Hacker Boot Camp

Modern, Elegant, Relentless Learning for Hackers

From fundamentals to advanced tradecraft: JavaScript, PowerShell, Python, Go, Networking, Linux, Web Security, Cloud, Blue/Red Team prep. Build real skill through curated tracks, labs, and challenges.

Explore Tracks Start a Lab

Curriculum Tracks

Opinionated paths. Hands-on progress. No fluff.

View all tracks
JavaScript Beginner → Advanced
Web Exploits & Automation

Core JS, DOM, fetch/XHR, Chrome DevTools, Node basics, request replay, small tooling.

Open track
PowerShell Ops / Blue Team
Windows Automation & Defense

Profiles, remoting, AD, eventing, logging, hardening scripts, blue-team triage.

Open track
Python Scripting / Tooling
Offensive & Defensive Tooling

HTTP clients, parsing, automation, simple C2 patterns, PCAP parsing, mini-frameworks.

Open track
Go Toolsmith
Fast CLI & Network Tools

Goroutines, sockets, HTTP/2, TLS, binary builds, small scanners, and services.

Open track
Networking Core
Packets to Protocols

TCP/IP, DNS, TLS, Wireshark, Nmap, routing basics, VPNs, firewall rules.

Open track
Web Security Offense
OWASP & Beyond

Auth flows, injection, XSS, SSRF, CSRF, deserialization, secure headers, WAF evasion basics.

Open track
Cloud & DevOps Infra
Secure Pipelines & Cloud

Linux, containers, CI/CD, secrets, IaC, logging, vuln mgmt, blue/green deploys.

Open track
Blue Team Defense
Detection & Response

Windows/Linux hardening, SIEM, Sigma, PowerShell logging, incident response playbooks.

Open track
Red Team Ethics First
Adversary Simulation (Ethical)

OPSEC, recon, initial access, privilege escalation, persistence, reporting. Strict ethics.

Open track

Labs & Challenges

Hands-on scenarios with hints, write-ups, and badges.

See all labs
CTF-101 Difficulty: Easy
Intro to Burp & Basic Auth Flaws

Proxy traffic, inspect requests, brute weak creds, fix misconfig. Includes safe target.

Launch Write-up
Web-201 Difficulty: Medium
Stored XSS with CSP Bypass

Craft payloads, leverage sinks, understand CSP nuances, deliver safe PoC & mitigation.

Launch Write-up
Upcoming Live CTF Weekend

Register now. Team or solo. New boxes; blue-team detection track available.

Register

Toolbox

Curated essentials: install guides, configs, profiles.

All tools
Git & Profiles

Global .gitconfig, signing, branch strategy, commit hygiene.

Open
PowerShell Profile

Prompt, modules, PSReadLine, secure transcripts, remoting.

Open
Linux Setup

Zsh/Bash, tmux, Docker/Podman, fail2ban/ufw quick-start.

Open

Roadmap

A guided path from zero to capable operator.

Details
Phase 1 — Foundations
  • Command line, Git, scripting basics (JS / PowerShell / Python)
  • Networking essentials, HTTP model, TLS
  • Linux & Windows hardening fundamentals
Phase 2 — Practitioner
  • Web security labs & safe exploitation
  • Cloud & CI/CD, logging, detection engineering
  • Build small tools (Go/Python)
Phase 3 — Specialization
  • Blue Team detection pipelines & response playbooks
  • Ethical Red simulations, reporting, OPSEC
  • Capstone: end-to-end assessment & remediation plan
Badges & Certs
  • Track completion badges (on-chain optional)
  • Lab ribbons and live-CTF trophies
  • Verified project portfolio pages

Resource Library

Cheatsheets, glossaries, and reading lists.

Browse all
Networking Cheat Pack

TCP flags, CIDR math, common ports, DNS ops, TLS cipher quick ref.

Open
WebSec Glossary

XSS, CSRF, SSRF, deserialization, auth flows, secure headers explained.

Open
Blue Team Playbooks

Log sources, triage steps, escalation, IR comms templates.

Open
Syllabus
FAQ
Honor Code
Contact