// Virtual labs

Pick your range.

142 browser-based labs across pentest, red team, blue team, cloud, malware analysis and SOC operations.

9 labs · filtered

Sorted by relevance

Kali

Beginner

Kali Linux: Recon Fundamentals

Master nmap, gobuster and enumeration workflow against a vulnerable target network.

#nmap#gobuster#enumeration

90m · 250pts4,218 ops

Wind

Advanced

Active Directory: Kerberoasting & Lateral Movement

Compromise a multi-domain Windows forest using Kerberoasting, AS-REP roasting and DCSync.

#kerberos#impacket#mimikatz

180m · 900pts1,462 ops

Kali

Intermediate

AWS Cloud: IAM Privilege Escalation

Exploit misconfigured IAM policies and over-permissive S3 buckets in a live AWS sandbox.

#aws#iam#s3

120m · 600pts2,840 ops

Ubun

Intermediate

SOC Analyst: SIEM Triage with Splunk

Investigate a live intrusion using SPL queries, MITRE mappings and timeline analysis.

#splunk#siem#mitre

150m · 550pts3,105 ops

Wind

Critical

Malware Analysis: Banking Trojan Reversing

Reverse a polymorphic banking trojan in an isolated sandbox. Extract C2 IOCs and unpacking routine.

#reversing#ghidra#yara

240m · 1200pts712 ops

Kali

Beginner

Web Security: OWASP Top 10 Live Range

Chain SQLi, XSS, IDOR and SSRF against a deliberately vulnerable banking app.

#owasp#burp#sqli

120m · 400pts6,204 ops

Kali

Advanced

Azure: Entra ID Tenant Compromise

Phish, replay tokens and abuse conditional access gaps to take over an Entra ID tenant.

#azure#entra#phishing

180m · 850pts928 ops

Mixe

Advanced

Purple Team: Threat Emulation vs. Detections

Run Atomic Red Team techniques and tune detections in a connected SIEM. Iterate until you can see every move.

Windows 11: Local Privilege Escalation

Enumerate misconfigurations and unquoted service paths to escalate from low-priv user to SYSTEM.

#windows#privesc#winpeas

120m · 500pts1,985 ops