Themes
Seasons
Holidays
๐ŸŽจ All Themes

Hands-on Labs

Deploy-and-learn security labs with complete infrastructure-as-code and detection code. Build real infrastructure, understand real threats.

Security Labs

Practical, hands-on labs that deploy real infrastructure. Each lab includes infrastructure-as-code, working examples, and step-by-step guidance.

Available Labs

LLM Prompt Injection Firewall

Deploy a serverless firewall that detects and blocks prompt injection attacks before they reach your LLM backend. Uses AWS Lambda, API Gateway, and DynamoDB.

Topics: AI Security, Prompt Injection, OWASP LLM Top 10, Serverless, Terraform

Zero Standing Privilege Gateway for Azure

Deploy a ZSP gateway that grants temporary Azure permissions to AI agents, automation workflows, and service principals. Uses Azure Functions, Bicep, and PowerShell.

Topics: Azure, Zero Trust, Non-Human Identity, ZSP, Privileged Access, AI Agents, Bicep

Agent 365 Defender Playbook

Validate Defender and Sentinel detections for AI agent workload attack patterns ahead of Microsoft Agent 365 GA. Uses Azure AI Services, Azure AI Foundry, Defender for AI Services, and Sentinel analytics rules.

Topics: Agent 365, Defender for AI, Azure AI Foundry, Sentinel, Prompt Injection, AI Agents

Entra Device Code Phishing Detection

Hunt and detect device code phishing with Sentinel and Defender XDR. Includes KQL for 50199 -> success, suspicious device-code clients, URL-click correlation, mailbox abuse, and device registration after token issuance.

Topics: Entra ID, Device Code Phishing, Defender XDR, Sentinel, OAuth, Conditional Access

Keyboard Shortcuts

Navigation
Ctrl + K Open search / command palette
? Show this help
ESC Close dialogs
Actions
G then H Go to Home
G then B Go to Blog
G then A Go to About
G then C Go to Contact
G then T Go to Threat Feeds
G then G Go to Glossary
Shift + C Copy page URL
Easter Eggs
โ†‘โ†‘โ†“โ†“โ†โ†’โ†โ†’BA Konami code
Click cat 9ร— Nine lives activation
Click logo 9ร— Cat Burglar mode
Press ? to toggle this help