Kalan logoKalan_
curriculum

Learning paths

Every lesson links to an authoritative free source — OWASP, NIST, PortSwigger Web Security Academy, HackTricks, Cloudflare Learning, Wireshark docs, RFCs, and more.

  1. stage 01

    Foundations

    TCP/IP, the Linux command line, and scripting fundamentals — the bedrock every security practitioner needs.

    BeginnerCompTIA Security+
    TCP/IPLinuxBashPythonWiresharkCryptography
    4 modules · 14 lessons · ~40hEnter path
  2. stage 02

    Reconnaissance & Scanning

    Passive and active reconnaissance — strictly within authorized scope — using Nmap, Amass, OWASP WSTG, and OSINT tooling.

    BeginnerINE eJPT
    OSINTNmapAmassSubdomain enumWSTG
    2 modules · 7 lessons · ~26hEnter path
  3. stage 03

    Web Application Security

    Injection, broken access control, SSRF, XSS and more — using PortSwigger Web Security Academy and OWASP as the canonical references.

    IntermediateTCM PNPT
    OWASPBurp SuiteSQLiXSSSSRFAccess Control
    3 modules · 9 lessons · ~60hEnter path
  4. stage 04

    Network Exploitation

    Internal-network attack chains — SMB, Kerberos, Active Directory abuse — performed only in licensed lab environments.

    AdvancedOffSec OSCP
    Active DirectoryKerberosBloodHoundImpacketMITRE ATT&CK
    2 modules · 7 lessons · ~60hEnter path
  5. stage 05

    Privilege Escalation

    Identify misconfigurations, SUID/cap abuse, token impersonation and credential reuse leading to elevation.

    AdvancedOffSec OSCP
    LinPEASWinPEASGTFOBinsLOLBASToken abuse
    2 modules · 7 lessons · ~36hEnter path
  6. stage 06

    Reporting & Professional Practice

    Scoping, rules of engagement, CVSS scoring, executive summaries and remediation guidance — what clients actually pay for.

    IntermediateTCM PNPT
    PTESNIST 800-115CVSSScopingCommunication
    2 modules · 5 lessons · ~16hEnter path
  7. stage 07

    Cloud Security

    IAM misconfigurations, metadata services, container escapes, and the controls that stop them.

    AdvancedEC-Council CEH
    AWS IAMK8s securityContainer securityCloud Top 10
    3 modules · 7 lessons · ~36hEnter path
  8. stage 08

    Mobile & IoT

    Reverse engineering mobile apps and probing IoT firmware in lab conditions, using OWASP MASVS/MASTG as the reference.

    ExpertEC-Council CEH
    MASVSMASTGFridaAndroid internalsIoT Top 10
    3 modules · 7 lessons · ~44hEnter path