Safe labs
Practice the attack without running the attack.
Each lab uses a static simulated trace so developers can learn the pattern without exposing a real repo or executing untrusted code.
Safe labs
Practice attack patterns with static simulations. Nothing dangerous executes.
prompt-injection
Prompt injection replay
See how hidden text tries to override your instructions.
Open guidemcp-tool-poisoning
MCP tool poisoning demo
Inspect a fake MCP tool description before it can mislead an agent.
Open guidesecret-exfiltration
Secret exfiltration drill
Practice spotting a secret read request without exposing real secrets.
Open guidesupply-chain
Supply-chain install check
Walk through a simulated install that tries to change agent trust.
Open guide