echo <text>
Print text or write lab notes with >.
Identity, sudo boundaries, SSH hardening, firewall rules, and review notes.
Practice security habits: identity, logs, firewall rules, and simulated sudo.
Core 02 Security administration SSH hardeningRead training SSH settings and confirm safer defaults without connecting anywhere.
Core 03 Security administration Firewall and incident reviewInspect firewall state, add a simulated rule, and write a short incident note.
Core Checkpoint 04 Security administration Auth log reviewSearch training SSH activity for accepted and denied attempts.
Admin 05 Security administration Firewall baselineInspect and update simulated firewall rules with caution.
Admin 06 Security administration SSH config reviewVerify key SSH hardening settings.
Admin 07 Security administration Least privilege reviewInspect identity and simulated sudo boundaries.
Admin 08 Security administration Incident noteWrite a short lab incident note from log evidence.
Admin 09 Security administration Exposed servicesCompare listeners, firewall rules, and nginx config.
Admin 10 Security administration Web hardeningInspect training nginx API blocking and CSP headers.
Admin 11 Security administration Script trust reviewHash and compare a training deployment script before trusting it.
Admin 12 Security administration Log retention reviewReview log size and line counts before cleanup decisions.
Admin 13 Security administration Account hygieneReview training accounts and root presence safely.
Admin 14 Security administration Final incident reviewPull together logs, firewall state, and a final review note.
Admin Checkpoint 15 Security administration SSH dry runInspect SSH client configuration without connecting.
Admin 16 Security administration SSH key fingerprintRead a simulated key fingerprint.
Admin 17 Security administration SCP dry runUnderstand copy shape without network transfer.
Admin 18 Security administration Package security reviewInspect package metadata during a security review.
Advanced 19 Security administration Auth config checkpointReview SSH, identity, firewall, and notes.
Capstone Checkpoint 20 Security administration Hardening summarySummarize posture from logs, config, and service exposure.
Capstone Checkpoint 21 Security administration SSH hardening deep reviewReview SSH config, key mode, and host identity.
Advanced 22 Security administration Firewall listener reconcileMatch exposed ports to firewall policy.
Advanced 23 Security administration Known host key contextReview SSH host identity without connecting.
Advanced 24 Security administration Sudo boundary reviewConfirm sudo is limited to safe inspection.
Advanced 25 Security administration Account inventory reviewInventory users, groups, and service accounts.
Advanced 26 Security administration Package security deep reviewConnect package state to recent package logs.
Advanced Checkpoint 27 Security administration Log redaction noteCapture evidence without copying more than needed.
Advanced 28 Security administration Hardening header reviewInspect web security header config and static API blocking.
Advanced 29 Security administration Service exposure noteWrite a short exposure review from listener evidence.
Advanced 30 Security administration Security evidence checkpointTie identity, SSH, firewall, and logs into a review.
Capstone Checkpoint 31 Security administration SSH client and server policyCompare resolved client settings with server authentication policy.
Admin 32 Security administration Known-hosts hygieneInspect stored host identities alongside a key fingerprint.
Admin 33 Security administration Exposed service inventoryCompare listeners, firewall policy, and enabled service units.
Advanced 34 Security administration Privileged boundary reviewRead the simulated sudo boundary and verify the target service action is inspection-only.
Advanced 35 Security administration Security administration bridgeCheckpoint SSH policy, identity, listeners, and firewall evidence.
Capstone CheckpointCreate a free account to sync completed lessons, XP, streaks, course status, and your next lesson across sessions.
Checking account status...
Progress sync is idle.
Progress sync stores completion IDs, scores, streaks, badges, and game settings. Terminal contents, editor snippets, lab scratch, email, and real names are never published on leaderboards or share cards.
echo <text>
Print text or write lab notes with >.
cat <file>
Print text file contents.
grep [-i] <text> <file>
Find literal text inside a file.
cut -d <char> -f <n>
Extract delimited fields from text.
tee <file>
Write piped text to a lab file and keep it on screen.
wc [-l] <file>
Count lines, words, and characters.
sha256sum <file>
Print a deterministic training checksum.
find [path] [-name text]
Search lab filesystem paths.
stat <path>
Show lab file details.
whoami|id|groups
Inspect the learner account.
systemctl status <service>
Inspect simulated service status.
journalctl -u <service>
Read simulated service journal entries.
nginx -t
Validate training nginx configuration.
ss|ip
Inspect simulated sockets and addresses.
apt|dpkg|brew
Inspect simulated Linux and macOS package metadata.
ssh|scp|ssh-keygen
Practice SSH inspection and dry-run transfer shapes without network access.
ufw status
Inspect simulated firewall rules.