TryHackMe Labs
WonderlandGhostcatOverPass3JokerWekor (Manual SQLi + memcache and python privesc)Vulnnet (LFI of apache config file)OverPass (session Cookie bypass + /etc/hosts bash script privesc)Archangel (LFI with php filters + log poisoning)Mustacchio (XXE Vulnerability + tail privesc)Inferno (OSCP practice + tee privesc)Jurrasic (SQL Injection)Glitch (ffuf POST request and firefox decrypt)CatPictures (Port Knocking and Docker Escape)HackerVsHacker (File upload bypass + process privesc)Dear QA (Linux Binary Overflow)Mindgames (RCE Brainfuck+Python + cap_setuid of openssl privesc)Biblioteca (SQLi + python library hijacking)Peak Hill (Python Pickles + decompyle .pyc + sourpickles)WWBuddy (SQLi new way + php cmd injection + USER env var privesc)toc2 (cms made simple 2.1.6 exploit + linux .c program race condition)VulnNet Active (Windows Redis + SMB scheduled job + SharpGPOAbuse)Madeye's castle (SQLite Injection + binary exploitation for privesc)Ghizer (Wordpress+LimeSurvey + chisel ghidra port for RCE + .py privesc)ContainMe (html path command injection + SUID privesc+lateral to container with ssh + mysql privesc)SafeZoneVulnNet-Internal (SMB/NFS/Rsync exploit + TeamCity Privesc)Vulnnet-Roasted (AS-REP Roasting + secretdump)VulnNet: Node (Node.js deserialization + /npm privesc and services privesc)Enterprise (Domain-Admin to RDP Users + PowerUp privesc)Fusion Corp (Get-NPUsers + rcpclient + SeBackupPrivilege privesc)Set (users.xml + bruteforce SMB + plink + custom msfvenom module)Year of the Owl (SNMP + onesixtyone + snmpwalk + crackmapexec + RecycleBin + pwdump.py)Revenge (SQLi + sudoedit .service config)Opacity (RFI nullbyte bypass + .kdbx hash crack + pspy64 backup process LPE)Intranet
Last updated