Changelog
Follow up on the latest improvements and updates.
RSS
new
Labs
Enterprise
Offensive
Step into command injection exploitation with the first Vulnlab Machine migrated to HTB
We’re excited to announce the start of the Vulnlab migration on both HTB Labs and Enterprise Platform, with new hands-on scenarios rolling out every week.
Down,
our first release, guides you through exploiting a command injection vulnerability in a custom web app and analyzing an open-source password manager.Key learning outcomes:
- Understand common command injection flaws
- Learn how to analyze and approach unknown applications
A new collection covering all Vulnlab Machines will be available on each platform, wrapping up the content as it launches.
The next Machine is coming
June 19th
, and then two new Machines every week!Don't have access to HTB Enterprise Platform?
Start a 14-day business trial FOR FREE →
Want to add new skills to your utility kit?
Login to HTB Labs today →
new
Academy
Enterprise
Offensive
Explore how malware targets vulnerabilities in Android apps with a new course
Android is the most popular mobile OS and a major target for malware. Knowing how to spot and understand malicious apps is key in cybersecurity.
In this Module, you’ll learn how to:
- Spot common types of Android malware
- See how malware misuses system permissions
- Understand how threats hide from detection
- Analyze advanced attacks like fake virtual machines
- Detect malware stealing 2FA tokens
Don't have access to HTB Enterprise Platform?
Start a 14-day business trial FOR FREE →
Ready for your skills to do the talking at your next interview?
Head to HTB Academy and start learning today →
new
Labs
Enterprise
Defensive
Investigate blockchain-based breaches with a new defensive scenario
Blockchain breaches are becoming more common and harder to trace.
In this scenario, you’ll investigate a cyber attack on ReachKart, an Ethereum-based e-commerce site using a mirrored production environment. Seller wallets are missing Ether, and it’s up to you to uncover how it happened.
You’ll learn how to:
- Investigate incidents on Ethereum-based systems
- Identify compromised wallets and stolen funds
- Analyze blockchain-specific misconfigurations and attack vectors
- Apply DFIR techniques to Web3 environments
Don't have access to HTB Enterprise Platform?
Start a 14-day business trial FOR FREE →
Want to add new defensive skills to your utility kit?
Login to HTB Labs today →
new
improved
Enterprise
Features
Stay on top of expiring seats in User Management
We’ve rolled out two valuable updates that give admins clear visibility of seat expirations at the license level, making it easy to spot expiring seats, prioritize seat rotations, and track access across Spaces more precisely.
Here’s what’s new:
- Seat expiration date available per user
Just expand the user entry in User Management to view all assigned licenses and Spaces, along with how many days remain.
- New filter option "Seat expires in"
Under the “Other” section in filters, you’ll now find a new option to select a date range and instantly view all users with seats expiring in that timeframe.
Don't have access to HTB Enterprise Platform?
Start a 14-day business trial FOR FREE →
Our revamped Tracks are designed to gear you up for high-stakes Pro Lab environments such as
Offshore, Dante,
and Zephyr
.Develop invaluable skills that will prepare you to tackle each Pro Lab but also elevate your overall security expertise.
Are you ready to take your skills to the next level?
improved
Labs
Battlegrounds is being retired on HTB Labs
The arena served its purpose, and now it’s time to pull the plug.
We’re officially retiring Battlegrounds on
June 25th
as we shift our focus to new and improved ways to hack, compete, and level up together. Thanks to everyone who battled it out, leveled up, and made the arena unforgettable.
new
Academy
Enterprise
Offensive
Detect and mitigate AI attacks with a new course
Dive into the world of large language model (LLM) output vulnerabilities caused by improper handling and insecure application design.
The
LLM Output Attacks
Module, part of the AI Red Teamer job-role path, covers:- Understanding different LLM output attack vectors
- Exploring abuse scenarios like hate speech campaigns and misinformation generation
- Techniques for detecting and mitigating malicious LLM outputs
Don't have access to HTB Enterprise Platform?
Start a 14-day business trial FOR FREE →
Ready for your skills to do the talking at your next interview?
Head to HTB Academy and start learning today →
new
Labs
Enterprise
Defensive
Build foundational malware analysis skills with a new defensive scenario
A suspicious, unmarked binary just landed on your desk. Is it malware or harmless code? Your mission is to reverse-engineer it, analyze its behavior, and find out.
What you’ll learn:
- Reverse engineering: Dig into the binary to understand what it’s designed to do
- Dynamic malware analysis: Watch the program’s behavior in real time to identify its impact and functionality
- Static malware analysis: Examine the code without execution to uncover hidden intentions and malicious payloads
Don't have access to HTB Enterprise Platform?
Start a 14-day business trial FOR FREE →
Want to add new defensive skills to your utility kit?
Login to HTB Labs today →
improved
Enterprise
Features
Reporting got a major speed upgrade on HTB Enterprise Platform
Administrators can now access team performance data with near-real-time updates.
- See today’s activity (yes, you can now select today’s date!)
- Make decisions faster with up-to-the-minute insights
- Track users’ content completions without delays
Don't have access to HTB Enterprise Platform?
Start a 14-day business trial FOR FREE →
new
Labs
Enterprise
More hands-on practice with Vulnlab Labs coming to HTB
We’re expanding our content arsenal with Vulnlab’s realistic cybersecurity labs, including standalone Machines, multi-step Active Directory attack scenarios, and advanced red-team simulations — now being integrated directly into the HTB Enterprise Platform and HTB Labs!
Here’s what’s coming:
- 42 Machines → HTB Machines (Labs) & Dedicated Labs (Enterprise)
- 16 Chains → HTB Mini Pro Labs (Labs) & Mini Professional Labs (Enterprise)
- 4 Red Team Labs → HTB Pro Labs (Labs) & Professional Labs (Enterprise)
What you need to know about Vulnlab access:
- VIP+ plan: Access to all Machines
- Pro Labs bundle: Access to Chains and Red Team Labs
- Enterprise: Machines on all plans, Chains & Red Team Labs on Professional pricing plan (and above)
📅 Stay tuned as the first drop lands this June with
two (2) new Machines released every week
.Don't have access to HTB Enterprise Platform?
Start a 14-day business trial FOR FREE →
Load More
→