iamwei
Master
Classement
#18
Meilleur: #4
Points Totaux
791
Total Gagné
Labs Terminés
63
65 User • 8 Root
Modules
23
Validés
Premiers Sangs
14
Premier à Terminer
Meilleure Série
2
Jours
Compétences Acquises
Compétences techniques pratiquées à travers les labs terminés
Email ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital InvestigationRace ConditionsTiming AttacksConcurrent ExploitationWeb Application SecurityJavaScriptBrowser DevToolsDOM ManipulationClient-Side SecurityNetwork ForensicsDNS AnalysisData ExfiltrationTraffic AnalysisCryptographyClassical CiphersFrequency AnalysisPattern RecognitionCommand InjectionLinux CapabilitiesPrivilege EscalationReverse ShellSystem EnumerationNetwork ReconnaissanceWeb SecurityHTTP HeadersIP SpoofingAccess Control BypassInformation GatheringWireless SecurityWEP CrackingRC4 AnalysisPacket AnalysisCryptographic AttacksLegacy Protocol ExploitationDigital ForensicsWindows RegistryPersistence AnalysisIncident ResponseMalware AnalysisCryptanalysisClassical CryptoData EncodingSession ManagementAuthenticationPHPMemory ForensicsBinary AnalysisTool UsageData RecoveryROT13 EncodingAPI SecurityWeb HackingLogic FlawsToken ManipulationBase64 EncodingAuthorization BypassMD5 CrackingSource Code AnalysisPassword AttacksAuthentication BypassGit ForensicsVersion Control SecurityRepository AnalysisPenetration TestingSecret RecoveryBase64Web InspectionHTML AnalysisNetwork AnalysisPacket CaptureWiresharkProtocol AnalysisSteganographyImage AnalysisWebCTF BasicsShell CommandsSystem AdministrationHTTP Parameter ManipulationSecurity AssessmentServer-Side Template InjectionJinja2Flask SecurityWeb Application TestingCode InjectionPDF SecurityPassword CrackingDictionary AttacksDocument SecurityBrute Force AttacksXSSCross-Site ScriptingStored XSSSession HijackingLocal File InclusionUser-Agent Log PoisoningRemote Code ExecutionDirectory TraversalApache SecurityLog AnalysisNoSQL InjectionMongoDBVisibility ControlsSecurity TestingOperator ExploitationSSRFServer-Side Request ForgeryAWS MetadataCloud SecurityIAM CredentialsNetwork SecurityAWS EC2SQL InjectionDatabase SecurityBlind SQLiTime-based SQLiBoolean-based SQLiDatabase EnumerationVulnerability AssessmentXXEXML SecurityFile DisclosureExternal EntityJWTToken AuthenticationWeb ExploitationService DiscoveryFile DiscoveryCommand Line ToolsForensicsHTTP ProtocolAttack DetectionPath TraversalCGIFile AccessInput ValidationFlaskDebug ModePythonMemory AnalysisTransposition CipherRail FenceAudio AnalysisLSBPDF ForensicsFile AnalysisMetadataHidden DataForensic ToolsBlockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic AnalysisLFIPath ManipulationFile InclusionDNSJenkinsCI/CDDevOpsPentestAutomationDatabase ForensicsCLI UsageHex EncodingRedisQR Code AnalysisHex EditorsData StructuresReverse EngineeringMD5Rainbow TablesWeb DevelopmentHexadecimalSSHNetworkingReconnaissanceCommand LineWeb ServicesLearning PathWEBTELNETWPAdvanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationGITBrute ForceLinuxSudoApache TomcatWAR DeploymentDefault CredentialsWeb ShellsFTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem ExploitationIP SPOOFINGRCEFTPHTML
Modules Terminés
Modules éducatifs validés avec succès
Nmap Mastery: Dominate Network Scanning
4 modulesInstalling Nmap
Advanced Techniques
Introduction to Nmap
Essential Nmap Scanning
HTTP Header Manipulation: IP Spoofing
3 modulesRemediate
Techniques for IP Spoofing in HTTP Headers
Manipulating Headers
HDNA Ethical Hacking Course
5 modules1. Legal & Compliance
2. Network Protocols and Security
4. Network Scanning
3. Reconnaissance
Course Summary
Attaques Web
5 modulesAttaques CSRF
SSRF
Intro Sécurité Web
Attaques XSS
Injection SQL
Attaques JWT
3 modulesBases du JWT
Craquage JWT
Confusion d'Algorithme
Remote Code Execution (RCE)
3 modulesShellshock (CVE-2014-6271)
RCE: Introduction
RCE in PHP
Labs & Défis Terminés
Défis pratiques de cybersécurité terminés avec succès
Email Header Forensics
Défi
Email ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital Investigation
Race Condition Hunter
Défi
Race ConditionsTiming AttacksConcurrent ExploitationWeb Application Security
Button Activator
Défi
JavaScriptBrowser DevToolsDOM ManipulationClient-Side Security
DNS Tunneling Detective
Défi
Network ForensicsDNS AnalysisData ExfiltrationTraffic Analysis
Caesar Shift Decoder
Défi
CryptographyClassical CiphersFrequency AnalysisPattern Recognition
Internal
Difficile
Command InjectionLinux CapabilitiesPrivilege EscalationReverse ShellWeb Application SecuritySystem EnumerationNetwork Reconnaissance
IP Spoofing Admin
Défi
Web SecurityHTTP HeadersIP SpoofingAccess Control BypassInformation Gathering
WEP Cracker
Défi
Wireless SecurityWEP CrackingRC4 AnalysisPacket AnalysisCryptographic AttacksLegacy Protocol Exploitation
Registry Hunter
Défi
Digital ForensicsWindows RegistryPersistence AnalysisBase64 DecodingIncident ResponseMalware Analysis
Crypto Cipher
Défi
CryptanalysisClassical CryptoPattern RecognitionData Encoding
Session Switch
Défi
Web SecuritySession ManagementAuthenticationPrivilege EscalationPHP
Memory Forensics
Défi
Memory ForensicsBinary AnalysisDigital ForensicsPattern RecognitionIncident ResponseTool UsageData RecoveryROT13 Encoding
API Breaker
Défi
API SecurityWeb HackingLogic FlawsPrivilege EscalationToken ManipulationBase64 EncodingAuthorization Bypass
Admin Portal Breach
Défi
Client-Side SecurityMD5 CrackingSource Code AnalysisWeb Application SecurityPassword AttacksAuthentication Bypass
Git Secrets Hunter
Défi
Git ForensicsVersion Control SecurityRepository AnalysisPenetration TestingSecret RecoveryOSINT
Base64 Detective
Défi
Base64Web InspectionBrowser DevToolsData EncodingHTML Analysis
Packet Pursuit
Défi
Network AnalysisPacket CaptureWiresharkProtocol Analysis
Stego Hunt
Défi
SteganographyImage AnalysisWebCTF Basics
Shell Command Scanner
Défi
Command InjectionWeb SecurityShell CommandsSystem AdministrationHTTP Parameter ManipulationSecurity Assessment
Template Injection
Défi
Server-Side Template InjectionJinja2Flask SecurityWeb Application TestingCode InjectionPrivilege Escalation
PDF Password Cracker
Défi
PDF SecurityPassword CrackingDictionary AttacksDigital ForensicsDocument SecurityBrute Force Attacks
XSS Playground
Défi
XSSCross-Site ScriptingStored XSSSession HijackingJavaScriptWeb SecurityClient-Side SecurityDOM Manipulation
LFI Log Poison
Défi
Local File InclusionUser-Agent Log PoisoningRemote Code ExecutionDirectory TraversalWeb SecurityApache SecuritySystem AdministrationLog Analysis
NoSQL Injection
Défi
NoSQL InjectionMongoDBVisibility ControlsAccess Control BypassSecurity TestingOperator Exploitation
URL Scanner
Défi
SSRFServer-Side Request ForgeryAWS MetadataCloud SecurityIAM CredentialsNetwork SecurityWeb SecurityAWS EC2
SQL Injection
Défi
SQL InjectionDatabase SecurityWeb SecurityBlind SQLiTime-based SQLiBoolean-based SQLiDatabase EnumerationVulnerability Assessment
XXE Exposed
Défi
XXEXML SecurityFile DisclosureExternal EntityWeb SecurityVulnerability Assessment
JWT Bypass
Défi
JWTWeb SecurityToken AuthenticationCryptography
Auth Bypass
Défi
SQL InjectionAuthentication BypassWeb SecurityDatabase Security
Ping Pwn
Défi
Command InjectionWeb ExploitationService DiscoveryNetwork Security
Log Hunter
Défi
Log AnalysisWeb SecurityIncident ResponsePattern RecognitionFile DiscoveryCommand Line ToolsForensicsHTTP ProtocolAttack DetectionSecurity Assessment
Path Traversal
Défi
Path TraversalCGIWeb SecurityFile AccessDirectory TraversalInput Validation
Flask Error
Défi
FlaskDebug ModePythonWeb SecurityMemory Analysis
Rail Fence
Défi
CryptographyTransposition CipherRail FencePattern RecognitionPython
Sonic Cipher
Défi
SteganographyAudio AnalysisLSBForensicsPython
Pixel Puzzler
Défi
SteganographyImage AnalysisLSBForensicsPython
PDF Trap
Défi
PDF ForensicsFile AnalysisMetadataHidden DataForensic Tools
Blockchain Secrets
Défi
Blockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic Analysis
Corporate Breach 2
Défi
Web SecurityPHPLFIPath ManipulationFile Inclusion
Corporate Breach
Défi
Web SecurityPHPLFIPassword CrackingAuthentication BypassDirectory Traversal
DNS Exfil
Défi
Network AnalysisDNSPacket AnalysisData ExfiltrationBase64 Decoding
Snapchat Exposed
Défi
JenkinsCI/CDDevOpsWeb SecurityPentestAutomation
Red is Dead
Défi
Network ReconnaissanceService DiscoveryDatabase ForensicsData EncodingCLI UsageData RecoveryIncident ResponseBase64Hex EncodingRedis
QR Code Quest
Défi
QR Code AnalysisImage AnalysisData ExtractionSteganographyDigital Forensics
Binary Secrets
Défi
Binary AnalysisHex EditorsData StructuresReverse EngineeringFile Analysis
Get the Password
Défi
JavaScriptMD5Rainbow TablesWeb DevelopmentBrowser DevTools
Hex Hunt
Défi
JavaScriptWeb DevelopmentHexadecimalBrowser DevTools
Cronpocalypse
Facile
SSH
Onboarding Lab: Access and Flags
Très Facile
NetworkingReconnaissanceCommand LineWeb ServicesLearning Path
Hack the Cookie
Très Facile
WEBLearning Path
Hack the Login
Très Facile
WebAuthenticationClient-Side SecurityLearning Path
Nmap Lab 102
Très Facile
TELNETLearning Path
WP Ultimate
Difficile
WP
Compromised 2
Difficile
Advanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationAuthentication BypassPrivilege Escalation
Traversed
Moyen
GIT
Matsudo
Moyen
SSHBrute ForcePrivilege EscalationLinuxSudoNetwork ReconnaissancePenetration Testing
Compromised 1
Moyen
Apache TomcatWeb Application SecurityWAR DeploymentDefault CredentialsPrivilege EscalationLinuxSudoWeb Shells
Anonymous 2
Facile
FTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem Exploitation
Spoof!
Facile
IP SPOOFING
Beyond Echo
Moyen
PHPRCE
Anonymous
Facile
FTP
Include me
Facile
PHPLFI
Secrets in Source
Très Facile
HTMLLearning Path
Progression des Cours
Vos parcours d'apprentissage et modules