Are you new to studying security?

We've got you covered. Explore the best cybersecurity learning platform right here.
Roadmaps for newbies Are you starting to study security for the first time? You can learn easily and quickly with four different interactive elements. Start the beginner course
Content created by practitioners Discover content created by world champion white hat hackers. We're bringing their know-how straight to you. Explore content
The largest security community in Korea Dreamhack has the largest community in Korea. Share various security information with the community and Discord! Explore the community

Easy courses for beginners

If you're new to security, we've compiled a list of courses with a basic level of difficulty.

Free, high-quality courses you can trust

Dreamhack has a lot more free courses than paid courses.

New roadmaps

Check out our various roadmaps for the latest trends!

9 different areas of study

You'll learn about all aspects of security.
Beginners
System Hacking
Reverse Engineering
Web Hacking
Cryptography
Mobile Hacking
Cloud
Secure Coding
Hardware
Interested in more courses? You can check it out here!

CTF to experience hacking competitions first-hand

Once you're comfortable with the courses and wargames, get hands-on with the CTF!

Community

Check out the most popular posts on Dreamhack!

The question everyone wants to know

These questions have been asked by many users. Do you have any that resonate with you?
https://dreamhack.io/learn/119#7 해당 강의에서 custom 함수를 통해 라이브러리 주소를 유출하고 Robot, Human에서 uaf를 발생시켜 one_gadget을 실행한다는 익스플로잇 설계는 이해했습니다만 custom 함수를 통한 라이브러리 유출에 대한 내용이 너무 빈약한 것 같습니다.. 해당 강의에서는 단순히 "libc가 매핑된 주소의 오프셋은 gdb로 쉽게 구할 수 있습니다." 라고만 하고 넘어가네요.. ㅠㅠ gdb를 통해 libc가 매핑된 주소를 어떻게 구할 수 있는지, fd와 bk에 정확히 어떤 정보가 어떤 형태로 들어가게 되는지, 해당 익스플로잇 코드에서 커스텀 함수를 통한 heap 할당을 왜 4번이나 하는지, -1을 입력하는 것은 그냥 영역을 해제하지 않겠다는 의미가 맞는지 모르겠습니다..ㅠㅠ
문제는 해결했습니다. 하지만 got overwrite을 해줄때 처음에 printf나 read의 got를 overwrite해주려고 해보았는데 안되고 다른 함수의 got를 overwrite해서서 해결하게 되었습니다. 근데 printf,read의 got를 overwrite했을 땐 왜 안되는지 잘 모르겠는데 그 이유에 대해서 고수분들께서 도와주셨으면 합니다. ㅎㅎㅎ
포멧스트링버그 실습 뒤에 해석이나 가이드가 없어서 어떻게 할지 모르겠어요;;
The hackers' playground
Dreamhack
Dreamhack is a hacker's playground.
Students who want to study hacking and security,
developers who want to write more secure code,
and even security professionals
who want to take their security knowledge and skills to the next level
come together to study, practice, share knowledge, and improve their skills.

Dreamhack offers a variety of services.

We work with a wide range of organizations, including enterprises, public agencies, and educational institutions.
Security Capability Improvement Solutions for Enterprises Dreamhack Enterprise
Enterprise security is no longer a job for experts alone, or for security teams alone. Dreamhack Enterprise provides solutions to improve your security capabilities through curriculums.
Click here for more details
Secure Education Solutions for Institutions Dreamhack Education
The lack of security training has been cited as a limitation of existing security education. Dreamhack Education provides quality courses created by experts and centered on real-world.
Get the Education Brochure
Get to know your applicant's capabilities before you hire them. Dreamhack Recruit CTF
The Dreamhack Recruit CTF features CTF questions handcrafted by world champion white hat hackers to help you more objectively judge applicant's security skills.
Get the Recruit CTF Brochure