0Pricing
Cyber Security Academy icon

Cyber Security Academy

SecurityDataSystemsBeginnerDatabaseScriptingCryptoNetworkBackendEnterprise

Protect digital systems and data with essential skills from Cyber Security Academy.

🤖 AI-Powered📚 76 courses👥 100,000+ learners⭐ 4.9 rating
Course Overview

The Complete Cybersecurity Curriculum — From Foundations to Red Team

Cybersecurity is the discipline of protecting systems, networks, and data from unauthorized access, exploitation, and disruption. This track covers the full spectrum: from understanding how attacks work to actively hunting threats, auditing infrastructure, and running penetration tests against real targets. Seventy-six courses built for practitioners, not checkbox compliance.

What You Will Learn

You will start with networking fundamentals, password security, OPSEC, and common attack types, then advance through cryptography, PKI, Identity and Access Management, and SIEM log analysis. Offensive skills include reconnaissance and OSINT, exploitation with Metasploit, Burp Suite mastery, web application pentesting, and API security against the OWASP API Top 10. Defensive skills span Endpoint Detection and Response, threat intelligence, SOC analyst triage, Detection Engineering with Sigma, YARA rules for malware detection, and Security Automation with SOAR. Cloud, container, and Kubernetes security are covered alongside Software Supply Chain Security, Secrets Management, and AI and LLM Security.

The Learning Path

The curriculum spans A1 through C1 across 76 courses. The A1 foundation establishes networking, authentication, and secure browsing. A2 moves into Linux security, web security, cryptography, and OSINT. B1 covers the broad practitioner layer: vulnerability assessment, Active Directory, wireless security, compliance frameworks like NIST CSF and ISO 27001, threat modeling with STRIDE, and CTF skills. B2 deepens offensive and defensive work with TLS internals, container and Kubernetes security, malware analysis, Zero Trust Architecture, and penetration test reporting. The C1 tier closes with Advanced Exploitation Techniques, Reverse Engineering, Red Team Operations, Active Directory and Kerberos Attacks, Cloud Penetration Testing, OT/ICS/SCADA Security, Purple Teaming, RF and Wireless Hacking, and Mobile Forensics.

How It Works

Each course is divided into short, focused lessons you complete in the built-in code editor with real-time feedback. An AI tutor is available whenever you get stuck, so you can work through hands-on exercises at your own pace without waiting for office hours or a forum reply.

Start Learning →

How You'll Learn

🎯
Interactive Lessons
Hands-on coding exercises with real-time feedback
🤖
AI Tutor
Get instant help from our AI when you're stuck
💻
Built-in Editor
Write and run code directly in your browser
🏆
Certificate
Earn a certificate when you complete the course
Curriculum

76 Courses

Every course in the Cyber Security Academy learning path.

01

Introduction to Cybersecurity

A13 lessons

Learn what cybersecurity is, why it matters, the CIA triad, common threat actors, and how defenders think about protecting systems.

02

Networking Fundamentals for Security

A14 lessonsPRO

Build a solid networking foundation: IP addressing, TCP/UDP, DNS, HTTP, and how packets flow through the internet.

03

Common Attack Types

A14 lessonsPRO

Survey the most prevalent cyber attacks: phishing, malware, man-in-the-middle, denial of service, and social engineering.

04

Password Security and Authentication

A14 lessonsPRO

Learn best practices for passwords, hashing algorithms, MFA, and how attackers crack credentials.

05

Secure Browsing and OPSEC

A14 lessonsPRO

Practice safe browsing, understand tracking and fingerprinting, use VPNs and Tor safely, and apply operational security.

06

Social Engineering and Phishing Defense

A24 lessonsPRO

Social Engineering and Phishing Defense: Social Engineering Tactics, Recognizing Phishing, and more.

07

Firewalls and Network Segmentation

A24 lessonsPRO

Firewalls and Network Segmentation: Firewall Types, Rules and Policies, and more.

08

VPNs and Secure Remote Access

A24 lessonsPRO

VPNs and Secure Remote Access: How VPNs Work, VPN Protocols, and more.

09

Linux Security Essentials

A24 lessonsPRO

Harden Linux systems: file permissions, user management, SSH security, firewalls, and basic log analysis.

10

Web Security Fundamentals

A24 lessonsPRO

Learn the OWASP Top 10 fundamentals: SQL injection, XSS, CSRF, insecure deserialization, and misconfiguration.

11

Cryptography Basics

A24 lessonsPRO

Understand symmetric and asymmetric encryption, hashing, digital signatures, and TLS without deep mathematics.

12

Reconnaissance and OSINT

A24 lessonsPRO

Learn open-source intelligence gathering: Google dorking, Shodan, WHOIS, certificate transparency, and social media OSINT.

13

Multi-Factor Authentication

A24 lessonsPRO

Multi-Factor Authentication: Authentication Factors, TOTP and HOTP, and more.

14

Endpoint Detection and Response

B14 lessonsPRO

Endpoint Detection and Response: What Is EDR, Telemetry and Detection, and more.

15

Incident Response Fundamentals

B14 lessonsPRO

Understand the incident response lifecycle, how to contain and eradicate threats, and write an incident report.

16

PKI and Digital Certificates

B14 lessonsPRO

PKI and Digital Certificates: Public Key Infrastructure, Certificate Authorities, and more.

17

Identity and Access Management

B14 lessonsPRO

Identity and Access Management: IAM Fundamentals, RBAC and ABAC, and more.

18

Network Scanning and Enumeration

B14 lessonsPRO

Use Nmap, Netcat, and service fingerprinting to map networks and identify attack surfaces.

19

Vulnerability Assessment

B14 lessonsPRO

Use Nessus, OpenVAS, and Nikto to discover vulnerabilities; understand CVE, CVSS scoring, and prioritization.

20

Exploitation Basics with Metasploit

B14 lessonsPRO

Learn Metasploit's architecture, modules, payloads, and how to exploit known vulnerabilities in lab environments.

21

Windows Security and Active Directory

B14 lessonsPRO

Understand Windows security architecture, Active Directory attacks (Pass-the-Hash, Kerberoasting), and hardening.

22

Wireless Network Security

B14 lessonsPRO

Analyze 802.11 security: WEP, WPA2, WPA3, EAP protocols, evil twin attacks, and wireless hardening.

23

Log Analysis and SIEM

B14 lessonsPRO

Collect, parse, and correlate logs with a SIEM; write detection rules and investigate security alerts.

24

Cloud Security Fundamentals

B14 lessonsPRO

Secure AWS, Azure, or GCP environments: IAM least privilege, misconfiguration detection, and cloud-native security.

25

Threat Intelligence

B14 lessonsPRO

Collect, analyze, and operationalize threat intelligence: STIX/TAXII, threat feeds, ATT&CK mapping, and sharing.

26

Database Security

B14 lessonsPRO

Database Security: SQL Injection Defense, Access Control and Encryption, and more.

27

Security Auditing and Compliance

B14 lessonsPRO

Security Auditing and Compliance: Compliance Frameworks, Security Audits, and more.

28

Data Loss Prevention

B14 lessonsPRO

Data Loss Prevention: What Is DLP, Classifying Data, and more.

29

SOC Analyst Operations and Triage

B14 lessonsPRO

SOC Analyst Operations and Triage: The SOC and Its Tiers, Alert Triage Workflow, and more.

30

Threat Modeling with STRIDE

B14 lessonsPRO

Threat Modeling with STRIDE: Why Threat Modeling Matters, The STRIDE Framework, and more.

31

Email Security: SPF, DKIM and DMARC

B14 lessonsPRO

Email Security: SPF, DKIM and DMARC: How Email Spoofing Works, SPF Records, and more.

32

DNS Security and Attacks

B14 lessonsPRO

DNS Security and Attacks: How DNS Works and Its Risks, DNS Spoofing and Cache Poisoning, and more.

33

Vulnerability Management Programs

B14 lessonsPRO

Vulnerability Management Programs: The Vulnerability Management Lifecycle, Scanning and Asset Inventory, and more.

34

Risk Frameworks: NIST CSF and ISO 27001

B14 lessonsPRO

Risk Frameworks: NIST CSF and ISO 27001: Why Security Frameworks Exist, The NIST Cybersecurity Framework, and more.

35

Privacy and Data Protection

B14 lessonsPRO

Privacy and Data Protection: Why Data Privacy Matters, GDPR and KVKK Essentials, and more.

36

Steganography and Data Hiding

B14 lessonsPRO

Steganography and Data Hiding: What Steganography Is, Image and Audio Steganography, and more.

37

CTF and Practical Hacking Skills

B14 lessonsPRO

CTF and Practical Hacking Skills: CTF Categories and Mindset, Web and Crypto Challenges, and more.

38

TLS and SSL Deep Dive

B24 lessonsPRO

TLS and SSL Deep Dive: The TLS Handshake, Cipher Suites, and more.

39

Container Security

B24 lessonsPRO

Container Security: Container Threats, Image Scanning, and more.

40

API Security and OWASP API Top 10

B24 lessonsPRO

API Security and OWASP API Top 10: API Attack Surface, Broken Authorization, and more.

41

Web Application Pentesting

B24 lessonsPRO

Perform a structured web app pentest: intercept traffic with Burp Suite, exploit injection flaws, and test auth.

42

Malware Analysis Fundamentals

B24 lessonsPRO

Perform static and dynamic malware analysis: PE structure, strings, sandbox behavior, and YARA rules.

43

Mobile Application Security

B24 lessonsPRO

Mobile Application Security: Mobile Threat Landscape, Insecure Data Storage, and more.

44

IoT and Embedded Security

B24 lessonsPRO

IoT and Embedded Security: IoT Attack Surface, Firmware Analysis, and more.

45

Honeypots and Deception

B24 lessonsPRO

Honeypots and Deception: Deception Technology, Types of Honeypots, and more.

46

Application Security and DevSecOps

B24 lessonsPRO

Integrate security into CI/CD pipelines: SAST, DAST, SCA, secrets scanning, container security, and security champions.

47

Zero Trust Architecture

B24 lessonsPRO

Design Zero Trust networks: identity verification, microsegmentation, BeyondCorp model, and continuous validation.

48

Secure Coding Practices

B24 lessonsPRO

Write secure code: input validation, output encoding, secure dependency management, OWASP ASVS, and code review.

49

Bug Bounty and Responsible Disclosure

B24 lessonsPRO

Participate effectively in bug bounty programs: scope analysis, reporting quality, vulnerability chaining, and ethics.

50

Penetration Test Reporting

B24 lessonsPRO

Penetration Test Reporting: Report Structure, Risk Scoring, and more.

51

Burp Suite Mastery

B24 lessonsPRO

Burp Suite Mastery: Proxy and Interception, Repeater and Intruder, and more.

52

Network Traffic Analysis

B24 lessonsPRO

Network Traffic Analysis: Capturing Packets, Reading Protocols, and more.

53

Detection Engineering with Sigma

B24 lessonsPRO

Detection Engineering with Sigma: Detection-as-Code Principles, Writing Sigma Rules, and more.

54

Network Security Monitoring with IDS/IPS

B24 lessonsPRO

Network Security Monitoring with IDS/IPS: IDS vs IPS Concepts, Signature Rules with Snort and Suricata, and more.

55

YARA Rules for Malware Detection

B24 lessonsPRO

YARA Rules for Malware Detection: What YARA Is For, YARA Rule Syntax, and more.

56

Security Automation with SOAR

B24 lessonsPRO

Security Automation with SOAR: Why SOAR Matters, Playbook Design, and more.

57

Kubernetes Security

B24 lessonsPRO

Kubernetes Security: Kubernetes Threat Model, RBAC and Service Accounts, and more.

58

Software Supply Chain Security and SBOM

B24 lessonsPRO

Software Supply Chain Security and SBOM: Supply Chain Threats, Software Bill of Materials (SBOM), and more.

59

Ransomware Defense and Response

B24 lessonsPRO

Ransomware Defense and Response: How Ransomware Works, Prevention and Hardening, and more.

60

Secrets Management and Key Rotation

B24 lessonsPRO

Secrets Management and Key Rotation: The Secrets Sprawl Problem, Vaults and Secret Stores, and more.

61

AI and LLM Security

B24 lessonsPRO

AI and LLM Security: Prompt Injection and Jailbreaks, The OWASP LLM Top 10, and more.

62

Authentication Protocols: OAuth, OIDC and SAML

B24 lessonsPRO

Authentication Protocols: OAuth, OIDC and SAML: OAuth 2.0 Flows, OpenID Connect (OIDC), and more.

63

Advanced Exploitation Techniques

C14 lessonsPRO

Master buffer overflows, ROP chains, format string vulnerabilities, and heap exploitation in a lab setting.

64

Reverse Engineering

C14 lessonsPRO

Reverse engineer binaries with Ghidra and GDB: control flow, data structures, calling conventions, and deobfuscation.

65

Red Team Operations

C14 lessonsPRO

Plan and execute red team engagements: C2 infrastructure, living-off-the-land techniques, and evasion.

66

Forensics and Memory Analysis

C14 lessonsPRO

Perform digital forensics: disk imaging, file carving, memory analysis with Volatility, and timeline reconstruction.

67

Security Architecture and Risk Management

C14 lessonsPRO

Design secure architectures: threat modeling, risk frameworks (NIST, ISO 27001), control selection, and audit.

68

Advanced Malware and APT Campaigns

C14 lessonsPRO

Analyze advanced persistent threat campaigns: multi-stage loaders, fileless malware, C2 over HTTPS, and TTPs.

69

Cyber Threat Hunting

C14 lessonsPRO

Cyber Threat Hunting: Threat Hunting Mindset, Hypothesis-Driven Hunting, and more.

70

Active Directory and Kerberos Attacks

C14 lessonsPRO

Active Directory and Kerberos Attacks: Active Directory Attack Surface, Kerberos and Kerberoasting, and more.

71

Cloud Penetration Testing

C14 lessonsPRO

Cloud Penetration Testing: Cloud Attack Surface, Enumerating Cloud Resources, and more.

72

Disk and Network Forensics

C14 lessonsPRO

Disk and Network Forensics: Forensic Fundamentals and Chain of Custody, Disk Imaging and File System Analysis, and more.

73

OT, ICS and SCADA Security

C14 lessonsPRO

OT, ICS and SCADA Security: Industrial Control Systems Basics, OT vs IT Security Differences, and more.

74

Purple Teaming

C14 lessonsPRO

Purple Teaming: Why Purple Teaming, Mapping Attacks to Detections, and more.

75

RF and Wireless Hacking

C14 lessonsPRO

RF and Wireless Hacking: RF and SDR Fundamentals, Bluetooth and BLE Attacks, and more.

76

Mobile Forensics

C14 lessonsPRO

Mobile Forensics: Mobile Forensics Fundamentals, Android Acquisition and Analysis, and more.

FAQ

Frequently Asked Questions

Is the Cyber Security Academy course free?

Yes. You can start the Cyber Security Academy course for free and complete its interactive lessons at no cost. An optional PRO subscription unlocks advanced AI tools and a shareable certificate.

Do I need prior experience to learn ENGLISH?

No. The course begins with the fundamentals and gradually moves to more advanced topics, so you can start even with no prior ENGLISH experience.

How will I learn ENGLISH on CoddyKit?

You learn by doing. Short interactive lessons pair a clear explanation with a hands-on coding exercise that runs in real time, and a 24/7 AI tutor gives personalized help whenever you get stuck.

Do I get a certificate for completing Cyber Security Academy?

Yes. PRO learners can take an exam and earn a shareable certificate of completion with a verifiable code for the Cyber Security Academy course.

Can I learn ENGLISH on my phone?

Yes. CoddyKit is available on the web and as native iOS and Android apps, so you can learn ENGLISH on any device and your progress syncs across them.

Start Cyber Security Academy Now

Join thousands of learners mastering programming with AI-powered lessons.

Get Started Free →Browse All Courses