Platform Initialization

Intentionally
Vulnerable.
On Demand.

SYS.ID: BSW-LABS-V1
TARGET: AGENT_BENCHMARK
GUARDRAILS: ENGAGED

Full-stack pentesting labs available on demand. Spin up intentionally vulnerable web apps and cloud environments, run automated agents or manual tests against them, capture solve times, and tear everything down.

Initialize Read Manifesto

// Core.Architecture

Engine & Sandbox.

A purpose-built architecture that separates assessment logic from infrastructure execution. Run realistic tests without risking your production environment or blowing your cloud budget.

The Assessment Engine

> Curated scenario & vulnerability catalog
> Automated flag generation & verification
> Agent benchmarking & solve time tracking
> Strict TTL policies & automated teardown
> Real-time deployment status monitoring

Isolated Cloud Sandboxes

> Dedicated AWS member accounts per lab
> Hardened SCPs to prevent VPC peering escapes
> Instance type restrictions & budget alarms
> True cloud-native infrastructure via Terraform
> Guaranteed "nuke" cleanup on completion

// System.Capabilities

Platform
Specs.

From classic container-based web app vulnerabilities to highly specific cloud-native AWS misconfigurations.

On-Demand

Request a lab, get a sandbox. Deploy runs asynchronously; poll until the entry point is ready.

Multi-Format

Docker-compose for classic web apps. Terraform for IAM, S3, Lambda, and complex AWS setups.

Auto-Teardown

Three triggers: Flag captured, TTL expired, or Budget limit exceeded. Zero lingering infra.

Hard Guardrails

SCPs at the sandbox OU. No VPC peering, no expensive EC2s, no disabling CloudTrail.

FLOW

// Sequence.Execution

Deployment Pipeline

Agent / CLI

POST /api/deploy

Convex

State & Schedules

Controller

Sandbox Acquire

AWS Org

Terraform Apply

// Commerce.Models

Pricing & Hosting

Managed Labs

We host the AWS environments and handle all infrastructure.

$49/mo

+ usage costs

> Zero setup required
> Guaranteed safe isolation
> Built-in budget limits
> 1 active concurrent lab

Join Waitlist

Self-Hosted

Run labs in your own AWS Organization.

$299/mo

paid directly to aws

> You own the AWS Organization
> Connect via IAM Role
> Unlimited active labs
> Custom internal scenarios

Contact Sales

Ready to
Benchmark?

Labs are in active development. We are building the proving grounds for the next generation of automated offensive security.

Access Roadmap Read Announcement

IntentionallyVulnerable.On Demand.