🎄 Join our Annual Holiday wargame and win prizes!


Azure & GCP Challenges Release

26/02/2026

GCP AWS Challenges

New Cloud Security Challenges: Azure & GCP

Cloud misconfigurations remain one of the most common sources of security incidents. To help teams sharpen their defensive skills, we’ve added a new set of hands-on cloud security challenges focused on Azure and Google Cloud Platform (GCP).

These challenges simulate realistic security weaknesses across common cloud services and configurations.

:blue_circle: Azure Challenges

  • Disallowed CORS configurations

  • Cosmos DB with improper Customer-Managed Key (CMK) setup

  • Key expiration mismanagement

:red_circle: GCP Challenges

  • Bigtable misconfiguration

  • Cloud SQL exposure risks

  • VPC security and network boundary issues

These scenarios are currently featured in our Weekly Incident game for a limited time.

If you’re working in cloud infrastructure, DevSecOps, or application security, these exercises are designed to reflect the types of issues seen in real environments, not just textbook examples.

Deco line
Deco line

Play AppSec WarGames

Want to skill-up in secure coding and AppSec? Try SecDim Wargames to learn how to find, hack and fix security vulnerabilities inspired by real-world incidents.

For Companies Play Now
Deco line
Deco line

Got a comment?

Join our secure coding and AppSec community. A discussion board to share and discuss all aspects of secure programming, AppSec, DevSecOps, fuzzing, cloudsec, AIsec code review, and more.

Read more