Practise in isolation. Break things, learn, repeat.
A library of step-by-step technical labs and walkthroughs. Clear explanations, real commands and real-world context — every guide assumes hardware you own, and you never touch what isn't yours.
Build a home lab on one laptop.
You do not need a dedicated server, a managed switch, or ESXi to start practising security. 16 GB of RAM and a free hypervisor cover 90% of the road.
Add a vulnerable target to your lab.
A lab with nothing to attack is just a VM. DVWA in Docker gives you a legal, disposable target in one command.
A SIEM you can actually read.
Install Wazuh single-node on the lab from Lab 01, connect your first agent, and read three real detections from the blue-team seat.
Put a firewall in the middle.
Add pfSense, split the lab into isolated segments, write the minimum rules, and prove the walls hold with nmap against your own hosts.
See the packets, not just the logs.
Install Suricata, enable the ET Open ruleset, generate traffic against your own DVWA, and read the alerts it produces.
What is Metasploitable 2, and why every lab has one.
A safe, legal, deliberately broken Linux box almost every pentesting course points you toward. What's inside it, and why it still matters.
Metasploitable 2 walkthrough: step by step.
Discover it, enumerate it, exploit a real backdoor, and get root — entirely on your own isolated network. No CTF flag, just the mechanics.