Zur Übung der Hacking-Techniken, die im Penetration Testing eingesetzt werden sollen, bieten sich Capture The Flags (CTFs) an. Hier werden speziell unsicher konfigurierte bzw. im Sicherheitslücken versehene System angegriffen, die von ihrem Ersteller dafür freigegeben wurden.
Die folgenden unsicher konfigurierten Machinen habe ich erfolgreich angegriffen:
| Name | Version |
| Damn Vulnerable Linux | 1.5 |
| EvilBox | 1 |
| Metasploitable | 2 |
| Metasploitable | 3 |
| Mr. Robot |
Die folgenden CTF-Challenges konnte ich erfolgreich lösen:
| CTF | Bereich | Challenge | Flag |
| Google CTF 2018 Beginner Quest | Misc | Floppy | CTF{qeY80sU6Ktko8BJW} |
| Google CTF 2018 Beginner Quest | Misc | Floppy2 | CTF{g00do1dDOS-FTW} |
| Google CTF 2018 Beginner Quest | Misc | Media-DB | CTF{fridge_cast_oauth_token_cahn4Quo} |
| Google CTF 2018 Beginner Quest | Misc | OCR is Cool | CTF{caesarcipherisasubstitutioncipher} |
| Google CTF 2018 Beginner Quest | Misc | Security of Obscurity | CTF{CompressionIsNotEncryption} |
| Google CTF 2018 Beginner Quest | Pwn | Admin-UI | CTF{I_luv_buggy_sOFtware} |
| Google CTF 2018 Beginner Quest | Pwn | Admin-UI2 | CTF{Two_PasSworDz_Better_th4n_1_k?} |
| Google CTF 2018 Beginner Quest | RE | Gatekeeper | CTF{I_g0T_m4d_sk1lLz} |
| Google CTF 2019 Beginner Quest | Reversing | Family Computer | CTF{congratsyoufoundmycreds} |
| Hacking-Challenge 2023 | ReverseMe | CrackMe | HSAINNOS{HSAINNOS_FLAG_26-0hZmnslpc1357$0} |
| Hacking-Challenge 2023 | Steganographie | Augsburg International | HSAINNOS{Zwetschgendatschi} |
| Hacking-Challenge 2023 | Warm Up | HEXHEX | HSAINNOS{isTHIScryptography?} |
| OtterCTF | Misc | BinObj | flag{0tters_R_The_B3st} |
| OtterCTF | Misc | Recurse | flag{Recursion_1S_T3rribl3_AnD_1_H4t3_My_L1F3!!} |
| picoCTF | Binary Exploitation | Basic File Exploit | picoCTF{M4K3_5UR3_70_CH3CK_Y0UR_1NPU75_68466E2F} |
| picoCTF | Binary Exploitation | Buffer Overflow 0 | picoCTF{ov3rfl0ws_ar3nt_that_bad_8ba275ff} |
| picoCTF | Binary Exploitation | CVE-XXXX-XXXX | picoCTF{CVE-2021-34527} |
| picoCTF | Binary Exploitation | Guessing Game 1 | picoCTF{r0p_y0u_l1k3_4_hurr1c4n3_d9889a1f6198d933} |
| picoCTF | Binary Exploitation | Here’s a LIBC | picoCTF{1_<3_sm4sh_st4cking_8652b55904cb7c} |
| picoCTF | Binary Exploitation | RPS | picoCTF{50M3_3X7R3M3_1UCK_C85AF58A} |
| picoCTF | Binary Exploitation | Stonks | picoCTF{I_l05t_4ll_my_m0n3y_1cf201a0} |
| picoCTF | Binary Exploitation | Unsubscriptions Are Free | picoCTF{d0ubl3_j30p4rdy_ad77070e} |
| picoCTF | Binary Exploitation | X Sixty What | picoCTF{b1663r_15_b3773r_964d9987} |
| picoCTF | Cryptography | 13 | picoCTF{not_too_bad_of_a_problem} |
| picoCTF | Cryptography | Basic-mod1 | picoCTF{R0UND_N_R0UND_B6B25531} |
| picoCTF | Cryptography | Basic-mod2 | picoCTF{1NV3R53LY_H4RD_8A05D939} |
| picoCTF | Cryptography | Compress And Attack | picoCTF{sheriff_you_solved_the_crime} |
| picoCTF | Cryptography | Cred Stuff | picoCTF{C7r1F_54V35_71M3} |
| picoCTF | Cryptography | Easy 1 | picoCTF{CRYPTOISFUN} |
| picoCTF | Cryptography | Easy Peasy | picoCTF{abf2f7d5edf082028076bfd7a4cfe9a9} |
| picoCTF | Cryptography | Mini RSA | picoCTF{e_sh0u1d_b3_lArg3r_60ef2420} |
| picoCTF | Cryptography | MiniRSA | picoCTF{n33d_a_lArg3r_e_606ce004} |
| picoCTF | Cryptography | Mod 26 | picoCTF{next_time_I’ll_try_2_rounds_of_rot13_wqWOSBKW} |
| picoCTF | Cryptograpgy | New Caesar | picoCTF{et_tu?_0797f143e2da9dd3e7555d7372ee1bbe} |
| picoCTF | Cryptography | No Padding No Problem | picoCTF{m4yb3_Th0se_m3s54g3s_4r3_difurrent_4005534} |
| picoCTF | Cryptography | Scrambled RSA | picoCTF{bad_1d3a5_2268684} |
| picoCTF | Cryptography | Xtraordinary | picoCTF{w41t_s0_1_d1dnt_1nv3nt_x0r???} |
| picoCTF | Forensics | Enhance | picoCTF{3nh4nc3d_d0a757bf} |
| picoCTF | Forensics | Extensions | picoCTF{now_you_know_about_extensions} |
| picoCTF | Forensics | File Types | picoCTF{f1len@m3_m@n1pul@t10n_f0r_0b2cur17y_950c4fee} |
| picoCTF | Forensics | Glory of the Garden | picoCTF{more_than_m33ts_the_3y3eBdBd2cc} |
| picoCTF | Forensics | Investigative Reversing 0 | picoCTF{f0und_1t_d1deedaa} |
| picoCTF | Forensics | Like 1000 | picoCTF{lOtS Of TAR5S} |
| picoCTF | Forensics | Lookey Here | picoCTF{gr3p_15_@w3s0m3_2116b979} |
| picoCTF | Forensics | MacroHard WeakEdge | picoCTF{D1d_u_kn0w_ppts_r_z1p5} |
| picoCTF | Forensics | Milkslap | picoCTF{imag3_m4n1pul4t10n_sl4p5} |
| picoCTF | Forensics | Shark on the Wire 2 | picoCTF{p1LLf3r3d_data_v1a_st3g0} |
| picoCTF | Forensics | So Meta | picoCTF{s0_m3ta_eb36bf44} |
| picoCTF | Forensics | Surfing the Waves | picoCTF{mU21C_1s_1337_fa54924c} |
| picoCTF | Forensics | What Lies Within | picoCTF{h1d1ng_1n_th3_b1t5} |
| picoCTF | Forensics | Whitepages | picoCTF{not_all_spaces_are_created_equal_3e2423081df9adab2a9d96afda4cfad6} |
| picoCTF | General Skills | 2 Warm | picoCTF{101010} |
| picoCTF | General Skills | Based | picoCTF{learning_about_converting_values_02167de8} |
| picoCTF | General Skills | Bases | picoCTF{l3arn_th3_r0p35} |
| picoCTF | General Skills | Codebook | picoCTF{c0d3b00k_455157_197a982c} |
| picoCTF | General Skills | ConvertMe.py | picoCTF{4ll_y0ur_b4535_9c3b7d4d} |
| picoCTF | General Skills | First Find | picoCTF{f1nd_15_f457_ab443fd1} |
| picoCTF | General Skills | First Grep | picoCTF{grep_is_good_to_find_things_f77e0797} |
| picoCTF | General Skills | Fixme1.py | picoCTF{1nd3nt1ty_cr1515_182342f7} |
| picoCTF | General Skills | Fixme2.py | picoCTF{3qu4l1ty_n0t_4551gnm3nt_e8814d03} |
| picoCTF | General Skills | Flag Shop | picoCTF{m0n3y_bag5_68d16363} |
| picoCTF | General Skills | Glitch Cat | picoCTF{gl17ch_m3_n07_bda68f75} |
| picoCTF | General Skills | Hashing Job App | picoCTF{4ppl1c4710n_r3c31v3d_3eb82b73} |
| picoCTF | General Skills | Lets Warm Up | picoCTF{p} |
| picoCTF | General Skills | Nice Netcat | picoCTF{g00d_k1tty!_n1c3_k1tty!_f2d7cafa} |
| picoCTF | General Skills | Obedient Cat | picoCTF{s4n1ty_v3r1f13d_1a94e0f9} |
| picoCTF | General Skills | Plumbing | picoCTF{digital_plumb3r_ea8bfec7} |
| picoCTF | General Skills | PW Crack 1 | picoCTF{545h_r1ng1ng_fa343060} |
| picoCTF | General Skills | PW Crack 2 | picoCTF{tr45h_51ng1ng_502ec42e} |
| picoCTF | General Skills | PW Crack 3 | picoCTF{m45h_fl1ng1ng_2b072a90} |
| picoCTF | General Skills | PW Crack 4 | picoCTF{fl45h_5pr1ng1ng_cf341ff1} |
| picoCTF | General Skills | PW Crack 5 | picoCTF{h45h_sl1ng1ng_40f26f81} |
| picoCTF | General Skills | Python Wrangling | picoCTF{4p0110_1n_7h3_h0us3_192ee2db} |
| picoCTF | General Skills | RunMe.py | picoCTF{run_s4n1ty_run} |
| picoCTF | General Skills | Serpentine | picoCTF{7h3_r04d_l355_7r4v3l3d_ae0b80bd} |
| picoCTF | General Skills | Static Ain’t Always Noise | picoCTF{d15a5m_t34s3r_f5aeda17} |
| picoCTF | General Skills | Strings It | picoCTF{5tRIng5_1T_d66c7bb7} |
| picoCTF | General Skills | Tab Tab Attack | picoCTF{l3v3l_up!_t4k3_4_r35t!_6f332f10} |
| picoCTF | General Skills | Warmed Up | picoCTF{61} |
| picoCTF | General Skills | Wave A Flag | picoCTF{b1scu1ts_4nd_gr4vy_616f7182} |
| picoCTF | General Skills | What’s A Net Cat | picoCTF{nEtCat_Mast3ry_d0c64587} |
| picoCTF | Reverse Engineering | ARMssembly 0 | picoCTF{e5c69cd8} |
| picoCTF | Reverse Engineering | Bloat.py | picoCTF{d30bfu5c4710n_f7w_5e14b257} |
| picoCTF | Reverse Engineering | File-run1 | picoCTF{U51N6_Y0Ur_F1r57_F113_47cf2b7b} |
| picoCTF | Reverse Engineering | File-run2 | picoCTF{F1r57_4rgum3n7_f65ed63e} |
| picoCTF | Reverse Engineering | Fresh Java | picoCTF{700l1ng_r3qu1r3d_2bfe1a0d} |
| picoCTF | Reverse Engineering | GDB Test Drive | picoCTF{d3bugg3r_dr1v3_7776d758} |
| picoCTF | Reverse Engineering | GoGo | picoCTF{p1kap1ka_p1c001b3038b} |
| picoCTF | Reverse Engineering | KeygenMe.py | picoCTF{1n_7h3_|<3y_of_e584b363} |
| picoCTF | Reverse Engineering | Not Crypto | picoCTF{c0mp1l3r_0pt1m1z4t10n_15_pur3_w1z4rdry_but_n0_pr0bl3m?} |
| picoCTF | Reverse Engineering | OTP Implementation | picoCTF{cust0m_jumbl3s_4r3nt_4_g0Od_1d3A_db877006} |
| picoCTF | Reverse Engineering | PatchMe.py | picoCTF{p47ch1ng_l1f3_h4ck_21d62e33} |
| picoCTF | Reverse Engineering | Reverse Cipher | picoCTF{r3v3rs36ad73964} |
| picoCTF | Reverse Engineering | Safe Opener | picoCTF{pl3as3_l3t_m3_1nt0_th3_saf3} |
| picoCTF | Reverse Engineering | Shop | picoCTF{b4d_brogrammer_591a895a} |
| picoCTF | Reverse Engineering | Transformation | picoCTF{16_bits_inst34d_of_8_75d4898b} |
| picoCTF | Reverse Engineering | UnPackMe.py | picoCTF{175_chr157m45_85f5d0ac} |
| picoCTF | Reverse Engineering | Vault Door Training | picoCTF{w4rm1ng_Up_w1tH_jAv4_be8d9806f18} |
| picoCTF | Reverse Engineering | Vault Door 1 | picoCTF{d35cr4mbl3_tH3_cH4r4cT3r5_75092e} |
| picoCTF | Reverse Engineering | Vault Door 3 | picoCTF{jU5t_a_s1mpl3_an4gr4m_4_u_79958f} |
| picoCTF | Reverse Engineering | Vault Door 4 | picoCTF{jU5t_4_bUnCh_0f_bYt3s_8f4a6cbf3b} |
| picoCTF | Reverse Engineering | Vault Door 5 | picoCTF{c0nv3rt1ng_fr0m_ba5e_64_e3152bf4} |
| picoCTF | Web Exploitation | Cookies | picoCTF{3v3ry1_l0v3s_c00k135_96cdadfd} |
| picoCTF | Web Exploitation | Don’t Use Client Side | picoCTF{no_clients_plz_7723ce} |
| picoCTF | Web Exploitation | Get a HEAD | picoCTF{r3j3ct_th3_du4l1ty_775f2530} |
| picoCTF | Web Exploitation | Includes | picoCTF{1nclu51v17y_1of2_f7w_2of2_b8f4b022} |
| picoCTF | Web Exploitation | Insp3ct0r | picoCTF{tru3_d3t3ct1ve_0r_ju5t_lucky?f10be399} |
| picoCTF | Web Exploitation | Inspect HTML | picoCTF{1n5p3t0r_0f_h7ml_fd5d57bd} |
| picoCTF | Web Exploitation | Irish Name Repo 1 | picoCTF{s0m3_SQL_fb3fe2ad} |
| picoCTF | Web Exploitation | Local Authority | picoCTF{j5_15_7r4n5p4r3n7_b0c2c9cb} |
| picoCTF | Web Exploitation | Login | picoCTF{53rv3r_53rv3r_53rv3r_53rv3r_53rv3r} |
| picoCTF | Web Exploitation | Logon | picoCTF{th3_c0nsp1r4cy_l1v3s_6edb3f5f} |
| picoCTF | Web Exploitation | More Cookies | picoCTF{cO0ki3s_yum_2d20020d} |
| picoCTF | Web Exploitation | PicoBrowser | picoCTF{p1c0_s3cr3t_ag3nt_51414fa7} |
| picoCTF | Web Exploitation | Power Cookie | picoCTF{gr4d3_A_c00k13_0d351e23} |
| picoCTF | Web Exploitation | Roboto Sans | picoCTF{Who_D03sN7_L1k5_90B0T5_032f1c2b} |
| picoCTF | Web Exploitation | Scavenger Hunt | picoCTF{th4ts_4_l0t_0f_pl4c3s_2_lO0k_35844447} |
| picoCTF | Web Exploitation | Secrets | picoCTF{succ3ss_@h3n1c@10n_790d2615} |
| picoCTF | Web Exploitation | Super Serial | picoCTF{th15_vu1n_1s_5up3r_53r1ous_y4ll_9d0864e2} |
| picoCTF | Web Exploitation | Where are the Robots | picoCTF{ca1cu1at1ng_Mach1n3s_8028f} |
| picoCTF | Web Exploitation | Who are You | picoCTF{http_h34d3rs_v3ry_c0Ol_much_w0w_0da16bb2} |
| TryHackMe | Pre Security | Intro to Offensive Security Task 3 | BANK-HACKED |
| TryHackMe | Pre Security | What is Networking Task 3 | THM{YOU_GOT_ON_TRYHACKME} |
| TryHackMe | Pre Security | What is Networking Task 4 | THM{I_PINGED_THE_SERVER} |
| TryHackMe | Pre Security | Intro to LAN Task 1 | THM{TOPOLOGY_FLAWS} |
| TryHackMe | Pre Security | DNS in detail Task 5 | THM{7012BBA60997F35A9516C2E16D2944FF} |
| TryHackMe | Pre Security | HTTP in detail Task 1 | THM{INVALID_HTTP_CERT} |
| TryHackMe | Pre Security | HTTP in detail Task 7-1 | THM{YOU’RE_IN_THE_ROOM} |
| TryHackMe | Pre Security | HTTP in detail Task 7-2 | THM{YOU_FOUND_THE_BLOG} |
| TryHackMe | Pre Security | HTTP in detail Task 7-3 | THM{USER_IS_DELETED} |
| TryHackMe | Pre Security | HTTP in detail Task 7-4 | THM{USER_HAS_UPDATED} |
| TryHackMe | Pre Security | HTTP in detail Task 7-5 | THM{HTTP_REQUEST_MASTER} |
| TryHackMe | Pre Security | Linux Fundamentals Part 1 Task 6 | THM{ACCESS} |
| TryHackMe | Pre Security | Linux Fundamentals Part 2 Task 4 | THM{FILESYSTEM} |
| TryHackMe | Pre Security | Linux Fundamentals Part 2 Task 5 | THM{SU_USER2} |
| TryHackMe | Pre Security | Linux Fundamentals Part 3 Task 3 | THM{TEXT_EDITORS} |
| TryHackMe | Pre Security | Linux Fundamentals Part 3 Task 4 | THM{WGET_WEBSERVER} |
| TryHackMe | Pre Security | Linux Fundamentals Part 3 Task 5 | THM{PROCESSES} |
| TryHackMe | Complete Beginner | Tutorial | flag{connection_verified} |
| TryHackMe | Complete Beginner | Burp Suite: The Basics Task 13 | THM{NmNlZTliNGE1MWU1ZTQzMzgzNmFiNWVk} |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 7-1 | fe86079416a21a3c99937fea8874b667 |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 7-2 | d9ac0f7db4fda460ac3edeb75d75e16e |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 11 | THM{Yzc2YjdkMjE5N2VjMzNhOTE3NjdiMjdl} |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 16 | MIIEogIBAAKCAQEA7 |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 18 | flag{fivefourthree} |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 19 | thm{4b9513968fd564a87b28aa1f9d672e17} |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 20-1 | ThereIsMoreToXSSThanYouThink |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 20-2 | ReflectiveXss4TheWin |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 20-3 | HTML_T4gs |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 20-4 | W3LL_D0N3_LVL2 |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 20-5 | websites_can_be_easily_defaced_with_xss |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 25-1 | THM{good_old_base64_huh} |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 25-2 | THM{heres_the_admin_flag} |
| TryHackMe | Complete Beginner | OWASP Top 10 Task 26 | 4a69a7ff9fd68 |
| TryHackMe | Complete Beginner | OWASP Juice Shop Task 3 | fb364762a3c102b2db932069c0e6b78e738d4066 |
| TryHackMe | Complete Beginner | OWASP Juice Shop Task 4 | 094fbc9b48e525150ba97d05b942bbf114987257 |
| TryHackMe | Complete Beginner | OWASP Juice Shop Task 5 | bfc1e6b4a16579e85e06fee4c36ff8c02fb13795 |
| TryHackMe | Complete Beginner | OWASP Juice Shop Task 6 | 50c97bcce0b895e446d61c83a21df371ac2266ef |
| TryHackMe | Complete Beginner | OWASP Juice Shop Task 7 | 23cefee1527bde039295b2616eeb29e1edc660a0 |
| TryHackMe | Complete Beginner | OWASP Juice Shop Task 8 | 7efd3174f9dd5baa03a7882027f2824d2f72d86e |
| TryHackMe | Complete Beginner | Blue Task 5-1 | flag{access_the_machine} |
| TryHackMe | Complete Beginner | Blue Task 5-2 | flag{sam_database_elevated_access} |
| TryHackMe | Complete Beginner | Blue Task 5-3 | flag{admin_documents_can_be_valuable} |
| TryHackMe | Complete Beginner | Vulnversity Task 4 | 8bd7992fbe8a6ad22a63361004cfcedb |
| TryHackMe | Complete Beginner | Vulnversity Task 5 | a58ff8579f0a9270368d33a9966c7fd5 |
| TryHackMe | Complete Beginner | Basic Pentesting | heresareallystrongpasswordthatfollowsthepasswordpolicy$$ |
| TryHackMe | Complete Beginner | Kenobi Task 3 | d0b0f3f53b6caa532a83915e19224899 |
| TryHackMe | Complete Beginner | Kenobi Task 4 | 177b3cd8562289f37382721c28381f02 |
| TryHackMe | Jr Penetration Tester | Pentesting Fundamentals | THM{PENTEST_COMPLETE} |
| TryHackMe | Jr Penetration Tester | Walking An Application Task 3-1 | THM{HTML_COMMENTS_ARE_DANGEROUS} |
| TryHackMe | Jr Penetration Tester | Walking An Application Task 3-2 | THM{NOT_A_SECRET_ANYMORE} |
| TryHackMe | Jr Penetration Tester | Walking An Application Task 3-3 | THM{INVALID_DIRECTORY_PERMISSIONS} |
| TryHackMe | Jr Penetration Tester | Walking An Application Task 3-4 | THM{KEEP_YOUR_SOFTWARE_UPDATED} |
| TryHackMe | Jr Penetration Tester | Walking An Application Task 4 | THM{NOT_SO_HIDDEN} |
| TryHackMe | Jr Penetration Tester | Walking An Application Task 5 | THM{CATCH_ME_IF_YOU_CAN} |
| TryHackMe | Jr Penetration Tester | Walking An Application Task 6 | THM{GOT_AJAX_FLAG} |
| TryHackMe | Jr Penetration Tester | Content Discovery Task 5 | THM{HEADER_FLAG} |
| TryHackMe | Jr Penetration Tester | Content Discovery Task 6 | THM{CHANGE_DEFAULT_CREDENTIALS} |
| TryHackMe | Jr Penetration Tester | SQL Injection Task 5 | THM{SQL_INJECTION_3840} |
| TryHackMe | Jr Penetration Tester | SQL Injection Task 6 | THM{SQL_INJECTION_9581} |
| TryHackMe | Jr Penetration Tester | SQL Injection Task 7 | THM{SQL_INJECTION_1093} |
| TryHackMe | Jr Penetration Tester | SQL Injection Task 8 | THM{SQL_INJECTION_MASTER} |
| TryHackMe | Jr Penetration Tester | Burp Suite: Repeater Task 6 | THM{Yzg2MWI2ZDhlYzdlNGFiZTUzZTIzMzVi} |
| TryHackMe | Jr Penetration Tester | Burp Suite: Repeater Task 7 | THM{N2MzMzFhMTA1MmZiYjA2YWQ4M2ZmMzhl} |
| TryHackMe | Jr Penetration Tester | Burp Suite: Repeater Task 8 | THM{ZGE3OTUyZGMyMzkwNjJmZjg3Mzk1NjJh} |
| TryHackMe | Jr Penetration Tester | Passive Reconnaissance Task 4 | THM{a5b83929888ed36acb0272971e438d78} |
| TryHackMe | Jr Penetration Tester | Vulnerabilities 101 Task 6 | THM{ACKME_ENGAGEMENT} |
| TryHackMe | Jr Penetration Tester | Linux Privilege Escalation Task 5 | THM-28392872729920 |
| TryHackMe | Jr Penetration Tester | Linux Privilege Escalation Task 6 | THM-402028394 |
| TryHackMe | Jr Penetration Tester | Linux Privilege Escalation Task 7 | THM-3847834 |
| TryHackMe | Jr Penetration Tester | Linux Privilege Escalation Task 8 | THM-9349843 |
| TryHackMe | Jr Penetration Tester | Linux Privilege Escalation Task 9 | THM-383000283 |
| TryHackMe | Jr Penetration Tester | Linux Privilege Escalation Task 10 | THM-736628929 |
| TryHackMe | Jr Penetration Tester | Linux Privilege Escalation Task 11 | THM-89384012 |
| TryHackMe | Jr Penetration Tester | Linux Privilege Escalation Task 12-1 | THM-42828719920544 |
| TryHackMe | Jr Penetration Tester | Linux Privilege Escalation Task 12-2 | THM-168824782390238 |
| TryHackMe | CompTIA Pentest+ | Attacktive Directory Task 8-1 | TryHackMe{K3rb3r0s_Pr3_4uth} |
| TryHackMe | CompTIA Pentest+ | Attacktive Directory Task 8-2 | TryHackMe{B4ckM3UpSc0tty!} |
| TryHackMe | CompTIA Pentest+ | Attacktive Directory Task 8-3 | TryHackMe{4ctiveD1rectoryM4st3r} |
| TryHackMe | CompTIA Pentest+ | Post-Exploitation Basics Task 2 | POST{P0W3RV13W_FTW} |
| TryHackMe | Red Teaming | Red Team Fundamentals Task 6 | THM{RED_TEAM_ROCKS} |
| TryHackMe | Red Teaming | Bypassing UAC Task 3-1 | THM{UAC_HELLO_WORLD} |
| TryHackMe | Red Teaming | Bypassing UAC Task 3-2 | THM{GUI_UAC_BYPASSED_AGAIN} |
| TryHackMe | Red Teaming | Bypassing UAC Task 4 | THM{AUTOELEVATE4THEWIN} |
| TryHackMe | Red Teaming | Bypassing UAC Task 5 | THM{AV_UAC_BYPASS_4_ALL} |
| TryHackMe | Red Teaming | Bypassing UAC Task 6 | THM{SCHEDULED_TASKS_AND_ENVIRONMENT_VARS} |
| TryHackMe | Red Teaming | Active Directory Basics Task 4 | THM{thanks_for_contacting_support} |
| TryHackMe | Cyber Defense | Basic Malware RE Task 2 | FLAG{CAN-I-MAKE-IT-ANYMORE-OBVIOUS} |
| TryHackMe | Cyber Defense | Basic Malware RE Task 3 | FLAG{STACK-STRINGS-ARE-BEST-STRINGS} |
| TryHackMe | Cyber Defense | Basic Malware RE Task 4 | FLAG{RESOURCES-ARE-POPULAR-FOR-MALWARE} |
| TryHackMe | Hydra | THM{2673a7dd116de68e85c48ec0b1f2612e} | |
| TryHackMe | Hydra | THM{c8eeb0468febbadea859baeb33b2541b} |