63 workbooks
Beginner
βœ“ Free
πŸš€ Zero to Hacker

Linux for Beginners

Start from zero β€” navigation, files, permissions, processes, bash basics.

Read β†’
Beginner
πŸ”’ Members
πŸš€ Zero to Hacker

Windows Fundamentals

Windows OS, registry, services, file system, and PowerShell basics.

Read β†’
Beginner
βœ“ Free
πŸš€ Zero to Hacker

Networking Deep Dive

TCP/IP, subnetting, DNS, routing, OSI model, and packet analysis.

Read β†’
Beginner
βœ“ Free
πŸš€ Zero to Hacker

HTTP & Web Requests

How HTTP works: methods, headers, cookies, proxies, and Burp basics.

Read β†’
Beginner
πŸ”’ Members
πŸš€ Zero to Hacker

Python Fundamentals

Variables, functions, loops, file I/O, and scripting for automation.

Read β†’
Beginner
πŸ”’ Members
πŸš€ Zero to Hacker

Bash Scripting

Shell scripting, conditionals, loops, and automation on Linux.

Read β†’
Beginner
πŸ”’ Members
πŸš€ Zero to Hacker

Kali Linux Fundamentals

Kali toolset, configuration, and staying organised during engagements.

Read β†’
Beginner
βœ“ Free
πŸš€ Zero to Hacker

Cybersecurity Essentials

The CIA triad, threat actors, vulnerability lifecycle, and security frameworks.

Read β†’
Beginner
βœ“ Free
πŸš€ Zero to Hacker

Introduction to Penetration Testing

What pentesting is, legal context, scope, phases, and methodology.

Read β†’
Beginner
πŸ”’ Members
πŸš€ Zero to Hacker

OSINT & Reconnaissance

Google dorking, Shodan, WHOIS, theHarvester, Maltego, and recon reports.

Read β†’
Beginner
πŸ”’ Members
πŸš€ Zero to Hacker

Pre-Engagement Setup

Scope documents, rules of engagement, and lab environment configuration.

Read β†’
Intermediate
πŸ”’ Members
πŸš€ Zero to Hacker

Penetration Testing Process

Full pentest lifecycle: recon β†’ scan β†’ exploit β†’ post-exploit β†’ report.

Read β†’
Intermediate
πŸ”’ Members
πŸš€ Zero to Hacker

Vulnerability Assessment

Nessus, OpenVAS, prioritisation frameworks, and CVSS scoring.

Read β†’
Beginner
πŸ”’ Members
πŸš€ Zero to Hacker

Documentation & Reporting

Executive summaries, technical findings, remediation tables, and templates.

Read β†’
Beginner
βœ“ Free
πŸš€ Zero to Hacker

CTF Beginner's Guide

How CTFs work, common categories, tools, and tips for first-timers.

Read β†’
Beginner
βœ“ Free
πŸ•ΈοΈ Web Security

Introduction to Web Applications

Client-server model, web technologies, cookies, sessions, and same-origin policy.

Read β†’
Beginner
βœ“ Free
πŸ•ΈοΈ Web Security

HTML & CSS Basics

HTML structure, CSS, forms, and JavaScript basics for web security context.

Read β†’
Intermediate
πŸ”’ Members
πŸ•ΈοΈ Web Security

SQL Injection Fundamentals

In-band, blind, and out-of-band SQLi with manual and automated exploitation.

Read β†’
Intermediate
πŸ”’ Members
πŸ•ΈοΈ Web Security

Web Application Pentesting

OWASP Top 10, Burp Suite advanced usage, and web pentest methodology.

Read β†’
Advanced
πŸ”’ Members
πŸ•ΈοΈ Web Security

Web Attacks with Kali Track

Complete web attack track: injection, authentication, client-side, and serialisation.

Read β†’
Advanced
πŸ”’ Members
πŸ•ΈοΈ Web Security

Advanced Web Attacks Track

Advanced techniques: request smuggling, deserialization, prototype pollution, and more.

Read β†’
Advanced
πŸ”’ Members
πŸ•ΈοΈ Web Security

Bug Bounty Hunting

HackerOne/Bugcrowd methodology, triaging, report writing, and maximising payouts.

Read β†’
Beginner
πŸ”’ Members
🏰 Infrastructure & AD

Windows Command Line

CMD and PowerShell commands, scripts, and automation for enterprise environments.

Read β†’
Intermediate
πŸ”’ Members
🏰 Infrastructure & AD

Active Directory Fundamentals

AD architecture, objects, Kerberos, NTLM, GPOs, and trusts before attacking AD.

Read β†’
Intermediate
πŸ”’ Members
🏰 Infrastructure & AD

Windows Active Directory

Deep dive into AD administration, enumeration, and attack paths.

Read β†’
Advanced
πŸ”’ Members
🏰 Infrastructure & AD

AD Enumeration & Attacks

BloodHound, PowerView, Kerberoasting, ASREPRoasting, and DACL abuse.

Read β†’
Advanced
πŸ”’ Members
🏰 Infrastructure & AD

Pentest with Kali Track

Full enterprise pentest from external recon to domain dominance.

Read β†’
Advanced
πŸ”’ Members
🏰 Infrastructure & AD

Red Team Operations

C2 frameworks, tradecraft, OPSEC, persistence, and advanced lateral movement.

Read β†’
Advanced
πŸ”’ Members
🏰 Infrastructure & AD

Evasion & Breaching Defenses

AV evasion, EDR bypass, AppLocker, AMSI bypass, and living-off-the-land.

Read β†’
Intermediate
πŸ”’ Members
🏰 Infrastructure & AD

Privilege Escalation β€” Linux & Windows

SUID, sudo, services, tokens, DLL hijacking β€” complete privesc reference.

Read β†’
Beginner
πŸ”’ Members
πŸ›‘οΈ Defensive

Network Traffic Analysis

Wireshark, tcpdump, protocol analysis, and detecting anomalies in traffic.

Read β†’
Beginner
πŸ”’ Members
πŸ›‘οΈ Defensive

SOC Operations & SIEM

SOC workflow, alert triage, SIEM platforms, and escalation procedures.

Read β†’
Intermediate
πŸ”’ Members
πŸ›‘οΈ Defensive

Security Operations Track

Complete SOC analyst track: detection, response, and documentation.

Read β†’
Intermediate
πŸ”’ Members
πŸ›‘οΈ Defensive

Detection Engineering

Writing detection rules, YARA, Sigma, and tuning for low false positive rates.

Read β†’
Intermediate
πŸ”’ Members
πŸ›‘οΈ Defensive

Foundational Threat Hunting

Hypothesis-driven hunting, data sources, TTP mapping, and Elastic/Splunk.

Read β†’
Intermediate
πŸ”’ Members
πŸ›‘οΈ Defensive

Digital Forensics & IR

Evidence acquisition, chain of custody, disk and memory forensics fundamentals.

Read β†’
Intermediate
πŸ”’ Members
πŸ›‘οΈ Defensive

Incident Handling

Incident lifecycle, communication, containment, eradication, and post-mortems.

Read β†’
Intermediate
πŸ”’ Members
πŸ›‘οΈ Defensive

Foundational IR Track

Complete incident response from detection to lessons learned.

Read β†’
Advanced
πŸ”’ Members
πŸ›‘οΈ Defensive

Malware Analysis

Static and dynamic analysis, sandboxes, deobfuscation, and IOC extraction.

Read β†’
Advanced
πŸ”’ Members
πŸ›‘οΈ Defensive

Memory Forensics

Volatility 3, process analysis, code injection detection, and rootkit hunting.

Read β†’
Advanced
πŸ”’ Members
πŸ’£ Exploit Dev

Assembly Language

x86/x64 assembly, registers, calling conventions, and reading disassembly.

Read β†’
Advanced
πŸ”’ Members
πŸ’£ Exploit Dev

Binary Exploitation Foundations

Memory layout, protections (ASLR, NX, canaries), and exploitation primitives.

Read β†’
Advanced
πŸ”’ Members
πŸ’£ Exploit Dev

Windows Exploit Dev Track

Stack overflows, SEH, egghunters, shellcoding on 32-bit Windows.

Read β†’
Advanced
πŸ”’ Members
πŸ’£ Exploit Dev

Advanced Windows Exploitation

Heap exploitation, kernel basics, ROP chains, and 64-bit exploits.

Read β†’
Beginner
πŸ”’ Members
πŸ€– AI Security

Fundamentals of AI

ML/LLM concepts, AI system architecture, and threat landscape for AI.

Read β†’
Intermediate
πŸ”’ Members
πŸ€– AI Security

AI Red Teaming

Testing AI systems for vulnerabilities, prompt injection, and jailbreaks.

Read β†’
Intermediate
πŸ”’ Members
πŸ€– AI Security

Applications of AI in InfoSec

Using AI for phishing generation, log analysis, vulnerability research, and automation.

Read β†’
Advanced
πŸ”’ Members
πŸ€– AI Security

Advanced AI Red Teaming Track

Advanced adversarial attacks on AI systems, data poisoning, and model extraction.

Read β†’
Beginner
βœ“ Free
πŸ’» Programming

JavaScript Basics

ES6+, DOM, async/await, and security implications of JavaScript.

Read β†’
Beginner
βœ“ Free
πŸ’» Programming

SQL Fundamentals

SELECT, INSERT, JOIN, subqueries, and understanding SQL for injection attacks.

Read β†’
Intermediate
πŸ”’ Members
πŸ’» Programming

C++ Fundamentals

Memory management, pointers, and C++ for understanding binary vulnerabilities.

Read β†’
Beginner
πŸ”’ Members
πŸ’» Programming

Java Fundamentals

Java OOP, JVM, serialisation, and security-relevant Java concepts.

Read β†’
Beginner
πŸ”’ Members
πŸ’» Programming

Introduction to C#

.NET, C# basics, and Windows development context for security work.

Read β†’
Intermediate
πŸ”’ Members
πŸ’» Programming

Secure Coding Practices

Input validation, output encoding, and secure SDLC practices.

Read β†’
Advanced
πŸ”’ Members
πŸ’» Programming

Secure Java Development

Secure Java coding patterns, OWASP Java guidance, and code review.

Read β†’
Intermediate
πŸ”’ Members
πŸ’» Programming

Python for Hackers

Sockets, subprocess, ctypes, pwntools, and offensive Python scripting.

Read β†’
Intermediate
πŸ”’ Members
☁️ Cloud

Cloud Security & AWS

AWS IAM, S3 misconfigs, IMDS exploitation, IAM privesc, and cloud hardening.

Read β†’
Intermediate
πŸ”’ Members
☁️ Cloud

Docker & Container Security

Container escapes, Docker socket abuse, image scanning, and Kubernetes security.

Read β†’
Intermediate
πŸ”’ Members
🌐 Networking

CCNA Foundation Guide

CCNA syllabus: switching, routing, VLANs, ACLs, and network fundamentals.

Read β†’
Intermediate
πŸ”’ Members
πŸ“‘ Wireless

Wireless Penetration Testing

WPA2/WPA3, evil twin, deauth attacks, captive portal bypass, and WPS attacks.

Read β†’
Intermediate
πŸ”’ Members
πŸ“š Other

Android Fundamentals

Android architecture, ADB, APK analysis, and mobile application security.

Read β†’
Beginner
πŸ”’ Members
πŸ“š Other

Cryptography Fundamentals

Symmetric, asymmetric, hashing, PKI, TLS, and common crypto weaknesses.

Read β†’
Intermediate
πŸ”’ Members
πŸ“š Other

Social Engineering

Phishing, vishing, pretexting, physical intrusion, and building awareness defences.

Read β†’