Structured Training

Learning Paths

Guided curricula mapped to real certification exams. Work through sequential modules, each building on the last, with hands-on labs at every step.

🎯

OffSec PEN-200

OSCP Preparation

Nine modules covering every technique that appears on the OSCP exam — from DNS recon and cleartext protocols through to Active Directory and buffer overflows. Work in order for the best results.

8 Modules

14 Machines

4 Free Modules

Network Services Web Exploitation Active Directory Buffer Overflow

Start OSCP Path →

🏆

HTB Certified Penetration Testing Specialist

CPTS Preparation

Seven modules aligned to the HTB CPTS curriculum — network footprinting, common service attacks, web exploitation, databases, LDAP enumeration, and a full Active Directory engagement. Deeper coverage of modern enterprise attack paths than OSCP.

8 Modules

15 Machines

1 Free Modules

Footprinting Common Services Web Attacks Active Directory

Start CPTS Path →

How the free unlock works

Pick a locked module

Modules beyond the free tier show an unlock button on their card.

Start the 24h timer

Click "Unlock Free (24h)". A countdown begins. You can only unlock one module at a time — choose wisely.

Access unlocks automatically

When the timer hits zero the module opens. No action required — just come back and train.

Or skip the wait

Premium gives instant access to all modules on all paths, unlimited daily labs, and walkthroughs.

⭐ Get Premium