← Academy
TRACK · FOUNDATIONS
Fundamente
Von Null zum Defender I.
Homelab, erster Server, alle die sagen 'Security mach ich später'.
📚 5 missions⏱️ ~31 min total⚡ 700 XP🏅 Defender I on completion
MISSIONS
- M-001
Ship HSTS before the crawler comes
A compliance crawler hits hodlberg.ag in 60s. Add Strict-Transport-Security, verify, reload — without breaking production.
⏱️ 5 min⚡ 120 XP🎯 5 goalsLaunch → - M-002
Lock down SSH before the bots find you
Fresh Ubuntu box, sshd still wide open. Disable root login + password auth, reload sshd. The scans are already inbound.
⏱️ 6 min⚡ 140 XP🎯 5 goalsLaunch → - M-003
Firewall: only what you actually need
An exposed DB host listening on seven ports. Configure UFW to allow only SSH, enable, confirm.
⏱️ 5 min⚡ 130 XP🎯 5 goalsLaunch → - M-004
TLS in three commands
hodlberg.ag still serves plaintext HTTP. Press demo in 10 minutes. Issue a cert, flip to HTTPS, verify.
⏱️ 7 min⚡ 150 XP🎯 6 goalsLaunch → - M-005
Misconfig Hunt — fix the top three
Claw Score dropped to D overnight. Three critical findings. Fix them all and rescan to A.
⏱️ 8 min⚡ 160 XP🎯 5 goalsLaunch →
COMPLETE ALL 5 MISSIONS
Earn the Defender I credential — a W3C Verifiable Credential signed by ClawGuru. LinkedIn-shareable, recruiter-recognized.