grep -i ""

[2026]

06/28/26 Graphleak [RATCTF]
linuxCTFGraphQLintrospectionJWTHS256HMAC secretcredential exposuresudo abuseGTFOBinprivilege escalation
06/26/26 Capsule [RATCTF]
linuxCTFMongoDBunauthenticated databasecredential exposureLinux capabilitiesCAP_SETUIDprivilege escalation
06/25/26 Breakout [RATCTF]
linuxCTFNode.jsdebug endpointcredential exposurecontainer escapeDocker privilege escalation
06/24/26 Mirage [RATCTF]
linuxCTFFTPRediscredential decryptionSSHcron abuseSUIDprivilege escalation
06/23/26 Blindspot [RATCTF]
linuxCTFSSRFNodeJSsudo abuseSUIDprivilege escalation
06/21/26 Foxhole [RATCTF]
linuxCTFwebPHPtype jugglingdirectory fuzzingsudo abuseGTFOBinprivilege escalation
06/18/26 Shellcast [RATCTF]
linuxCTFFTPNFSSSHsudo abuseSUIDnmap GTFOBinprivilege escalation
05/28/26 Operation Breadcrumbs [TCM SECURITY]
webOSINTbase64hash crackingsteganographyXORexiftoolbinwalk
05/24/26 City Council [HACKSMARTER]
windowsActive DirectorySMBNTLM coercionkerberoastingtargeted kerberoastingACL abuseDPAPIWIMSeImpersonatePrivilegeGodPotatoprivilege escalation
05/20/26 Dismay [HACKSMARTER]
windowsActive DirectorySMBWSUSACL abuseADCSESC8BloodHoundDCSyncprivilege escalation
05/17/26 MartiniAD [HACKSMARTER]
windowsActive DirectorySMBkerberoastingpassword reuseRPCprivilege escalation
05/16/26 Edge [HACKSMARTER]
windowsSMBOSINTmemory scrapingcredential harvestingkiosk escapeRDPprivilege escalation
05/10/26 ShadowGate [HACKSMARTER]
windowsActive DirectoryAS-REP RoastingAD CSESC8PetitPotamNTLM relayPKINITDCSyncdomain compromise
04/24/26 Samurai [HACKSMARTER]
linuxJoomlaCVE-2023-23752information disclosurereverse shellPATH hijackingSUIDprivilege escalation
03/22/26 Data Secrets [HACKSMARTER]
awscloud securityPACUIAMIMDSEC2LambdaSecrets Managerlateral movement
03/14/26 Implicit [HACKSMARTER]
linuxbroken authenticationOAuthtoken validationsource code reviewpatch development
02/21/26 GitOops [HACKSMARTER]
linuxGiteaS3TerraformIaCSUIDAtlantisprivilege escalation
02/08/26 Arasaka [HACKSMARTER]
windowsActive DirectoryKerberoastingACL abuseAD CSESC1certificate abuseprivilege escalation
02/07/26 BankSmarter [HACKSMARTER]
linuxSNMPinformation disclosurecronlateral movementPython path hijackingprivilege escalation
01/25/26 Verbose [HACKSMARTER]
linuxIDORSSTI2FA bypassbrute forcereverse shellprivilege escalation
01/19/26 Building Magic [HACKSMARTER]
windowsActive DirectoryKerberoastingACL abusecoerced authenticationSeBackupPrivilegecredential dumpingprivilege escalation
01/11/26 Polution [HACKSMARTER]
linuxprototype pollutionXSSsession hijackingNode.jsprivilege escalation

[2023]

[2022]

[2021]

[2020]

11/03/20 CheeseyJack [VULNHUB]
linuxQDPMweb enumerationdefault credentialsMySQLprivilege escalation
10/09/20 Chili [VULNHUB]
linuxFTPbrute forcewritable passwdprivilege escalation
08/21/20 HackLAB: Vulnix [VULNHUB]
linuxSMTPfingerNFSbrute forceNFS root squashingprivilege escalation
08/19/20 Sick OS 1.2 [VULNHUB]
linuxHTTP PUTcurlweb shellchkrootkitcronprivilege escalation
08/16/20 VulnOS 2 [VULNHUB]
linuxweb enumerationOpenDocManSQLisqlmapkernel exploitprivilege escalation
08/15/20 Stapler 1 [VULNHUB]
linuxweb enumerationSMBFTPWordPressMySQLbash historyprivilege escalation
08/13/20 Fristileaks 1.3 [VULNHUB]
linuxweb enumerationBase64ROT13file upload bypasssudo abuseprivilege escalation
08/12/20 Kioptrix - 2014 [VULNHUB]
FreeBSDpChartLFIPHPTaxRCEkernel exploitprivilege escalation
08/11/20 Kioptrix Level 1.3 [VULNHUB]
linuxSQL injectionMySQLrestricted shell escapeprivilege escalation
08/09/20 Kioptrix Level 1.2 [VULNHUB]
linuxLotusCMSRCEMySQLSSH keyprivilege escalation
08/07/20 Kioptrix Level 1.1 [VULNHUB]
linuxSQL injectioncommand injectionkernel exploitprivilege escalation
08/07/20 Kioptrix Level 1 [VULNHUB]
linuxApacheOpenFuckbuffer overflowMetasploitSamba
08/02/20 Literally Vulnerable [VULNHUB]
linuxweb enumerationanonymous FTPWordPressLFIsudo abuseprivilege escalation
07/30/20 Misdirection [VULNHUB]
linuxweb enumerationbash historylateral movementwritable passwdprivilege escalation
07/26/20 Pickle Rick [TRYHACKME]
linuxweb enumerationcommand injectionweb shellprivilege escalation
07/24/20 Wonderland [TRYHACKME]
linuxweb enumerationhidden credentialssudo abusePATH hijackingprivilege escalation
07/23/20 Year of the Rabbit [TRYHACKME]
linuxweb enumerationsteganographyFTPBrainfuckCVE-2019-14287privilege escalation
07/20/20 Erit Securus I [TRYHACKME]
linuxBolt CMSweb enumerationpivotingRCEprivilege escalation
07/19/20 Haskhell [TRYHACKME]
linuxFlaskSUIDprivilege escalationHaskellsudo abuse
07/18/20 Overpass [TRYHACKME]
linuxauthentication bypassweb enumerationcronprivilege escalation
07/17/20 Nax [TRYHACKME]
linuxsteganographyNagiosMetasploitCVE-2019-15949RCE
07/15/20 Ultratech [TRYHACKME]
linuxAPI enumerationcommand injectionhash crackingDockerprivilege escalation
07/14/20 Biohazard [TRYHACKME]
linuxCTF puzzleBase64Caesar ciphersteganographyweb enumerationprivilege escalation
07/13/20 Lian Yu [TRYHACKME]
linuxweb enumerationsteganographyFTPprivilege escalation
07/13/20 Anthem [TRYHACKME]
windowsOSINTweb enumerationhidden filescredential discovery
07/13/20 Anonymous [TRYHACKME]
linuxFTPanonymous accesscronscript modificationprivilege escalationSUID
07/12/20 Mr. Robot [TRYHACKME]
linuxWordPresshydrabrute forcereverse shellprivilege escalationSUID
07/12/20 Linux Challenges [TRYHACKME]
linuxfile enumerationbash historycronprivilege escalationMySQLNFS
07/11/20 Source [TRYHACKME]
linuxWebminCVE-2019-15107RCEunauthenticated exploit
07/11/20 Break Out the Cage [TRYHACKME]
linuxVigenere cipherbrute forcecronprivilege escalation
06/28/20 symfonos2 [VULNHUB]
linuxSMBFTPbrute forceanonymous accessport forwardingprivilege escalation
06/27/20 symfonos1 [VULNHUB]
linuxSMBSMTPanonymous accessbrute forceLFIprivilege escalation
06/25/20 Glasgow Smile [VULNHUB]
linuxJoomlabrute forceweb enumerationprivilege escalationcryptography