Infiltrator is an insane window machine where we start off by collecting usernames from a website and test those usernmaes against kerberos to see if they exist and whether they have pre-authentica...

Heal is a medium linux machine featuring a rails web app vulnerable to LFI. We manage to get our hands on the website database which reveals us the credentials for a first user. This allows us to l...

UnderPass is an easy linux machine featuring a daloradius server which we find through reading from the snmp udp port. Connecting using default credentials on the operators login page gives us a ne...

Bigbang is a hard linux box mixing wordpress plugin exploitation, Android APK analysis and API exploitation. We start off with an access to a wordpress website where we find a plugin vulnerable to ...

Vintage is a hard windows machine centered around Active Directory penetration testing. It starts with credentials for a user that we can use to perform an initial reconnaissance phase using LDAP. ...

Administrator is a medium windows machine made to test Active Directory skills. It starts with credentials for a user that we can use to collect Bloodhound data for the domain. This will reveal tha...

Bizness is a machine running a vulnerable Apache OFBiz server. Using CVE-2023-49070 (a pre-authentication remote code execution CVE), we are able to get a shell as the ofbiz user. Searching through...