Over 130 exercises across four active categories, with Application Security, API Security, and Cloud Security launching soon. Security Awareness covers phishing, ransomware, social engineering, vishing, smishing, business email compromise, deepfake whaling, and USB drop attacks.
AI & LLM Security covers prompt injection, AI-powered phishing, deepfake voice cloning, plus the OWASP Top 10 for LLM Applications and OWASP Top 10 for Agentic Applications. Privacy & Compliance exercises address GDPR, data subject access requests, breach notification, cross-border transfers, and the OWASP Top 10 Privacy Risks. New exercises are added monthly.