Capture the flag
Standalone premium hubs for navigation, OSINT, web exploitation, networking, cloud, WiFi, and SOC-style investigations. Launch here or from Kali with commands like hub1, hub2, or hubs.
Master Linux navigation: pwd, ls, cd, cat, grep, head, tail, find, and hidden files — 15 progressive flags from beginner to advanced navigation challenges.
Target: 10.10.50.10
Explore simulated domain enumeration, BloodHound-style paths, and share evidence.
Target: 10.10.80.10
Build a mini incident timeline from simulated logs and artifacts.
Target: case-disk-01
Review container scan and Kubernetes RBAC output in a safe CTF scenario.
Target: registry.local/payments-api:1.4.2
Configure VLANs, trunking, router-on-a-stick, and host addressing in a Cisco-style simulated topology.
Target: R1/SW1/PC1/PC2
Run a simulated end-to-end web engagement with recon, credential audit, user login, privilege escalation, lateral movement, race condition testing, SQL injection, XSS, IDOR, upload validation, and JWT/API weaknesses.
Target: acme-market.test
Use passive recon style commands to identify subdomains and public clues.
Target: acme-osint.test
Enumerate web paths, fingerprint services, and identify a simulated exposed debug endpoint.
Target: 10.10.60.25
Review simulated mobile and source-code findings with appsec tools.
Target: training-app.apk
Review fake cloud IAM, storage, and logging findings in a no-API simulator.
Target: cybercli-training-cloud
Investigate generated security events, triage alerts, and identify the incident flag.
Target: soc-stream-01
Simulate internal enumeration, SMB review, and service-mapping evidence.
Target: 10.10.70.15