# Break-Fix Labs and Tabletop Scenarios > **Intro:** Good labs teach pattern recognition. They do not require giant environments. A small YAML, pipeline, manifest, or attack timeline can be enough to build the judgment a real incident later needs. > > **What this page includes** > > * lab ideas for product and platform teams > * tabletop scenarios for incidents and architecture reviews > * how to grade the exercise > * how to keep the labs tied to product reality ## Lab ideas * find the dangerous trust in a GitHub or GitLab OIDC role; * review a Kubernetes manifest for escalation and identity abuse paths; * identify why a webhook design is replayable; * inspect an export workflow for cross-tenant abuse risk; * respond to a suspicious pod with the runtime investigation playbook. ## Tabletop scenarios * compromised CI runner before a release; * leaked support token touching many tenants; * cross-tenant export discovered by a customer; * public bucket exposing source and deployment manifests; * privilege escalation through mis-scoped workload identity. ## Grading idea Score the exercise on: * problem recognition; * trust-boundary clarity; * containment order; * evidence preservation; * business communication quality. ## Intentionally vulnerable lab environments When your team is ready for longer, richer practice instead of one-page exercises, move into the curated lab environments: * [Vulnerable Learning Labs and Goat Environments](/learning-labs-interview-and-templates/index-2/vulnerable-learning-labs-and-goat-environments.md) * [OWASP Juice Shop](/learning-labs-interview-and-templates/index-2/owasp-juice-shop-web-and-api-lab.md) * [CI/CD Goat](/learning-labs-interview-and-templates/index-2/cicd-goat-pipeline-security-lab.md) * [Kubernetes Goat](/learning-labs-interview-and-templates/index-2/kubernetes-goat-cluster-lab.md) * [AWSGoat](/learning-labs-interview-and-templates/index-2/awsgoat-aws-cloud-lab.md) * [CloudGoat](/learning-labs-interview-and-templates/index-2/cloudgoat-cloud-scenarios-lab.md) * [OWASP EKS Goat](/learning-labs-interview-and-templates/index-2/owasp-eks-goat-aws-eks-lab.md) * [TerraGoat](/learning-labs-interview-and-templates/index-2/terragoat-iac-misconfiguration-lab.md) ## Related pages * [GitLab Mock Interview Pack](/learning-labs-interview-and-templates/index-1/gitlab-mock-interview.md) * [Runtime Investigation Playbook for Kubernetes and Containers](/cloud-kubernetes-and-infrastructure-security/index-1/runtime-investigation-playbook.md) *** *Author attribution: Ivan Piskunov, 2026 - Educational and defensive-engineering use.* --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.product-security.expert/learning-labs-interview-and-templates/index-2/break-fix-labs-and-tabletop-scenarios.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.