Learn Blue Team Defense Through Real-World Attack Scenarios
Hands-on challenges covering SSH attacks, web shells, cryptominers, privilege escalation, data exfiltration, rootkits, network attacks, container escapes, and supply chain compromises.
Click any challenge to start learning. All challenges are available immediately.
Analyze authentication logs to detect and respond to SSH brute-force attacks. Learn to identify failed login patterns and automated attack signatures.
Investigate suspicious file uploads and web server access logs. Detect malicious PHP web shells and understand post-exploitation techniques.
Identify cryptocurrency mining malware through process analysis and resource monitoring. Learn to detect XMRig and hidden mining operations.
Analyze sudo logs and SUID binaries to detect privilege escalation attempts. Understand how attackers gain root access on Linux systems.
Track sensitive data theft through network logs and file access patterns. Learn to detect database dumps, credential theft, and data staging.
Investigate kernel-level malware and rootkit infections. Learn to detect process hiding, syscall hooking, and kernel module manipulation.
Analyze firewall logs to detect port scanning, DDoS attempts, and network-based attacks. Learn to identify nmap signatures and fail2ban actions.
Detect Docker/Kubernetes container breakout attempts. Learn to identify privileged containers, capability abuse, and namespace escapes.
Investigate malicious package installations and dependency attacks. Learn to detect typosquatting, unsigned packages, and malicious repositories.
No internet required. No data collection. All challenges run entirely in your browser.
Start with beginner challenges and progress to advanced rootkit and container security.
Synthetic logs based on actual attack patterns and MITRE ATT&CK techniques.
Built-in terminal, tooltips, hints, and detailed explanations for each challenge.
Earn experience points and unlock badges as you complete challenges.
No subscriptions, no paywalls. Open-source and community-driven.