Alex's Exam Readiness Map
A narrative-aligned blueprint showing how Alex threads reconnaissance, exploitation, and mitigation across the eWPTv2 subject matter. Jump straight into the modules that map to the exam's hands-on tasks.
Back to course hubRecon & Surface Mapping
CoreAlex charts DNS, subdomains, and hidden paths before tackling APIs, GraphQL endpoints, and WebSocket backchannels.
Authentication & Session Hardening
CoreModern auth flows meet adversarial testing: JWT key confusion, OAuth/OIDC parameter tampering, cookie integrity, and session fixation defenses.
Injection Surfaces
CoreFrom SQL/NoSQL to OS command and server-side template injection, Alex validates input handling and executes safe exploitation chains.
File, SSRF, and Deserialization
CoreAbuse upload pipelines, pivot with SSRF into cloud metadata, and break unsafe serializers while proposing hardened parsing paths.
Client-Side & Real-Time
CoreDOM and stored XSS, clickjacking, and WebSocket message tampering remain staples. Alex keeps browser exploits disciplined and documented.
Transport & Caching Edge Cases
CoreHTTP/1.1 and HTTP/2 quirks, smuggling, and cache poisoning scenarios help Alex uncover desync flaws before red-team rivals do.
Curriculum Roadmap
Upcoming modules to round out eWPTv2 coverage while keeping Alex's story arc.
SSTI & Template Engines
PlannedExploit Jinja2/Handlebars contexts, pivot to RCE, and recommend sandboxing + allowlists.
SSRF & Cloud Metadata
PlannedTarget internal services, metadata endpoints, and hardened outbound egress paths.
GraphQL Deep Dive
In designSchema reconnaissance, query batching abuse, and authorization bypass testing.
JWT/OAuth Validation
In designkid header confusion, algorithm downgrade, nonce/state integrity, and token expiry hygiene.
Request Smuggling Labs
PlannedPractical CL.TE/TE.CL chains with cache poisoning follow-ups and mitigation patterns.