Home / Labs

๐Ÿงช Security Labs

Hands-on security challenges and walkthrough labs covering web exploitation, network security, privilege escalation, and more. Practice in safe, isolated environments.

Lab Environment Setup: All labs are designed for local/virtual environments like DVWA, PortSwigger Lab, HackTheBox, or VulnHub. Never test on production systems without authorization.

๐ŸŒ Web Security Labs

Lab 1: SQL Injection Fundamentals

Beginner 45 minutes

Learn basic SQL injection concepts: error-based detection, authentication bypass, and UNION SELECT enumeration.

SQL Injection MySQL Authentication
Start Lab

Lab 2: XSS Exploitation Paths

Intermediate 60 minutes

Explore stored, reflected, and DOM-based XSS. Build cookie stealing and keylogger payloads.

XSS JavaScript Session Hijacking
Start Lab

Lab 3: SSRF to Cloud Compromise

Advanced 90 minutes

Exploit SSRF to access cloud metadata services and extract IAM credentials for AWS/GCP compromise.

SSRF AWS Cloud Security
Start Lab

Lab 4: IDOR Vulnerability Hunting

Beginner 45 minutes

Practice identifying and exploiting Insecure Direct Object Reference vulnerabilities in web applications.

IDOR Authorization API Security
Start Lab

Lab 5: File Upload Bypass Techniques

Intermediate 60 minutes

Bypass file upload restrictions using double extensions, polyglot files, and content-type manipulation.

File Upload WAF Bypass RCE
Start Lab

Lab 6: Command Injection & Chaining

Advanced 75 minutes

Exploit OS command injection vulnerabilities, chain commands, and establish reverse shells.

Command Injection Linux Reverse Shell
Start Lab

๐ŸŒ Network Security Labs

Lab 7: Network Enumeration Mastery

Beginner 60 minutes

Master network reconnaissance with nmap, masscan, and enumeration techniques.

nmap Enumeration Reconnaissance
Start Lab

Lab 8: SMB Protocol Exploitation

Advanced 90 minutes

Exploit SMB vulnerabilities, perform relay attacks, and extract credentials via Responder.

SMB NTLM Relay Credential Theft
Start Lab

Lab 9: DNS Tunneling Techniques

Expert 120 minutes

Establish covert C2 channels using DNS tunneling through firewall restrictions.

DNS Tunneling C2
Start Lab

๐Ÿ”“ Privilege Escalation Labs

Lab 10: Linux Privilege Escalation

Intermediate 90 minutes

Escalate from regular user to root using misconfigured SUID binaries, sudo exploits, and kernel vulnerabilities.

Linux SUID Sudo
Start Lab

Lab 11: Windows Privilege Escalation

Intermediate 90 minutes

Windows privesc techniques including DLL hijacking, service exploits, and token manipulation.

Windows Services Tokens
Start Lab

Lab 12: Active Directory Exploitation

Expert 180 minutes

Full AD compromise: Kerberoasting, pass-the-hash, Golden Ticket, and DCSync attacks.

Active Directory Kerberos Domain Admin
Start Lab

๐Ÿด CTF-Style Challenges

  • Challenge: Hidden Flag in SQL Injection

    Extract a flag hidden in the database using SQL injection techniques.

  • Challenge: XSS Cookie Collector

    Find and exploit an XSS vulnerability to steal admin cookies.

  • Challenge: SSRF Metadata Escape

    Use SSRF to escape a restricted network and access cloud metadata.

  • Challenge: File Inclusion to RCE

    Chain LFI with log poisoning to achieve remote code execution.

  • Challenge: JWT Algorithm Confusion

    Bypass JWT authentication using algorithm confusion attack.

๐Ÿ“š Lab Resources & Tools

Vulnerable Applications

Download and install vulnerable applications for practice:

  • DVWA (Damn Vulnerable Web App)
  • OWASP WebGoat
  • PortSwigger Web Academy
  • juice-shop
  • VulnHub VMs

Essential Tools

Tools required for lab completion:

  • Burp Suite Professional
  • OWASP ZAP
  • sqlmap
  • nmap
  • Metasploit Framework

Learning Resources

Supplementary materials:

  • PortSwigger Web Security Academy
  • OWASP Top 10
  • PTES (Penetration Testing Execution Standard)
  • MITRE ATT&CK Framework
Back to Home