Home Commands Tools Labs Defense Center Learning Paths Quizzes Challenges CTF Hubs Premium Log in

Safe practice

Simulation labs

Guided exercises with target clues, hints, simulated terminal output, points, and resettable practice. Nothing runs against the server or external targets.

Open free-play environment Browse CTF hubs
defensive Web Guided exercise Intermediate Premium

Nuclei Template Signal Triage

Simulate template-driven web vulnerability triage.

Nuclei / Vulnerability Management Open
defensive Network Guided exercise Advanced Premium

Active Directory Attack Path Review

Interpret a simulated AD graph finding.

BloodHound / Identity Security Open
defensive Cloud Guided exercise Intermediate Free

AWS S3 Exposure Audit

Simulate cloud storage exposure review.

AWS CLI / Cloud Security Open
defensive Cloud Guided exercise Intermediate Premium

AWS IAM Privilege Risk With CloudSplaining

Review simulated IAM excessive privilege output.

CloudSplaining / Cloud Security Open
defensive Cloud Guided exercise Intermediate Premium

Prowler Cloud Posture Triage

Practice interpreting cloud posture findings.

Prowler / Cloud Security Open
defensive Cloud Guided exercise Advanced Premium

ScoutSuite Multi-Cloud Review

Simulate multi-cloud audit output review.

ScoutSuite / Cloud Security Open
defensive Cloud Guided exercise Intermediate Premium

Kubernetes RBAC Review

Review simulated Kubernetes access control.

Kubernetes / Container Security Open
defensive App Guided exercise Beginner Free

Container Image Vulnerability Scan

Interpret simulated container scan results.

Trivy / Vulnerability Management Open
defensive App Guided exercise Intermediate Free

Threat Hunting Encoded PowerShell

Run a simulated SOC hunt for encoded PowerShell.

Splunk / Threat Hunting Open
defensive App Guided exercise Intermediate Free

Wazuh File Integrity Investigation

Triage simulated file integrity monitoring alerts.

Wazuh / Incident Response Open
defensive SOC free practice Intermediate Free

Open SOC Analyst Console

Free-play simulated SOC workspace with live-style alerts, SIEM queries, triage, hunting, and case practice.

Splunk / Threat Hunting Open
defensive Guided exercise Intermediate Premium

Reading Tcpdump Output

Practice requesting a short packet capture and reading fake output.

Tcpdump / Incident Response Open