A high-profile breach has occurred, and all signs point to one of the most notorious APT groups — Lazarus Group.

Your mission? Analyze their tactics, uncover their techniques, and understand how they operate using the MITRE ATT&CK framework.

Through this hands-on defensive scenario, you’ll:

Login to HTB Labs today →

In collaboration with Google, we're arming you with the expertise to combat evolving AI threats and safeguard the digital landscape.

The fourth course in our AI Red Teamer job-role path expands on previous courses, diving deeper into AI security risks and real-world Prompt Injection attack techniques.

This new Academy Module will help you:

Start a 14-day business trial FOR FREE →

Head to HTB Academy and start learning today →

Hiring top cybersecurity talent just became easier with our redesigned job management dashboard. Talent Search admins can now manage job listings with more precision and clarity, track engagement, and boost visibility — all from one streamlined interface.

What’s new?

These enhancements allow admins to focus less on managing job posts and more on connecting with the best cybersecurity talent.

Start a 14-day business trial FOR FREE →

Ever found yourself deep in a course, uncovering key insights — only to forget them later?

Now, with dedicated note-taking widgets built into each HTB Academy Module, you can seamlessly capture, organize, and revisit key takeaways — all in one place.

Head to HTB Academy and start learning today →

Every Challenge cracked, every Machine owned, every Sherlock solved — it all adds up!

Now, with HTB Labs badges, your progress is more than just personal growth; it’s a visible achievement.

These badges reflect your dedication, expertise, and relentless pursuit of cybersecurity performance.

As an admin, you know how important it is to stay on top of the latest updates, but the challenge often lies in finding them quickly and easily.

That’s why we’ve updated the default sorting by "Newest to oldest releases”. This ensures that the latest released content is always at the top, saving you time when managing Academy and Dedicated Labs content.

But we didn’t stop there! We’ve also added sorting options across all content types, giving you the flexibility to organize and find exactly what you need with ease.

Start a 14-day business trial FOR FREE →

Looking for a clear, structured way to build the skills you need without the guesswork?

We have revamped our old Tracks and released new ones—our collection of curated paths—to guide you through a structured, hands-on learning experience. These Tracks are designed to address specific focus areas using a combination of the best Machines, Challenges, or Sherlocks.

Whether you want to master Mobile Exploitation or explore emerging fields like ICS/SCADA Security, Tracks provide a clear pathway for tackling key cybersecurity domains and developing real-world skills.

We are introducing a new tab on each content page, featuring curated scenarios that align with similar MITRE ATT&CK techniques.

These recommendations will help you stay on track and pick the best content for your skill progression, ensuring your learning stays aligned with real-world cybersecurity standards.

By consulting these content recommendations, you’ll get:

Start a 14-day business trial FOR FREE →

Boost engagement and enhance cyber performance by offering your team a holistic event experience that blends CTF Challenges with hands-on attack simulations focused on the most common and recent system vulnerabilities and misconfigurations.

As an event manager, you now have the power to select the category (aka Machines) directly from the , enabling you to create dynamic, realistic events that truly challenge your team.

We’ve released our first curated CTF pack that features 10 offensive scenarios, each mirroring real-world vulnerabilities commonly found in enterprise networks.

Designed for security professionals, red teamers, and CTF players, this pack provides essential penetration testing skills, covering areas like network enumeration, web application exploitation, CVE exploits, Active Directory attacks, and Linux and Windows privilege escalation.

With this pack, your team will: