Realistic CTF challenge that focuses on finding and exploiting software misconfigurations in a Wordpress environment.
Fun and complete CTF involving SQLi, command injection, bruteforcing and dangerous binary permissions.
Interesting and complete machine that includes SNMP enumeration, SQL Injection, OS Code execution and relative path abusing.
Interesting but easy Windows machine useful for beginners that want to learn how IIs and the SMB protocol work.
Realistic but easy Linux machine with lateral pivoting and an interesting privilege escalation method.
Good challenge for intermediate users that includes SMB enumeration, OS code injection and path hijacking.
Very complex but unrealistic CTF environment simulating an RPG where you have to keep finding clues to progress.
Advanced active directory CTF that teaches different aspects of real-world pentesting, including AD Certificate Services.
Fun and interesting, but unrealistic, Windows machine aimed at beginners that want to learn Active Directory enumeration and pivoting.
Highly Complex but fun machine that teaches about pivoting, web exploitation and container escapes.
Complex but fun Active-Directory machine with multi-step exploitation representing a real-world scenario.
Intermediate Active Directory-focused machine that teaches basics and fundamentals of AD pentesting.
Innovative Linux machine that teaches manual SQL injection and a unique way of abusing termux for privilege escalation.