & cloud certs — full path from beginner to expert with costs and study resources.
Phishing, vishing, smishing, pretexting, BEC attacks, MFA fatigue & psychological manipulation defence tactics.
Shodan, Maltego, Google dorking, dark web intel, people & domain reconnaissance with practical field techniques.
OSI model attacks, firewalls, IDS/IPS, VPNs, wireless security, protocols & network segmentation strategies.
IR lifecycle, memory & disk forensics, chain of custody, Volatility, artefacts & MITRE ATT&CK correlation.
Static & dynamic analysis, sandboxes, reverse engineering with Ghidra/IDA Pro, IOC extraction & YARA rules.
Pre-engagement, recon, scanning, exploitation, post-exploitation, reporting & PTES/OWASP testing standards.
Symmetric & asymmetric encryption, hashing, PKI, TLS handshake, common attacks & post-quantum cryptography.
Attack lifecycle, RaaS model, notable attacks, prevention controls, IR playbook & 3-2-1 backup strategy.
Docker hardening, K8s RBAC, Pod Security, Network Policies, Falco runtime security & CIS benchmarks.
All 14 tactics, top techniques, threat groups, detection data sources & ATT&CK Navigator usage guide.
Proactive hunt hypotheses, stack counting, beaconing detection, Velociraptor & hunting maturity model.
Android & iOS security, M1-M10 vulnerabilities, Frida, MobSF, certificate pinning bypass & MASVS standard.
Shared responsibility, IAM misconfigs, GuardDuty, Defender for Cloud, CSPM tools & cloud pentesting techniques.
Adversary simulation, C2 infrastructure, SOC tiers, detection engineering, purple team exercises & career paths.
Dependency confusion, SolarWinds, SBOM, Sigstore, SLSA framework & vendor risk management strategies.
Answer 7 questions and discover your ideal cybersecurity career — complete with salary ranges, required certifications and a personalised match score across 13 career paths.
Interactive timeline of 27 major cyberattacks — Stuxnet, WannaCry, SolarWinds, Log4Shell and more. Click each event for full details, impact score and lessons learned.
Browser-based encoding and analysis playground — Base64, Hex, URL encode, Caesar cipher, ROT13/47, Binary, SHA hashes and JWT decode. Zero data sent to servers.
35 questions across 7 domains — passwords, devices, network, phishing, backups, accounts and mobile. Get your personal security score with a prioritised action plan.