Compliance
April 20, 2026
Objective: To architect a secure, compliant SaaS environment aligned with ISO 27001 and …
Compliance
NIST
ISO 27001
Secure Architecture
Command Injection
September 30, 2025
Objective: To exploit a Command Injection vulnerability in a web application to bypass …
Command Injection
Web Security
Privilege Escalation
Post-Exploitation
September 20, 2025
Objective: To leverage administrative access to extract the system’s “Shadow” file, …
Post-Exploitation
Lateral Movement
Linux
Exfiltration
Password Cracking
April 17, 2026
Objective: To exfiltrate and crack leaked credentials from unencrypted data sources to …
Password Cracking
Credential Harvesting
Information Disclosure
John the Ripper
WordPress Security
March 26, 2026
Objective: To demonstrate a full-stack compromise, from website reconnaissance and …
WordPress Security
CTF
Privilege Escalation
Reconnaissance
Linux Security
March 25, 2026
Objective: To demonstrate the use of insecure service configurations and SUID binaries to …
Linux Security
Privilege Escalation
NFS
ProFTPd
Windows Security
March 20, 2026
Objective: To identify and exploit the MS17-010 (EternalBlue) vulnerability on a legacy …
Windows Security
RCE
Privilege Escalation
MS17-010
Metasploit
September 12, 2025
Objective: To execute a remote command execution (RCE) exploit against a backdoored FTP …
Metasploit
Exploitation
CVE
Vulnerability
Nmap
August 5, 2025
Objective: To perform deep-packet inspection and service fingerprinting on a target host …
Nmap
Reconnaissance
Enumeration
Services
Blue Teaming
April 20, 2026
Objective: To perform a technical post-mortem analysis of a network intrusion attempt …
Blue Teaming
Incident Response
Log Analysis
Wazuh