Help Center

Everything you need to dominate the battlefield

Getting Started

NodeBreach is a gamified cybersecurity training platform that combines Risk-style strategy gameplay with real hacking simulations. Create vulnerable virtual machines, launch attacks, defend systems, and compete with players worldwide to control territories on a global map.

After signing up, you'll automatically receive a starter node. To create additional nodes:

Go to the Nodes page from your dashboard
Click "Create Node"
Choose your operating system (Ubuntu, Debian, Kali, etc.)
Select a country to place your node
Click "Create" and wait for provisioning

Tokens are the in-game currency used to purchase attacks, defenses, and security infrastructure. Earn them by:

Completing daily missions (+50-500 tokens)
Winning battles (+100-1000 tokens based on opponent level)
Capturing flags (+200-500 tokens)
Daily login bonuses (+100 tokens, streaks multiply)
Referring friends (+500 tokens per referral)
Achievements (+varying amounts)

Gameplay

Battles are card-based PvP encounters:

Select Target: Choose an opponent's node to attack
Choose Attack: Pick from your inventory of attack cards
Resolution: Damage calculated from attack power, defense rating, and infrastructure bonuses
Rewards: Winners receive XP, tokens, and potentially territory control

💡 Pro Tip: Security infrastructure like firewalls and IDS can block or reduce incoming attacks!

Conquest is our territory control system inspired by Risk:

The world map is divided into countries/territories
Place nodes in territories to establish presence
Capture flags hidden in territories to claim control
Controlling territories provides defense bonuses and passive rewards
Attack neighboring territories to expand your empire

Subscriptions & Billing

Free

1 node
Linux only
100 tokens/day
Basic store access

Basic ($9.99/mo)

3 nodes
Linux + Windows
500 tokens/day
Full store access

Pro ($29.99/mo)

10 nodes
All OS types
2,000 tokens/day
API access
Priority infrastructure

Enterprise ($99.99/mo)

Unlimited nodes
Team features
Private networks
SSO/SAML integration
Priority support

Yes! We support OAuth SSO with Google, Microsoft, Apple, and GitHub. Enterprise customers can also integrate via SAML 2.0 with Okta, Azure AD, Google Workspace, and other providers.

Technical Questions

Yes! Pro and Enterprise subscribers have access to our REST API:

Create and manage nodes programmatically
Query battle results and statistics
Integrate with CI/CD pipelines
Build custom dashboards

View our API Documentation for details.

Early Game Strategy (Level 1-10)

Goal: Build your foundation and learn the mechanics

✅ Do This

Complete all tutorial missions first
Claim your daily login bonus every day
Focus on defense before offense
Save tokens for your first Firewall
Join a country with active players

❌ Avoid This

Attacking high-level players
Spending all tokens on attack cards
Ignoring CVE patches
Spreading nodes across many countries

💡 Pro Tip: Your first 500 tokens should go toward a Basic Firewall. It provides +15% defense and pays for itself in blocked attacks.

Mid Game Strategy (Level 11-30)

Goal: Expand territory and build synergistic infrastructure

Recommended Infrastructure Stack

Firewall → Base defense, blocks scripted attacks
IDS/IPS → Detect and alert on attack patterns
SIEM → Correlate attacks, bonus XP from defended attacks
WAF → Specifically protects against web exploits

Synergy Bonus System

Deploy complementary infrastructure for stacking bonuses:

Firewall + IDS: +10% detection rate
IDS + SIEM: +15% XP from blocks
WAF + Firewall: +20% web attack defense
Full Stack (4+): +25% all defenses

Late Game Strategy (Level 31+)

Goal: Dominate territories and optimize your network

Offensive Strategy

Scan targets for unpatched CVEs before attacking
Chain attacks: Recon → Exploit → Pivot
Use switches to route attacks through multiple paths
Coordinate with team members for synchronized attacks

Defensive Strategy

Deploy honeypots to waste attacker resources
Use load balancers to distribute attack damage
Keep SIEM tuned for real-time alerts
Maintain backup nodes for failover

Territory Control Tips

Cluster nodes: Adjacent territories share defense bonuses
Hold choke points: Some territories provide strategic advantages
Time your attacks: Server time affects some mechanics
Alliance with neighbors: Non-aggression pacts let you focus resources

Purchase security infrastructure from the Store to enhance your nodes' capabilities. Each item provides unique bonuses and can be combined for synergy effects.

Firewalls

Block unauthorized traffic and filter malicious packets. The first line of defense for any node.

Basic Firewall

100 tokens • Common

+20 defense bonus
Basic packet filtering
Blocks script-kiddie attacks

Next-Gen Firewall

600 tokens • Uncommon

+30 defense bonus
Deep packet inspection
Application awareness
Intrusion prevention

DDoS Mitigation

1,200 tokens • Rare

+40 defense bonus
Traffic scrubbing
Volumetric attack protection
Rate limiting

IDS/IPS (Intrusion Detection/Prevention)

Monitor network traffic for suspicious activity. IDS detects and alerts; IPS actively blocks threats.

IDS

700 tokens • Uncommon

+30 defense bonus
Attack notifications
Signature matching

IPS

1,000 tokens • Rare

+40 defense bonus
Real-time blocking
CVE signature updates
Active threat prevention

Behavioral Analysis

1,200 tokens • Rare

+35 defense bonus
Anomaly detection
Zero-day protection
ML-based threat hunting

WAF (Web Application Firewall)

Protect web applications from SQL injection, XSS, and other OWASP Top 10 vulnerabilities.

WAF

800 tokens • Uncommon

+30 defense bonus
SQLi/XSS protection
OWASP Top 10 coverage

Cloud WAF

1,000 tokens • Rare

+35 defense bonus
Global threat intelligence
Auto-scaling protection
Managed rulesets

ModSecurity WAF

350 tokens • Uncommon

+25 defense bonus
Custom rule creation
Open-source flexibility
Community rulesets

SIEM (Security Information & Event Management)

Centralized logging and security analytics. Correlate events across all your infrastructure for enhanced visibility.

SIEM System

1,500 tokens • Rare

+40 defense bonus
Centralized logging
Attack pattern analysis
Threat correlation

Wazuh SIEM

600 tokens • Rare

+30 defense bonus
Real-time correlation
File integrity monitoring
Compliance reporting
Incident response automation

Network Equipment

Enhance your network topology for advanced offensive and defensive capabilities.

Network Segmentation

800 tokens • Uncommon

+30 defense bonus
VLAN isolation
Limit breach spread

VPC Protection

700 tokens • Uncommon

+25 defense bonus
Private networking
Security groups
Traffic flow logs

Zero Trust

2,000 tokens • Epic

+50 defense bonus
Never trust, always verify
Micro-segmentation
Continuous verification

Special Equipment

Advanced tools for specialized tactics and deception.

Honeypot

500 tokens • Uncommon

+30 defense bonus
Decoy target for attackers
Intel on attack methods

Backup & Recovery

600 tokens • Uncommon

+25 defense bonus
Quick recovery from attacks
Reduced downtime

Penetration Testing

1,800 tokens • Rare

+45 defense bonus
Find vulnerabilities first
Red team exercises
Security hardening

Synergy Bonuses

Combine infrastructure items for stacking bonuses:

Defense Synergies

Firewall + IDS: +10% detection rate
IDS + SIEM: +15% XP from blocks
WAF + Firewall: +20% web defense
Full Defense Stack: +25% all defense

Offense Synergies

VPN + Sandbox: +20% stealth attacks
Switch + Load Balancer: +10% attack coordination
SIEM + IDS: Counter-intelligence bonus

Damage Calculation


                        Final Damage = (Base Attack × Attack Multiplier) - (Defense Rating × Defense Multiplier)

                        

                        Attack Multiplier = 1 + (Level × 0.02) + CVE Bonus + Equipment Bonus

                        Defense Multiplier = 1 + (Level × 0.01) + Infrastructure Bonus

Example: Level 20 attacker with 100 base attack vs Level 15 defender with 50 defense and Basic Firewall (+15%)

Damage = (100 × 1.4) - (50 × 1.30) = 140 - 65 = 75 damage

XP & Leveling


                        XP Required for Level N = 100 × N²

                        

                        Battle XP = Base XP × (1 + Level Difference × 0.1)

                        Defense XP = Attack Blocked × 0.5 × SIEM Bonus

XP Sources:

Win battle: 50-200 XP (based on opponent level)
Capture flag: 100 XP
Complete mission: 25-500 XP
Defend attack: 25 XP (×1.25 with SIEM)
First blood (daily): 50 XP bonus

Token Economy

Earning Tokens

Daily login: 100 tokens
Login streak (7 days): 500 bonus
Win battle: 100-1000 tokens
Complete mission: 50-500 tokens
Capture flag: 200-500 tokens
Referral: 500 tokens

Spending Tokens

Attack cards: 50-500 tokens
Defense items: 100-1000 tokens
Infrastructure: 500-8000 tokens
Node creation: 200 tokens
CVE scan: 50 tokens

Defense Rating Calculation


                        Total Defense = Base Defense + Σ(Infrastructure Bonuses) + Territory Bonus

                        

                        Infrastructure Stack Bonus = min(25%, Sum of individual bonuses × 1.1)

Infrastructure Defense Values:

Basic FW: +15%

Adv FW: +30%

Basic IDS: +10%

Adv IDS: +25%

Basic WAF: +25%

Adv WAF: +45%

SIEM: +XP

LB: +20% DDoS

Still have questions?

Our support team is here to help