CVE Labs

145+ CVE Labs provide the user with environments containing attacker machine and target machine running a recently discovered real-world CVE (Common Vulnerabilities and Exposures listed on MITRE.org) to practice the exploitation. Aspiring researchers and seasoned experts can leverage these labs to enhance their understanding of CVE, analyze the impact, and devise effective mitigation strategies. The labs also come with a step-by-step exploitation manual with screenshots. Currently, the library contains CVEs reported in popular applications like GitLab, MLFlow, Apache Kafka, WordPress, and many more. Target Audience: Security Researchers, Red/Blue Teamers, Penetration Testers and Incident Responders

Gitlab (CVE-2023-2825)

Spring4Shell (CVE-2022-22965)

Apache Spark Shell Command Injection (CVE-2022-33891)

Dirty Pipe (CVE-2022-0847)

PrintNightmare (CVE-2021-34527)