Easy
Tenant Tilt
Multi-tenant billing portal with a broken object-level authorization check in invoice retrieval.
What you’ll practice in Tenant Tilt
Tenant Tilt is a realistic web hacking lab you can run locally in a controlled environment. You’ll practice mapping attack surface, testing authentication and authorization boundaries, and chaining weaknesses into impact — without spoilers.
- • Difficulty: Easy
- • Format: Local-first lab environment (recommended: Docker)
- • Focus areas: Web exploitation fundamentals