DC: 8
DC-8 is another purposely built vulnerable lab with the intent of gaining experience in the world of penetration testing.This challenge is a bit of a hybrid between being an actual challenge, and being...
View ArticleHA: Wordy
Wordy is design for beginners to experience real life Penetration testing. This lab is completely dedicated to Web application testing and there are several vulnerabilities that should be exploited in...
View ArticleBob's Missing Cat CTF: 1
Bob’s Missing Cat is a three part CTF where the goal is to find your lost cat. Bob’s Missing Cat Pt. 1 is an introduction to the world of Linux.(This CTF is different from most, intended to be played...
View ArticleHA: Avengers Arsenal
Avengers are meant to be Earth’s Mightiest Heroes, but some heroes just aren’t mighty enough without their trusty weapon in hand.The Goal is to gather all the 5 mightiest weapons:VIBRANIUM SHIELD...
View ArticleHA: Armour
Klaw has stolen some armours from the Avengers Super-Secret Base. Falcon has checked the manifest, following things are unaccountable:HulkBuster ArmourSpiderman ArmourAnt-Man ArmourBlack Panther...
View ArticleMisdirection: 1
The purpose of this machine is to grant OSCP students further develop, strengthen, and practice their methodology for the exam.VulnHub
View Articleserial: 2
This box has an intermediate difficulty for the user, I suggest you to enumerate it and use some tools for get the first flag. Note that if you don't see the flag maybe you should find it in other...
View ArticleBottleneck: 1
Bottleneck is an intermediate boot2root machine.After some cyber attacks the admin hardened the system, show him that it's not so secure.If you need a hint feel free to contact me on Twitter:...
View ArticlebossplayersCTF: 1
Aimed at Beginner Security Professionals who want to get their feet wet into doing some CTF's. It should take around 30 minutes to root.VulnHub
View ArticleWebGOAT: 1
This is ubuntu 18.04 server which autostarts webgoat on http://<ip address>:8000/WebGoat/Credentials: - user: webgoat - pass: webgoatThis machine is used to practice on different types of web...
View ArticleHA: ISRO
This is our tribute to the Indian Space Research Organisation (ISRO). We as Indians are proud of ISRO and its achievements. Solve this CTF challenge and feel the work of ISRO.This machine contains 4...
View ArticleSafeHarbor: 1
A harder VM designed to train for both pentesting newer IT infrastructure methodologies as well as network pivot practice. You'll need to be familiar with pivoting techniques, web app vulnerabilities,...
View ArticleHacker Fest: 2019
The machine was part of my workshop for Hacker Fest 2019 at Prague.Difficulty level of this VM is very “very easy”. There are two paths for exploit it.There are no intentional rabbit holes.Through a...
View ArticleHA: Joker
This lab is going to introduce a little anarchy. It will upset the established order, and everything becomes will become chaos. Get your face painted and wear that Purple suit because it’s time to...
View ArticleSiXeS: 1
Advanced-Hard Boot2Root machine intended to be used in a Workshop/CTF beside Shellmates Club.The machine has 6 flags that will guide the challenger through it. It covers web security, binary...
View ArticleBob's Missing Cat CTF: 1.1
Bob’s Missing Cat is a three part CTF where the goal is to find your lost cat. Bob’s Missing Cat Pt. 1 is an introduction to the world of Linux.(This CTF is different from most, intended to be played...
View ArticleHA: Naruto
Book your tickets to The Konohagakure, and train under Master Jiraiya, Hokage Uzumaki and Tsunade. Use your hacking skills to stop Orrochimaru and Rescue Sasuke. Hack this boot to root and get the...
View ArticleGears of War: EP#1
Its a CTF machine that deals with the history of gears of war, where we must try to escape from prison and obtain root privileges. it has some rabbit holes, so you have to try to connect the tracks to...
View ArticleMortal Kombat: 1
This is an hard machine. You'll need to master and chain together multiple vulnerabilities. If you need a hint feel free to contact me on Twitter: @p4w16VulnHub
View Article