Foundations
Reference pages for planning, authorisation, scoping, documentation and delivery logic.
domain hubpublic links
Research // Offensive Reference Platform
Research domains for offensive work, specialist target classes and operator tradecraft.
Move by surface, not by syllabus. The academy view groups the site into practical domains so you can jump straight into web, internal, cloud, API, mobile, identity, supply-chain, AI or industrial work without losing operational context.
Research domains
Each domain opens into standalone reference notes, command-heavy pages and linked public material.
Internal Operations
Infrastructure-led offensive work from enumeration and credential pressure to pivoting and C2.
domain hubpublic links
Escalation Paths
Host-level privilege paths across Linux, Windows and macOS with emphasis on verification and realism.
domain hubpublic links
Application Security
Application-security coverage spanning workflow, browser behaviour and exploitation logic.
domain hubpublic links
API Security
Dedicated endpoint, token, object and schema abuse coverage beyond classic browser-led testing.
domain hubpublic links
Cloud Offensive Security
Provider identities, control planes, IaC drift, Kubernetes and cloud automation abuse.
domain hubpublic links
Mobile App Pentesting
Android and iOS testing, instrumentation, pinning bypass, storage and mobile reversing.
domain hubpublic links
Identity / SSO Abuse
Entra, Okta, federation, token theft, consent abuse and tenant trust failures.
domain hubpublic links
Wireless Operations
Signal capture, protocol analysis, rogue infrastructure and client-side wireless attack paths.
domain hubpublic links
Adversary Emulation / Tradecraft
Payload staging, OPSEC, AV/EDR pressure, client-side chains and C2 tradecraft.
domain hubpublic links
DevSecOps / Supply Chain
Git, CI/CD, runner abuse, package trust, signing, SBOM and build-system compromise.
domain hubpublic links
OT / ICS Security
Modbus, DNP3, PLC and HMI trust, segmentation drift and process manipulation risk.
domain hubpublic links
AI Security
Prompt injection, agent compromise, retrieval abuse, model APIs and offensive AI ops.
domain hubpublic links
Drone / Robotics Security
Autopilots, MAVLink, ROS, companion computers and field operator trust.
domain hubpublic links
Exploit Development
Payload engineering, shellcoding, analysis and exploit-oriented custom tooling.
domain hubpublic links
Reverse Engineering
Static and dynamic binary analysis across desktop and specialist targets.
domain hubpublic links