Wazuh: CVE-2026-25769

Learn how attackers exploit CVE-2026-25769 in Wazuh to gain RCE.

GeoServer: CVE-2025-58360

Explore the GeoServer XXE vulnerability CVE-2025-58360 from exploit to defense.

n8n: CVE-2025-68613

Learn how adversaries can exploit the CVE-2025-68613 vulnerability in n8n.

React2Shell: CVE-2025-55182

Explore the CVE-2025-55182 vulnerability in React server components.

Django: CVE-2025-64459

Explore and learn about the Django CVE-2025-64459 vulnerability.

Roundcube: CVE-2025-49113

Exploit CVE-2025-49113 in a lab environment.

AD: BadSuccessor

Use the BadSuccessor attack for privilege escalation in an Active Directory environment.

Erlang/OTP SSH: CVE-2025-32433

Learn about and exploit Erlang/OTP SSH CVE-2025-32433 in a lab setup.

SimpleHelp: CVE-2024-57727

Learn how attackers can exploit CVE-2024-57727 and how to detect that.

Next.js: CVE-2025-29927

Explore an authorisation bypass vulnerability in Next.js.

Tomcat: CVE-2024-50379

Explore and learn about the Tomcat CVE-2024-50379 vulnerability.

Bypass Really Simple Security

Learn how to exploit a WordPress website using CVE-2024-10924 and understand various mitigation techniques.

Supply Chain Attack: Lottie

Learn about supply chain attacks and their various mitigation techniques.

PaperCut: CVE-2023-27350

Authorisation bypass (CVE-2023-27350) in PaperCut Print Management software leading to remote code execution.

Joomify: CVE-2023-23752

Learn how to exploit a Joomla CMS using CVE-2023-23752 and understand various mitigation techniques.

Moniker Link (CVE-2024-21413)

Leak user's credentials using CVE-2024-21413 to bypass Outlook's Protected View.

GitLab CVE-2023-7028

Learn to exploit a GitLab instance using CVE-2023-7028 and understand various mitigation techniques.

Confluence CVE-2023-22515

Exploit CVE-2023-22515 to get admin access to Confluence Server and Data Center editions.

Looney Tunables

CVE-2023-4911: That's all Sec-Folks!

CVE-2023-38408

Learn how to move laterally abusing libraries' side effects in Ubuntu (CVE-2023-38408).

Outlook NTLM Leak

Leak password hashes from a user by sending them an email by abusing CVE-2023-23397.

LocalPotato

Learn how to elevate your privileges on Windows using LocalPotato (CVE-2023-21746).

Follina MSDT

A walkthrough on the CVE-2022-30190, the MSDT service, exploitation of the service vulnerability, and consequent detection techniques and remediation processes

Solar, exploiting log4j

Explore CVE-2021-44228, a vulnerability in log4j affecting almost all software under the sun.

Atlassian CVE-2022-26134

An interactive lab showcasing the Confluence Server and Data Center un-authenticated RCE vulnerability.

CVE-2022-26923

Walkthrough on the exploitation of CVE-2022-26923, a vulnerability in AD Certificate Services.

Spring4Shell: CVE-2022-22965

Interactive lab for exploiting Spring4Shell (CVE-2022-22965) in the Java Spring Framework

Dirty Pipe: CVE-2022-0847

Interactive lab for exploiting Dirty Pipe (CVE-2022-0847) in the Linux Kernel

Pwnkit: CVE-2021-4034

Interactive lab for exploiting and remediating Pwnkit (CVE-2021-4034) in the Polkit package

PrintNightmare

Learn about the vulnerability known as PrintNightmare (CVE-2021-1675) and (CVE-2021-34527).

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

What are modules?

A learning pathway is made up of modules, and a module is made of bite-sized rooms (think of a room like a mini security lab).

Hierarchical diagram showing how learning pathways contain modules, which contain individual rooms.

Recent Threats