Free Open-Source Pentest Lab Released for Real-World Exploitation Practice

The author has developed PENTEST-LAB, a free and open-source lab designed to allow users to practice exploiting vulnerabilities in a secure environment. The lab offers 12 challenges covering realistic scenarios such as authentication bypass, IDOR (Insecure Direct Object Reference) flaws, JWT (JSON Web Token) weaknesses, and WAF (Web Application Firewall) bypass leading to RCE (Remote Code Execution). The exercises include progressive hints to help users understand how exploits work. The project is still evolving and welcomes community feedback to improve.