Minute learning resources
The Web Security Academy is a free online training center for web applications safety. It includes the content of the internal research team of Portswigger, experienced academics and our chef Swig Dafydd Stuttard – Author of Web application pirate manual.
Unlike a manual, the academy is constantly updated. It also includes interactive laboratories where you can put what you learn from the test. If you want to improve your knowledge of hacking, or if you want to become a Bug bonus hunter or a Penter, you are in the right place.
Satisfy your curiosity – in complete safety and legally
We manufacture Burp Suite – The main software for web security tests. And we love our users (because it is the people who make burp what it is). This is why we created the Web Security Academy. This is also why the academy is 100% free.
The Security Academy web exists to help anyone who wishes to know more about web safety in a safe and legal manner. You can access everything (free of charge) and follow your progress in Create an account. Please see the sidebar for more information.
Hack like pros
Web safety and ethical hacking are lucrative careers in which to get started, but they are often considered as dark and mysterious arts. The Web Security Academy crushes this stereotype. We put the latest knowledge on the safety of applications available to everyone.
Some of our interactive laboratories will force you, by their nature, to use tools to resolve them. But don't fear. If you do not have access to Burp Suite Professional, then Burp Suite Community Edition allows you to experiment for free. Download Burp Suite here.
Web security training designed for humans, not robots
Let's face it, part of the online training on web applications can be a bit dull. And isn't hacking supposed to be fun? We certainly think. This is why we have adopted an entirely interactive approach with regard to the design of our web security training.
Although each subject of the academy is fully explained in the text, many also include video content to summarize the key points. Then there are interactive laboratories – realistic puzzles designed to test your skills as a pirate. These are transferred directly to real cybersecurity situations.
Follow your progress, win a cool swag
Although we have designed the laboratories to be fun, that does not necessarily mean that they are easy (because where would be fun, right?). We also like a little competition here at the Web Security Academy – and that's how we had the idea of Hall of Fame.
Whenever we publish a new laboratory, we will announce it on Twitter. The first users of the web security academy to resolve the laboratory will win Burp Suite SWAG – as well as their name in the renowned temple for all. Of course, you can remain anonymous if you prefer.
At Learnopoly, Finn has championed a mission to deliver unbiased, in-depth reviews of online courses that empower learners to make well-informed decisions. With over a decade of experience in financial services, he has honed his expertise in strategic partnerships and business development, cultivating both a sharp analytical perspective and a collaborative spirit. A lifelong learner, Finn’s commitment to creating a trusted guide for online education was ignited by a frustrating encounter with biased course reviews.