How to Use This Site Safely (Ethics and Authorized Practice)

Only test, scan, capture, or inspect systems and networks you own or are explicitly authorized to assess. This includes school networks, employer systems, public Wi-Fi, and cloud environments.

Even 'just learning' actions can cause alerts, service disruption, or policy violations if performed without scope and permission. Professional defenders treat scope as part of the work.

When in doubt, stop and confirm authorization before proceeding.

The material on hack3rs.ca is designed for labs, troubleshooting, validation, detection, monitoring, and incident response learning. Choose defensive learning goals: baseline traffic, logging, patch validation, exposure checks, and triage workflows.

Treat tools as workflow components, not toys. Ask what question you are trying to answer, what evidence you need, and how you will validate the output.

Document scope and commands even in your own lab. This builds the same habits expected in real operational environments.

Logs and packet captures may contain credentials, tokens, internal hostnames, and personal data. Store and share them carefully, and use sanitized or lab data for teaching whenever possible.

Limit retention and access to what is necessary for learning. Practicing good handling habits early helps you avoid future mistakes in professional environments.

If you encounter real sensitive data unexpectedly, stop, secure it, and do not expand collection beyond what is authorized.