Search

eJPT is a hands-on, entry-level Red Team certification that simulates skills utilized during real-world engagements It's a very beginner friendly exam

LeetTime XSS Labs validate elite cross-site scripting skills through immersive, hands-on scenarios that simulate real-world web vulnerabilities.

Key insights from tackling Memcached Network Recon challenges. Discover how this in-memory key-value store boosts web app performance by caching data

Kioptrix challenges are beginner-friendly games designed to gain root access, offering hands-on learning in vulnerability assessment and exploitation techniques.

Vulnversity is the first machine on the Offensive Pentesting Path on TryHackMe, covering active recon, web attacks and privilege escalation

Enumerate Samba for shares, manipulate a vulnerable version of proftpd, and escalate your privileges with path variable manipulation.

Beginner path introduces Linux, OWASP web security, NMAP scanning, Python/Bash scripting and privilege escalation, building key security foundations.

Deploy & hack into a Windows machine, leveraging common misconfiguration issues.

In this room, we will gain initial access with Metasploit, use Powershell to enumerate the machine, and escalate our privileges to Administrator.

Exploit Jenkins to gain an initial shell, then escalate your privileges by exploiting Windows Authentication Tokens.

Learn to hack into this machine using SQLMap, crack some passwords, reveal services using reverse SSH tunnel and escalate privileges to root.

FalconSpy's easy box challenge! Boot up, Retrieve the IP, find flag.txt in /root/ & submit to TryHarder for a chance at a 30d OSCP voucher giveaway.

A Vulnerable Terminator-themed Linux Machine. Exploit LFI to gain the initial foothold, and then exploit vulnerable version of sudo to privesc.

This is a machine that allows you to practice web app hacking and privilege escalation

Compromise a Joomla CMS account via SQLi, practice cracking hashes, and escalate your privileges by taking advantage of yum.

It was the first machine published on Hack The Box and was often the first machine for new users before its retirement.

Blue, while possibly the most simple machine on Hack The Box, demonstrates the severity of the EternalBlue exploit.

Devel, demonstrates the security risks associated with some default program configurations and can be completed using publicly available exploits.

I turned my fear of buffer overflows into a journey of hacking mastery. Join me for step-by-step guides, code samples, and cybersecurity tips!

The aim of this path is to make us ready for real-world penetration testing by teaching us how to use industry-standard tools and methodologies.