Safe labs

Practice the attack without running the attack.

Each lab uses a static simulated trace so developers can learn the pattern without exposing a real repo or executing untrusted code.

Install HOL GuardProtect a team

Safe labs

Practice attack patterns with static simulations. Nothing dangerous executes.

prompt-injection

Prompt injection replay

See how hidden text tries to override your instructions.

Open guide

mcp-tool-poisoning

MCP tool poisoning demo

Inspect a fake MCP tool description before it can mislead an agent.

Open guide

secret-exfiltration

Secret exfiltration drill

Practice spotting a secret read request without exposing real secrets.

Open guide

supply-chain

Supply-chain install check

Walk through a simulated install that tries to change agent trust.

Open guide