Wifi themed box featuring a evil-twin attack
Discussing the setup of a k8s lab
Medium box featuring abuse of non-sandboxed browser abusing SSRF and pycache abuse
Medium box showcasing 'impossible' sql injection and some php runkit function abuse
Hard box covering silver tickets & NTLM Relay attacks
Easy linux box with LFI dumping grafana.db, password cracking, and sudo docker abuse for a host escape.
Insane level box that utilizes lots of services, having to perform sql injection with HMAC signing, restic backups and a bad password generator that gives us root
Hard box featuring IDOR, CSRF and PHP Filtering to get in-memory PHP code execution and a way to maliciously load apache modules.
Hard box that covers a win-rar zip concatenation vulnerability as well as certificate privileges that give us system
Medium box that covers SQL injection and log poisoning as well as root-level services being abused for privilege escalation
Going through and summarizing my experience of the 22 boxes
Easy Box featuring Active-Directory certificate services that ensures you have your tools updated!
Medium box that is one of my favorites showcasing a very obvious pathway for privilege escalation but having to use a variety of techniques to get there.
Discussing KRB5_CONFIG and fixing a small error in nmap's NSE
Going through the cloud-resume challenge using AWS
Learning terraform by spinning up a locally provisioned QEMU vm network!
Easy box showcasing a grafana CVE and the dangers of reused secrets in environment variables and root-level crontab access.
Adding AI to assist as a fallback for parsing formatted invoices
Easy box that reminds us that UDP is important to check and covers FreeRADIUS and Mosh for privilege escalation
