Hack The Box Reviews & Product Details

In my opinion, HackTheBox is one of the most comprehensive and useful platforms for those who want to learn and practise penetration testing and cybersecurity.

The feature I appreciate most is the Academy: the modules are well written, carefully curated, and perfectly balance theory with practice. It's not just reading, but a real guided experience that forces you to thoroughly understand the concepts before applying them. Another strong point is the weekly machines. Each new box often brings recent vulnerabilities and cutting-edge methodologies: this allows you to keep up to date with modern techniques and not limit yourself to outdated scenarios. It is not uncommon to encounter scenarios at work that you have already dealt with on HTB, applying the same procedures 1:1. This shows how realistic and useful the simulations are in professional practice.

Using HTB is beneficial for:

- those starting from scratch because they can rely on the Academy (with discounted prices for students!),

- those who are already experts can stay trained and test out different technology stacks from those they usually encounter at work (i.e. depending on the job, you may not encounter certain technologies often, and HTB is great for keeping yourself in practice)

The jeopardy-style challenges offer a good mix of fun and learning, ideal for those who want to test themselves in a shorter time frame. Personally, even though I am a red teamer, I also find sherlocks very useful: it helps me better understand the defensive point of view, bridging the gap with the blue team perspective.

Another aspect that I consider positive is the difficulty: a machine classified as 'easy' has few steps, but that does not mean it is trivial or quick to solve. Even the simplest levels are challenging and can teach something. Shall we discuss the satisfaction of solving hard/insane boxes?

In terms of user experience, the platform is very intuitive: just configure OpenVPN and you're up and running, or you can use Pwnbox directly from your browser, which could also be a convenient solution.

Customer support is another plus point: on the rare occasions when I've needed it, the staff have been quick, courteous and effective in resolving queries and problems.

Finally, the number of features is constantly increasing: weekly machines (now including those from VulnLab!), new Academy modules, Sherlocks and constant updates keep the platform fresh and stimulating. Review collected by and hosted on G2.com.

If I had to point out a limitation, I would say that there are few machines designed for absolute beginners. The boxes in the Starting Point are useful, but not sufficient: often students (especially those who are impatient to move straight to the active boxes without consulting the Academy) find themselves in difficulty and risk becoming discouraged. I don't think this is a serious shortcoming, but adding a few more “entry level” boxes would certainly help to better accommodate those who are just starting out.

Another thing that is missing is the presence of boxes with EDR to bypass, and I hope that these will arrive in the future. Review collected by and hosted on G2.com.

I found that HTB is a great platform for cybersecurity professionals of various skill levels and can accomidate even the most fresh beginners. Being initimately familiar with blue teaming, red teaming was a domain that was less explored. HTB was the catalyst for my learning and provided very user friendly hints. Review collected by and hosted on G2.com.

HTB is an amazing platform to learn security, however I have found some issues with the VMs inside of the labs. Review collected by and hosted on G2.com.

The challenges provided are for all skill levels. As a beginner I was able to jump in with limited experience and could solve some of the very easy/easy challenges. The Job role learning paths are an excellent source of knowledge as well. I took part in the SOC Analyst job role path as my goal is to become a SOC Analyst. This learning path provideded a wealth of information along with interesting challenges to keep you engaged along the way. When I got stuck on some of the challenges, I was able to reach out to the support staff. The response time was quick and the information they provided would help point me in the right direction. Review collected by and hosted on G2.com.

In the SOC Analyst learning path, some of the sections were quite long to read through and it would be benificial to break them up some more and add more questions along the way. Review collected by and hosted on G2.com.

If you're looking for a hands-on, no-fluff way to become a capable SOC analyst—or hire one—Hack The Box’s (HTB) defensive modules and the Certified Defensive Security Analyst (CDSA) certification are seriously worth your attention.

As someone who's spent time in the trenches of security operations, I can say HTB’s defensive path mirrors what a real SOC analyst needs to know: from alert triage and SIEM queries to threat hunting and log analysis. It’s not just about passing a test—it’s about doing the job.

What sets HTB apart is its “learn by doing” approach. These modules walk you through actual attack scenarios, like detecting credential theft in Active Directory, writing Splunk queries to surface suspicious PowerShell, or analyzing PCAPs for lateral movement. It’s not theoretical. It’s what you’d do on day one in a SOC.

Ease of Use:

HTB's platform is surprisingly user-friendly for a technical training environment. The modules guide you through labs with clear instructions, built-in hints, and helpful summaries. There’s no overwhelming UI or hidden features—you’re in, learning, and hands-on within minutes.

Ease of Implementation (for teams):

If you're managing a team, rolling this out as part of a structured SOC analyst training plan is straightforward. No infrastructure needed, just access. Analysts can work through the modules on their own or in a guided cohort.

Customer Support:

HTB’s support team is responsive and knowledgeable. You also get access to a helpful community, forums, and write-ups. If something breaks or doesn’t load, they usually fix it quickly.

Frequency of Use:

For individuals or SOC teams, you’ll likely revisit the content multiple times—either to sharpen detection skills or prep for an incident simulation. I’ve found the labs especially useful when onboarding new hires or reinforcing skills like log analysis or SIEM correlation.

Number of Features:

From SIEM analysis, log parsing, malware triage, to threat hunting, the number of tools and topics covered is extensive. You get exposure to Splunk, ELK, Suricata, Wireshark, and more. Plus, the variety of modules—from beginner to intermediate—lets you move at your own pace while building depth.

Ease of Integration:

HTB doesn’t require integration with your tools, but it complements them very well. For example, if you’re already using Splunk, Microsoft Sentinel, or Elastic in production, the skills you gain here will transfer immediately. I’ve even pulled concepts directly from these labs into playbooks and detection engineering tasks.

The CDSA is not a check-the-box cert. You’re thrown into a simulated environment and must investigate an incident using everything you’ve learned. It tests your actual ability—not just your memory. If I saw this cert on a resume, it’d carry serious weight.

Hack The Box’s defensive modules are well-structured, relevant, and directly tied to what security teams are doing today. Whether you're an individual trying to break into the field or a manager looking to upskill your team, this training path delivers.

The CDSA cert proves you can do the job—not just talk about it. And that, in a world full of theoretical certs, is refreshing.

If I were hiring, I’d 100% consider a CDSA-certified analyst. They’re likely to bring real value from day one. Review collected by and hosted on G2.com.

Lack of defense modules. I would like to see more modules around this, as well as certifications. Review collected by and hosted on G2.com.

What I like best about Hack The Box is the high quality of the labs and the structured learning path offered through the Academy. I especially enjoy the CTFs they release — they're challenging, creative, and always fun to play. It's truly an ideal platform for learning cybersecurity in a hands-on and engaging way. Review collected by and hosted on G2.com.

At the moment, there's nothing I can mention as a dislike. My experience with Hack The Box has been completely satisfying in every aspect. Review collected by and hosted on G2.com.

Hack The Box is an excellent platform for anyone looking to sharpen their cybersecurity skills. It offers a wide range of realistic, hands-on challenges that simulate real world hacking scenarios, from beginner to highly advanced. The constantly updated labs and active community make it engaging and educational. Overall, Hack The Box provides a practical, immersive learning environment that's invaluable for both newcomers and experienced pentesters.

Recently, Hack The Box has surpassed traditional cybersecurity education companies due to its highly advanced and constantly updated content. The introduction of practical cybersecurity certifications was certainly game changer! Review collected by and hosted on G2.com.

I'd love to see Pwnbox on South American servers. Review collected by and hosted on G2.com.

What I like best about Hack The Box is the deep technical understanding their content engineers have and the ability to teach how recognize and attack flaws in various systems. Their content is by far the most in depth and it explains everything very well so you have a strong understanding of what they're teaching. On top of this, they have an incredible infrastructure that allows you hands-on practice. It's unlike any other platform and stands on top by far. Review collected by and hosted on G2.com.

There is nothing I dislike about Hack The Box. Review collected by and hosted on G2.com.

Hack The Box represents one of the most comprehensive and educational platforms in the area of offensive cybersecurity. The site's (that is Ease of Use) well-organized and constantly updated structure allows users to try their hand at stimulating, realistic challenges of increasing difficulty, always keeping involvement and motivation high.

One of the most appreciable distinguishing elements is the ranking system: a well-structured ranking that allows for transparent and constructive comparison with colleagues, enthusiasts and professionals in the field. This aspect not only stimulates continuous improvement, but also creates healthy competitiveness, encouraging active learning and overcoming one's limits.

The proposed machines are made with extreme care and attention to detail. Each one allows you to practice modern techniques, simulated in controlled but realistic environments, and allows you to explore new attack vectors, thus developing a critical and analytical mindset. It is this “outside-the-box” thinking that makes the difference for those working in ethical hacking.

An additional strength is the training modules. The lessons are well structured, with detailed explanations and practical insights that accompany the user step by step. This instructional approach fosters a deep understanding of concepts while stimulating autonomy, making learning effective and lasting.

A special note of merit goes to customer support, which is always ready to intervene promptly, professionally and competently. User support is timely and decisive, a sign of a platform that truly takes into account the needs of its community.

HackThebox also has an ease of integration for all new users coming in from the more to the less experienced, proposing ad hoc paths for each user, this also is the strength of HackTheBox. Review collected by and hosted on G2.com.

I did not find many critical points to HackTheBox's platform. So far the user experience has been excellent. Review collected by and hosted on G2.com.

The learning is easy but still presents the stuff that matters. By following along the most important information is given to you in meaningful useful pieces. It is easy to start and stop learning , so you can move at your own pace. As a Cybersecurity Professional it is important to continue to up-skill, HTB library of lessons can keep you learning for years. It is quite easy to set up. I use it regularly and integrate it into my scheduled tasks. When I HAVE AN ISSUE THE SUPPORT STAFF ARE THERE TO HELP. Review collected by and hosted on G2.com.

Enterprise or Academy can be expensive if work wont pay. Review collected by and hosted on G2.com.

Access to hands on labs, as well as the pwnbox. They provide you with every tool necessary to learn about penetration testing and cybersecurity in a safe controlled environment. I could see learning in a non-controlled environment being difficult or even illegal so this is a great service, as it makes it easy for beginners. It is easy to use on any modern web browser, and I could see the labs being implemented in classrooms across the globe. I use it almost every day to keep up with my classes. Review collected by and hosted on G2.com.

Some of the challenges are a bit harder than others, mostly in the skills assessments, but it is manageable with some outside resources as well as review of the material. Review collected by and hosted on G2.com.