Kobold - HTB
An easy-difficulty Linux machine featuring multiple web vulnerabilities.
VariaType - HTB
A medium-difficulty Linux machine centered around a custom font-generation web application. The challenge involves exploring file handling behavior, analyzing backend processing logic, and chaining multiple issues in the font processing pipeline to move from initial access to full system compromise.
CCTV - HTB
Easy Linux CCTV machine abusing ZoneMinder and MotionEye flaws through SQL injection and escalation. [Unintended]
Pirate - HTB
Windows Active Directory challenge centered on delegation, Kerberos, and privilege escalation workflows.
Mirage - HTB
Mirage is a hard Windows AD machine involving NFS report leaks, DNS hijack to capture NATS credentials, Kerberoasting, gMSA abuse, and ESC10 certificate misuse to reach DCSync.
Know vulnerabilities authenticated
Know vulnerabilities authenticated techniques and commands for Active Directory security assessment.
Valid User (No Password)
Valid User (No Password) techniques and commands for Active Directory security assessment.
Era - HTB
Era is a medium Linux machine that chains an IDOR in a file portal, FTP config exposure, a PHP stream wrapper RCE via file preview, and a signed-binary bypass for root.