Labs hub
Lab categories

All Lab Categories

Browse hands-on cybersecurity labs by domain — from fundamentals and Linux hardening to SOC workflows, cloud security, and compliance evidence.

Browse full lab catalogBack to labs hub

All lab categories

Each category groups guided hands-on exercises for a specific security domain.

Cybersecurity Fundamentals Labs

CIA triad, threats, authentication, and defensive thinking — hands-on

Example labs

  • Identify Common Security Threats in a Scenario
  • CIA Triad Practical Case Study
  • Password Security and Authentication Lab
  • Basic Risk Assessment Exercise

Best for: Beginners, students, career starters

Explore Fundamental Labs

Linux Security Labs

SSH hardening, permissions, auditd, firewalls, and compliance checks

Example labs

  • Harden SSH Configuration on Linux
  • Analyze Failed Login Attempts from Auth Logs
  • Configure UFW Firewall Rules
  • Review Sudo Privileges and User Access

Best for: Linux admins, SOC analysts, DevOps engineers, security engineers

Explore Linux Security Labs

SOC Analyst Labs

Alert triage, log analysis, SIEM workflows, and incident investigation

Example labs

  • Investigate Suspicious SSH Login Attempts
  • Detect Brute-Force Activity from Logs
  • Analyze Windows Failed Login Events
  • Review Wazuh Security Alerts

Best for: SOC analysts, blue team learners, incident response beginners

Explore SOC Labs

Web Security Labs

OWASP Top 10, XSS, SQL injection, access control, and secure headers

Example labs

  • Test Reflected XSS in a Demo Application
  • Understand SQL Injection with Safe Practice Inputs
  • Analyze Broken Access Control Scenario
  • Check Missing Security Headers

Best for: Web developers, ethical hacking learners, application security beginners

Explore Web Security Labs

Ethical Hacking Labs

Recon, enumeration, vulnerability analysis, and responsible reporting

Example labs

  • Basic Reconnaissance Workflow Lab
  • Port Scanning and Service Enumeration Lab
  • Vulnerability Identification Exercise
  • Web Directory Enumeration Practice

Best for: Ethical hacking learners, penetration testing beginners, security students

All labs must be performed only in authorized environments, sandbox systems, or intentionally vulnerable practice applications.

Explore Ethical Hacking Labs

Network Security Labs

Firewalls, VPNs, DNS, packet analysis, and secure network design

Example labs

  • Analyze Network Traffic with Packet Capture
  • Understand Firewall Allow/Deny Rules
  • Configure Basic Network Segmentation
  • Investigate Suspicious DNS Requests

Best for: Network admins, SOC analysts, system admins, security engineers

Explore Network Security Labs

Cloud Security Labs

IAM, storage exposure, security groups, logging, and misconfigurations

Example labs

  • Review IAM Permission Misconfiguration
  • Analyze Public Storage Bucket Risk
  • Configure Cloud Security Group Rules
  • Review Cloud Audit Logs

Best for: Cloud engineers, DevOps engineers, cloud security learners

Explore Cloud Security Labs

DevSecOps Labs

CI/CD security, secrets scanning, containers, and pipeline hardening

Example labs

  • Detect Hardcoded Secrets in Code
  • Scan Dependencies for Known Vulnerabilities
  • Review Dockerfile Security Issues
  • Run Container Image Security Checks

Best for: Developers, DevOps engineers, platform engineers, DevSecOps learners

Explore DevSecOps Labs

Compliance & Audit Labs

SOC 2, ISO 27001, CIS controls, and audit-ready evidence

Example labs

  • Prepare SOC 2 Backup Evidence
  • Create Access Review Evidence
  • Validate Linux Password Policy
  • Prepare Firewall Rule Review Evidence

Best for: IT teams, GRC analysts, compliance learners, security managers

Explore Compliance Labs

Incident Response Labs

Detection, containment, investigation, evidence, and recovery

Example labs

  • Investigate a Suspicious Login Incident
  • Create an Incident Timeline
  • Collect Initial Evidence from Linux Logs
  • Classify Incident Severity

Best for: SOC teams, blue team learners, IT admins, incident response beginners

Explore Incident Response Labs

Threat Hunting Labs

Hypothesis-driven hunting, anomalies, IOCs, and proactive detection

Example labs

  • Hunt for Lateral Movement in Auth Logs
  • Identify Beaconing Behavior in Network Traffic
  • Trace Suspicious PowerShell Activity
  • Validate Threat Intelligence IOCs

Best for: SOC analysts, threat hunters, blue team learners, detection engineers

Explore Threat Hunting Labs

Active Directory & Identity Security Labs

AD hardening, Kerberos, privileged access, and IAM misconfigurations

Example labs

  • Review Over-Privileged AD Group Membership
  • Analyze Kerberos Authentication Failures
  • Audit Service Account Permissions
  • Identify Weak Password Policy Gaps

Best for: Identity admins, SOC analysts, security engineers, enterprise IT teams

Explore Identity Security Labs