Skip to content
SecForge
Lab · Written walkthroughs

Practise in isolation. Break things, learn, repeat.

A library of step-by-step technical labs and walkthroughs. Clear explanations, real commands and real-world context — every guide assumes hardware you own, and you never touch what isn't yours.

5
Written labs
1
Blue-team series
100%
Reproducible
SERIES · LAB 01–05
Build a home lab on one laptop — illustration
LAB 01 · GETTING STARTED
01/07
May 18, 20268 min read

You do not need a dedicated server, a managed switch, or ESXi to start practising security. 16 GB of RAM and a free hypervisor cover 90% of the road.

Add a vulnerable target to your lab: DVWA in Docker — illustration
LAB 02 · WALKTHROUGH
02/07
July 5, 202610 min read

A lab with nothing to attack is just a VM. DVWA in Docker gives you a legal, disposable target in one command.

Lab 03 — a SIEM you can actually read. — illustration
LAB 03 · WALKTHROUGH
03/07
June 8, 202610 min read

Install Wazuh single-node on the lab from Lab 01, connect your first agent, and read three real detections from the blue-team seat.

Lab 04 — put a firewall in the middle. — illustration
LAB 04 · WALKTHROUGH
04/07
June 20, 202610 min read

Add pfSense, split the lab into isolated segments, write the minimum rules, and prove the walls hold with nmap against your own hosts.

Lab 05 — see the packets, not just the logs. — illustration
LAB 05 · WALKTHROUGH
05/07
June 30, 20269 min read

Install Suricata, enable the ET Open ruleset, generate traffic against your own DVWA, and read the alerts it produces.

What is Metasploitable 2 — illustration
TARGETS · GETTING STARTED
06/07
July 08, 20268 min read

A safe, legal, deliberately broken Linux box almost every pentesting course points you toward. What's inside it, and why it still matters.

Metasploitable 2 walkthrough — illustration
METASPLOITABLE · WALKTHROUGH
07/07
July 08, 202614 min read

Discover it, enumerate it, exploit a real backdoor, and get root — entirely on your own isolated network. No CTF flag, just the mechanics.