Your cybersecurity journey starts here.

Develop your skills with guided training and prove your expertise with industry certifications. Become a market-ready cybersecurity professional.

Get certified with HTB

Skyrocket your resume. Land your dream job. Stand out from the competition.

View Job Role Paths

Master new skills

Learn popular offensive and defensive security techniques with skill paths.

View Skill Paths

Learners advancing in cybersecurity.

Why HTB Academy

Prepare for your future in cybersecurity with interactive, guided training and industry certifications. Learn the skills needed to stand out from the competition.

Guided Courses

For every skill level, from beginner to advanced

Threat-informed training approach
Real-world examples
Skills assessment exercises
Discord-based guidance

In-browser Pentesting VM

Tackle all lab exercises from your browser

In-browser pentesting VM (Pwnbox) to practice everything you learn
No infrastructure or tool requirements

Highly Practical

Practice in a real-world environment

Interactive exercises against real-world applications and infrastructure
Gain valuable hands-on experience

Get Certified

Stand out in the job market, skyrocket your resume

Industry-recognized certifications
Realistic examinations mimicking real engagements
Commercial-grade report required to pass

Unlimited & Online

On-demand access from everywhere

Smaller, easier to digest courses available online
Lifetime access to completed courses

Job & Skill Paths

Achieve job proficiency or learn a new skill

Acquire job or skill proficiency
Develop an outside-the-box thinking mentality

JOB ROLE PATHS
SKILL PATHS

Get ΗΤΒ certified

HTB Certified Penetration Testing Specialist

28 Modules

Exam Included

Related Job Role Path
Penetration Tester

Get certified for

$490

HTB Certified Bug Bounty Hunter

20 Modules

Exam Included

Related Job Role Path
Bug Bounty Hunter

Get certified for

$490

Master a skill

Basic Toolset

In this path, modules cover the basic tools needed to be successful in network and web application penetration testing. This is not an exhaustive list...

Medium

7 Modules

91 Sections

Cracking into Hack the Box

To be successful in any technical information security role, we must have a broad understanding of specialized tools, tactics, and terminology. This p...

Easy

3 Modules

42 Sections

Local Privilege Escalation

Privilege escalation is a vital phase of the penetration testing process, one we may revisit multiple times during an engagement. During our assessmen...

Medium

2 Modules

61 Sections

Intro to Binary Exploitation

Binary exploitation is a core tenet of penetration testing, but learning it can be daunting. This is mainly due to the complexity of binary files and...

Hard

4 Modules

62 Sections

Operating System Fundamentals

To succeed in information security, we must have a deep understanding of the Windows and Linux operating systems and be comfortable navigating the com...

Easy

3 Modules

55 Sections

CREST CPSA/CRT Preparation

This is a skill path to prepare you for CREST's CPSA and CRT exams. The following CPSA/CRT syllabus areas (IDs) are covered: A1, A2, A3, A4, A5, B1, B...

Medium

40 Modules Path Sections

673 Sections

CREST CCT APP Preparation

This is a skill path to prepare you for CREST's CCT APP exam. The following CCT APP syllabus areas (IDs) are covered: A1, A2, A3, A4, A5, B1, B4, B5,...

Medium

44 Modules Path Sections

739 Sections

Information Security Foundations

Information Security is a field with many specialized and highly technical disciplines. Job roles like Penetration Tester & Information Security Analy...

Easy

12 Modules Path Sections

191 Sections

CREST CCT INF Preparation

This is a skill path to prepare you for CREST's CCT INF exam. The following CCT INF syllabus areas (IDs) are covered: A1, A2, A3, A4, A5, A8, A9, A10,...

Hard

58 Modules Path Sections

945 Sections

SOC Analyst Prerequisites

The SOC Analyst Prerequisites path is designed for those looking to become SOC/Security Analysts. It dives into fundamental IT and Information Securit...

Easy

10 Modules Path Sections

173 Sections

Active Directory Enumeration

Active Directory (AD) is widely used by companies across all verticals/sectors, non-profits, government agencies, and educational institutions of all...

Hard

3 Modules

35 Sections

MODULES

cybersecurity modules.

Learning Process

The learning process is one of the essential and most important components that is often overlooked. This module does not teach you techniques to lear...

Fundamental

20 Sections

Introduction to Academy

This module is recommended for new users. It allows users to become acquainted with the platform and the learning process.

Fundamental

8 Sections

Linux Fundamentals

This module covers the fundamentals required to work comfortably with the Linux operating system and shell.

Fundamental

30 Sections

Introduction to Bash Scripting

This module covers the basics needed for working with Bash scripts to automate tasks on Linux systems. A strong grasp of Bash is a fundamental skill...

Easy

10 Sections

DNS Enumeration Using Python

As a penetration tester or red teamer, it is imperative that we understand the tools that we use inside and out and also have the ability to write out...

Medium

11 Sections

Introduction to Networking

As an information security professional, a firm grasp of networking fundamentals and the required components is necessary. Without a strong foundation...

Fundamental

21 Sections

Web Requests

This module introduces the topic of HTTP web requests and how different web applications utilize them to communicate with their backends.

Fundamental

8 Sections

Windows Fundamentals

This module covers the fundamentals required to work comfortably with the Windows operating system.

Fundamental

14 Sections

Introduction to Active Directory

Active Directory (AD) is present in the majority of corporate environments. Due to its many features and complexity, it presents a vast attack surface...

Fundamental

16 Sections

Introduction to Web Applications

In the Introduction to Web Applications module, you will learn all of the basics of how web applications work and begin to look at them from an infor...

Fundamental

17 Sections

Intro to Network Traffic Analysis

Network traffic analysis is used by security teams to monitor network activity and look for anomalies that could indicate security and operational iss...

Medium

15 Sections

Intro to Assembly Language

This module builds the core foundation for Binary Exploitation by teaching Computer Architecture and Assembly language basics.

Medium

24 Sections

Setting Up

This module covers topics that will help us be better prepared before conducting penetration tests. Preparations before a penetration test can often t...

Fundamental

9 Sections

Introduction to Python 3

Automating tedious or otherwise impossible tasks is highly valued during both penetration testing engagements and everyday life. Introduction to Pytho...

Easy

14 Sections

Penetration Testing Process

This module teaches the penetration testing process broken down into each stage and discussed in detail. We will cover many aspects of the role of a p...

Fundamental

15 Sections

Incident Handling Process

Security Incident handling has become a vital part of each organization's defensive strategy, as attacks constantly evolve and successful compromises...

Fundamental

9 Sections

MacOS Fundamentals

This module covers the fundamentals required to work comfortably within the macOS operating system and shell.

Fundamental

11 Sections

Bug Bounty Hunting Process

Bug bounty programs encourage security researchers to identify bugs and submit vulnerability reports. Getting into the world of bug bounty hunting wit...

Easy

6 Sections

Documentation & Reporting

Proper documentation is paramount during any engagement. The end goal of a technical assessment is the report deliverable which will often be presente...

Easy

8 Sections

Introduction to Windows Command Line

As administrators and Pentesters, we may not always be able to utilize a graphical user interface for the actions we need to perform. Introduction to...

Easy

23 Sections

Introduction to C#

Introduction to C# aims to provide a solid foundation to understand and work with C# code. Covering the crucial foundations and more intricate concept...

Easy

21 Sections

Brief Intro to Hardware Attacks

This mini-module concisely introduces hardware attacks, covering Bluetooth risks and attacks, Cryptanalysis Side-Channel Attacks, and vulnerabilities...

Medium

8 Sections

Security Incident Reporting

Tailored to provide a holistic understanding, this Hack The Box Academy module ensures participants are adept at identifying, categorizing, and docume...

Easy

5 Sections

Hacking WordPress

WordPress is an open-source Content Management System (CMS) that can be used for multiple purposes.

Easy

16 Sections

Network Enumeration with Nmap

Nmap is one of the most used networking mapping and discovery tools because of its accurate results and efficiency. The tool is widely used by both of...

Easy

12 Sections

Cracking Passwords with Hashcat

This module covers the fundamentals of password cracking using the Hashcat tool.

Medium

14 Sections

Active Directory LDAP

This module provides an overview of Active Directory (AD), introduces core AD enumeration concepts, and covers enumeration with built-in tools.

Medium

12 Sections

File Inclusion

File Inclusion is a common web application vulnerability, which can be easily overlooked as part of a web application's functionality.

Medium

11 Sections

File Transfers

During an assessment, it is very common for us to transfer files to and from a target system. This module covers file transfer techniques leveraging t...

Medium

10 Sections

Kerberos Attacks

Kerberos is an authentication protocol that allows users to authenticate and access services on a potentially insecure network. Due to its prevalence...

Hard

23 Sections

OSINT: Corporate Recon

OSINT (Open-source Intelligence) is a crucial stage of the penetration testing process. A thorough examination of publicly available information can i...

Hard

23 Sections

Stack-Based Buffer Overflows on Linux x86

Buffer overflows are common vulnerabilities in software applications that can be exploited to achieve remote code execution (RCE) or perform a Denial-...

Medium

13 Sections

SQL Injection Fundamentals

Databases are an important part of web application infrastructure and SQL (Structured Query Language) to store, retrieve, and manipulate information s...

Medium

17 Sections

Using the Metasploit Framework

The Metasploit Framework is an open-source set of tools used for network enumeration, attacks, testing security vulnerabilities, evading detection, pe...

Easy

15 Sections

Whitebox Pentesting 101: Command Injection

This module focuses on discovering Command Injection vulnerabilities in NodeJS servers and exploiting them to control the server.

Hard

19 Sections

Linux Privilege Escalation

Privilege escalation is a crucial phase during any security assessment. During this phase, we attempt to gain access to additional users, hosts, and r...

Easy

28 Sections

Attacking Web Applications with Ffuf

This module covers the fundamental enumeration skills of web fuzzing and directory brute forcing using the Ffuf tool. The techniques learned in this m...

Easy

13 Sections

Login Brute Forcing

Learn how to brute force logins for various types of services and create custom wordlists based on your target.

Easy

11 Sections

SQLMap Essentials

The SQLMap Essentials module will teach you the basics of using SQLMap to discover various types of SQL Injection vulnerabilities, all the way to the...

Easy

11 Sections

Windows Privilege Escalation

After gaining a foothold, elevating our privileges will provide more options for persistence and may reveal information stored locally that can furthe...

Medium

33 Sections

Active Directory PowerView

This module covers AD enumeration focusing on the PowerView and SharpView tools. We will cover various techniques for enumerating key AD objects that...

Medium

9 Sections

Active Directory BloodHound

This module covers AD enumeration focusing on the BloodHound tool. We will cover various techniques for enumerating key AD objects that will inform ou...

Medium

14 Sections

Getting Started

This module covers the fundamentals of penetration testing and an introduction to Hack The Box.

Fundamental

23 Sections

Broken Authentication

Authentication is probably the most straightforward and prevalent measure used to secure access to resources, and it's the first line of defense again...

Medium

14 Sections

Using CrackMapExec

Active Directory presents a vast attack surface and often requires us to use many different tools during an assessment. The CrackMapExec tool, known a...

Medium

27 Sections

Stack-Based Buffer Overflows on Windows x86

This module is your first step into Windows Binary Exploitation, and it will teach you how to exploit local and remote buffer overflow vulnerabilities...

Medium

11 Sections

Cross-Site Scripting (XSS)

Cross-Site Scripting (XSS) vulnerabilities are among the most common web application vulnerabilities. An XSS vulnerability may allow an attacker to ex...

Easy

10 Sections

Vulnerability Assessment

This module introduces the concept of Vulnerability Assessments. We will review the differences between vulnerability assessments and penetration test...

Easy

17 Sections

Command Injections

Command injection vulnerabilities can be leveraged to compromise a hosting server and its entire network. This module will teach you how to identify a...

Medium

12 Sections

Using Web Proxies

Web application penetration testing frameworks are an essential part of any web penetration test. This module will teach you two of the best framework...

Easy

15 Sections

Footprinting

This module covers techniques for footprinting the most commonly used services in almost all enterprise and business IT infrastructures. Footprinting...

Medium

21 Sections

Attacking Common Applications

Penetration Testers can come across various applications, such as Content Management Systems, custom web applications, internal portals used by develo...

Medium

33 Sections

Shells & Payloads

Gain the knowledge and skills to identify and use shells & payloads to establish a foothold on vulnerable Windows & Linux systems. This module utilize...

Medium

17 Sections

Attacking Common Services

Organizations regularly use a standard set of services for different purposes. It is vital to conduct penetration testing activities on each service i...

Medium

19 Sections

Web Attacks

This module covers three common web vulnerabilities, HTTP Verb Tampering, IDOR, and XXE, each of which can have a significant impact on a company's sy...

Medium

18 Sections

File Upload Attacks

Arbitrary file uploads are among the most critical web vulnerabilities. These flaws enable attackers to upload malicious files, execute arbitrary comm...

Medium

11 Sections

Active Directory Enumeration & Attacks

Active Directory (AD) is the leading enterprise domain management suite, providing identity and access management, centralized domain administration,...

Medium

36 Sections

Information Gathering - Web Edition

This module covers techniques for identifying and analyzing an organization's web application-based attack surface and tech stack. Information gatheri...

Easy

10 Sections

Server-side Attacks

A backend that handles user-supplied input insecurely can lead to sensitive information disclosure and remote code execution. This module covers how t...

Medium

19 Sections

Password Attacks

Passwords are still the primary method of authentication in corporate networks. If strong password policies are not in place, users will often opt for...

Medium

22 Sections

Session Security

Maintaining and keeping track of a user's session is an integral part of web applications. It is an area that requires extensive testing to ensure it...

Medium

14 Sections

Pivoting, Tunneling, and Port Forwarding

Once a foothold is gained during an assessment, it may be in scope to move laterally and vertically within a target network. Using one compromised mac...

Medium

18 Sections

Web Service & API Attacks

Web services and APIs are frequently exposed to provide certain functionalities in a programmatic way between heterogeneous devices and software compo...

Medium

13 Sections

Attacking Enterprise Networks

We often encounter large and complex networks during our assessments. We must be comfortable approaching an internal or external network, regardless o...

Medium

14 Sections

Introduction to Deserialization Attacks

In this module, we will explore deserialization attacks with specific examples in Python and PHP.

Hard

15 Sections

Attacking Authentication Mechanisms

Authentication plays an essential role in almost every web application. If a vulnerability arises in the application's authentication mechanism, it co...

Medium

18 Sections

Introduction to NoSQL Injection

In this module, we will look at exploiting NoSQL injection vulnerabilities, specifically MongoDB, with examples in Python, PHP, and Node.JS.

Medium

12 Sections

Blind SQL Injection

In this module, we cover blind SQL injection attacks and MSSQL-specific attacks.

Hard

16 Sections

Game Hacking Fundamentals

This module serves as an introduction to fundamental Game Hacking concepts. You will learn how to find and change memory values in a running game as w...

Medium

12 Sections

HTTPs/TLS Attacks

This module covers details on Transport Layer Security (TLS) and how it helps to make HTTP secure with the widely used HTTPS. That includes how TLS wo...

Medium

15 Sections

Advanced SQL Injections

This module covers advanced SQL injection techniques with a focus on white-box testing, Java/Spring and PostgreSQL.

Hard

12 Sections

Abusing HTTP Misconfigurations

This module covers three common HTTP vulnerabilities: Web Cache Poisoning, Host Header Vulnerabilities, and Session Puzzling or Session Variable Overl...

Hard

20 Sections

HTTP Attacks

This module covers three HTTP vulnerabilities: CRLF Injection, HTTP Request Smuggling, and HTTP/2 Downgrading. These vulnerabilities can arise on the...

Hard

18 Sections

Injection Attacks

This module covers three injection attacks: XPath injection, LDAP injection, and HTML injection in PDF generation libraries. While XPath and LDAP inje...

Medium

15 Sections

Whitebox Attacks

This module covers three web vulnerabilities from a whitebox approach: Prototype Pollution, Timing Attacks & Race Conditions, and Type Juggling. We wi...

Hard

15 Sections

Game Reversing & Modding

This module serves as a follow-up to the Game Hacking Fundamentals module. You will learn how to persist Cheat Engine Scripts by scanning for byte arr...

Medium

20 Sections

DACL Attacks I

Discretionary Access Control Lists (DACLs), found within security descriptors, are a fundamental component of the security model of Windows and Active...

Hard

7 Sections

Modern Web Exploitation Techniques

This module covers advanced web concepts and exploitation techniques, including performing DNS Rebinding to bypass faulty SSRF filters and the Same-Or...

Hard

18 Sections

NTLM Relay Attacks

The NTLM authentication protocol is commonly used within Windows-based networks to facilitate authentication between clients and servers. However, NTL...

Hard

10 Sections

Secure Coding 101: JavaScript

Learn how to improve your JavaScript code's security through Code Review, Static/Dynamic Analysis, Vulnerability Identification, and Patching.

Hard

17 Sections

JavaScript Deobfuscation

This module will take you step-by-step through the fundamentals of JavaScript Deobfuscation until you can deobfuscate basic JavaScript code and unders...

Easy

11 Sections

Windows Attacks & Defense

Microsoft Active Directory (AD) has been, for the past 20+ years, the leading enterprise domain management suite, providing identity and access manage...

Medium

16 Sections

Security Monitoring & SIEM Fundamentals

This module provides a concise yet comprehensive overview of Security Information and Event Management (SIEM) and the Elastic Stack. It demystifies th...

Easy

11 Sections

Introduction to Threat Hunting & Hunting With Elastic

This module initially lays the groundwork for understanding Threat Hunting, ranging from its basic definition, to the structure of a threat hunting te...

Medium

6 Sections

Windows Event Logs & Finding Evil

This module covers the exploration of Windows Event Logs and their significance in uncovering suspicious activities. Throughout the course, we delve i...

Medium

6 Sections

Understanding Log Sources & Investigating with Splunk

This module provides a comprehensive introduction to Splunk, focusing on its architecture and the creation of effective detection-related SPL (Search...

Medium

6 Sections

Working with IDS/IPS

This module offers an in-depth exploration of Suricata, Snort, and Zeek, covering both rule development and intrusion detection. We'll guide you throu...

Medium

11 Sections

Introduction to Malware Analysis

This module offers an exploration of malware analysis, specifically targeting Windows-based threats. The module covers Static Analysis utilizing Linux...

Hard

9 Sections

Intermediate Network Traffic Analysis

Through network traffic analysis, this module sharpens skills in detecting link layer attacks such as ARP anomalies and rogue access points, identifyi...

Easy

18 Sections

Detecting Windows Attacks with Splunk

This Hack The Box Academy module is focused on pinpointing attacks on Windows and Active Directory. Utilizing Splunk as the cornerstone for investigat...

Medium

23 Sections

YARA & Sigma for SOC Analysts

This Hack The Box Academy module covers how to create YARA rules both manually and automatically and apply them to hunt threats on disk, live processe...

Easy

11 Sections

Introduction to Digital Forensics

Dive into Windows digital forensics with Hack The Box Academy's "Introduction to Digital Forensics" module. Gain mastery over core forensic concepts a...

Medium

8 Sections

Parameter Logic Bugs

This 'secure coding' module teaches how to identify logic bugs through code review and analysis, and covers three types of logic bugs caused by user i...

Hard

21 Sections

50k+ 5 star reviews

10+ paths

To obtain skill or job proficiency

90+ modules

From a diverse pool of instructors

775+ labs

To obtain hands-on experience

Hack The Box is where my infosec journey started. The main question people usually have is “Where do I begin?”. At NVISO, we provide new team members access to the HTB Academy, in which they complete modules and follow tracks focused on a specific topic (e.g. AD, Web Pentesting, Cryptography, etc.). This way, new NVISO-members build a strong knowledge base in these subjects.

Firat Acar - Cybersecurity Consultant/Red Teamer

We immediately started using HTB Academy after we signed up and found that the modules challenge the students to work hard to successfully reach an end goal. Now, we have students getting hired only a month after starting to use HTB! We're excited to see this trend continue the rest of the academic year.

Matthew McCullough - Lead Instructor

Thank you HTB family for all of the hard work and countless hours that have gone into developing the premier content in HTB Academy. I am grateful to have an affordable training resource that is helping to fill the gap between what we are taught in school and what will actually be required of us in the field.

@jhillman - Learner