Practice production decisions before they are incidents
Scenario-based labs for Kubernetes, Zero Trust, API security, incident response, supply chain, AI infrastructure, Linux, and production debugging. Each lab turns a real engineering failure mode into a focused decision exercise.
Cloud native security simulators
Use these labs when you want to test the decisions behind RBAC, mTLS, runtime defense, supply-chain gates, threat modeling, and AI agent infrastructure.
~10 min | Incident-style lab
Kubernetes Security Simulator
Secure a production Kubernetes cluster across real scenarios: RBAC, NetworkPolicy, PodSecurity, secrets, image provenance, and audit decisions.
~12 min | Design exercise
Zero Trust Network Builder
Design service-to-service communication using SPIFFE workload identity, mTLS, attestation, federation, and short-lived SVIDs.
~12 min | Interactive drill
API Attack & Defense
Spot vulnerable endpoints before attackers do: JWT confusion, OAuth redirect bypasses, mass assignment, CORS, rate-limit spoofing, and webhook timing.
~15 min | Incident-style lab
Incident Response Simulator
Triage Falco alerts, stolen service-account tokens, crypto-miner indicators, container drift, suspicious audit logs, and eBPF detections.
~12 min | Interactive drill
Supply Chain Defense Simulator
Review signing, SBOM, SLSA, dependency confusion, GitHub Actions scope, and admission policy gaps before artifacts reach production.
~12 min | Interactive drill
Service Mesh Routing Game
Debug mTLS rollout flaws, AuthorizationPolicy scope, JWT validation, traffic shifting, retry storms, and Envoy diagnostics.
~15 min | Decision drill
Threat Modeling Challenge
Classify STRIDE threats, trust boundaries, attack trees, data sensitivity, mitigations, and risk priority across production systems.
~20 min | Design exercise
Secure Architecture Builder
Choose VPC boundaries, WAF placement, secret stores, CDN origin controls, IAM access, and multi-region resilience patterns.
~20 min | Interactive drill
Kubernetes Escape Room
Walk through compromise chains and pick the control that breaks each step: token recon, host access, exec abuse, and secret exposure.
~15 min | Interactive drill
AI Infrastructure Security Game
Identify prompt injection, model extraction, vector database leakage, agent tool scope, cost abuse, and MCP server identity gaps.
Engineering drills for production reflexes
Short practice loops for code review, Linux, incident debugging, language behavior, and career planning. These are lighter than the security labs, but still practical.
Hard | Interactive drill
DevOps Incident Scenarios
Diagnose crashing pods, latency spikes, broken rollouts, and secret rotation failures through realistic on-call prompts.
Medium | Decision drill
Linux Command Challenge
Use the right command to find files, inspect processes, read logs, test networking, and manage permissions.
Hard | Interactive drill
Spot the Bug
Train code-review judgment on subtle auth checks, off-by-one errors, race conditions, and broken assumptions.
Medium | Interactive drill
Guess the Output
Predict what tricky Python and JavaScript snippets print, then learn the language behavior behind the surprise.
Easy | Interactive drill
Code Typing Speed
Practice typing real code snippets with a clean speed test built for developers.
Easy | Interactive drill
Tech Salary Calculator
Estimate compensation for backend, platform, cloud-native security, and AI infrastructure roles by level and location.
Learn, decide, then keep the checklist close
The labs are designed to pair with the free courses and reference sheets. Read the concept, practice the failure mode, then keep the command sheet nearby when you ship.