Why It's Worth Your Time

This Path is designed to help learners systematically build the skills needed for real-world security audits by directly performing security assessments from a web service auditing perspective. Through hands-on practice with DreamBank, a virtual web service running on Kubernetes, learners will identify and patch security vulnerabilities across various scenarios. It is ideal for those who want to experience web security audits or explore Kubernetes-based web service security.

Topics Covered

• Security auditing of Kubernetes-based web services
• Analyzing and auditing the system design of DreamBank
• Finding and patching vulnerabilities in deployed applications
• Auditing user services, account management, and money transfer features
• Analyzing potential vulnerabilities in community and customer service features
• Proposing security enhancements through final audits

Recommended For

• Aspiring white-hat hackers, security consultants, and bug bounty hunters
• Those who want hands-on experience auditing web applications in a realistic environment
• Those curious about finding security vulnerabilities in Kubernetes-based services

Prerequisite Knowledge

• Basic computer skills
• Basic networking knowledge
• Solid understanding of web hacking
• Knowledge of web application development and Kubernetes basics
• Basic Linux usage skills