H3xCore
Master
Ranking
#15
Melhor: #12
Total de Pontos
822
Total Ganho
Labs Concluídos
47
47 User • 15 Root
Módulos
7
Validados
Primeiros Sangues
0
Primeiro a Concluir
Melhor Sequência
26
Dias
Habilidades Adquiridas
Habilidades técnicas praticadas através dos labs concluídos
UnicodeSteganographyWeb ForensicsPythonText AnalysisPDF SecurityPassword CrackingDictionary AttacksDigital ForensicsDocument SecurityBrute Force AttacksFlaskDebug ModeWeb SecurityMemory AnalysisWireless SecurityWEP CrackingRC4 AnalysisPacket AnalysisCryptographic AttacksLegacy Protocol ExploitationJWT ManipulationSSH ExploitationLog InjectionPrivilege EscalationLinux SecurityLinuxSSHFile EnumerationCron JobsConfiguration AnalysisLocal File InclusionFilter BypassApache AuthenticationJavaScriptBrowser DevToolsDOM ManipulationClient-Side SecurityWeb DevelopmentHexadecimalPHPRCEHTTP ProtocolRequest SmugglingNetwork ForensicsTraffic AnalysisMYSQLIDirectory FuzzingX-Forwarded-For SpoofingBruteforceffufCommand InjectionNewline InjectionLinux EnumerationSUID ExploitationBuffer OverflowARM64 ROPStatic Binary AnalysisBinary ExploitationpwntoolsropperGDBBlockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic AnalysisWebDAV ExploitationFile UploadDirectory TraversalRemote File AccessHTTP MethodsWeb Server SecurityFile System EnumerationEmail ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital InvestigationZIP Password CrackingJohn the RipperfcrackzipBrute ForceArchive SecurityHTTP HeadersIP SpoofingAccess Control BypassInformation GatheringGitVersion ControlSource Code AnalysisReconnaissanceCryptographyHash CrackingPassword AnalysisSecurity ToolsIDOR ExploitationZip Slip VulnerabilityServer-Side Template InjectionInternal Service DiscoveryBackup Service ExploitationSudo Vim ExploitationMD5Rainbow TablesOffice SecurityHash ExtractionHashcatWindows SecurityNTLMHash AnalysisWeb Application SecuritySSTIFlask SecuritySSH Brute ForceDatabase EnumerationWeb EnumerationCVE ExploitationPath InjectionFile System SecurityInput ValidationPath ManipulationFile AccessSSRFURL ManipulationInternal Network AccessProtocol BypassIP SPOOFINGLFIhashcatCommand LineFile System NavigationHidden FilesgrepfindSQL InjectionAuthentication BypassLinux Privilege EscalationFile PermissionsLinux CapabilitiesReverse ShellSystem EnumerationNetwork ReconnaissanceApache TomcatWAR DeploymentDefault CredentialsSudoWeb ShellsPenetration TestingAuthenticationFile Upload BypassPHP SecurityWeb Shell ExploitationLog AnalysisFTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem ExploitationFTPHTMLLearning PathWEBWebTELNETNetworkingWeb Services
Módulos Concluídos
Módulos educacionais validados com sucesso
HTTP Header Manipulation: IP Spoofing
3 módulosRemediate
Techniques for IP Spoofing in HTTP Headers
Manipulating Headers
Bug Bounty
1 módulosFundamentos de recon
Remote Code Execution (RCE)
3 módulosShellshock (CVE-2014-6271)
RCE: Introduction
RCE in PHP
Labs & Desafios Concluídos
Desafios práticos de cibersegurança concluídos com sucesso
Phantom Text
Desafio
UnicodeSteganographyWeb ForensicsPythonText Analysis
PDF Password Cracker
Desafio
PDF SecurityPassword CrackingDictionary AttacksDigital ForensicsDocument SecurityBrute Force Attacks
Flask Error
Desafio
FlaskDebug ModePythonWeb SecurityMemory Analysis
WEP Cracker
Desafio
Wireless SecurityWEP CrackingRC4 AnalysisPacket AnalysisCryptographic AttacksLegacy Protocol Exploitation
Infiltrator
Fácil
JWT ManipulationSSH ExploitationLog InjectionPrivilege EscalationWeb SecurityLinux Security
Scheduled Sabotage
Fácil
LinuxSSHFile EnumerationCron JobsPrivilege EscalationConfiguration Analysis
File Include Bypass
Desafio
Local File InclusionFilter BypassApache AuthenticationPassword Cracking
Button Activator
Desafio
JavaScriptBrowser DevToolsDOM ManipulationClient-Side Security
Hex Hunt
Desafio
JavaScriptWeb DevelopmentHexadecimalBrowser DevTools
Beyond Echo
Médio
PHPRCE
Cronpocalypse
Fácil
SSH
HTTP Smuggling
Desafio
HTTP ProtocolRequest SmugglingNetwork ForensicsTraffic AnalysisWeb SecurityPacket Analysis
Query Quake
Médio
MYSQLIRCE
Hack the Box
Difícil
Directory FuzzingX-Forwarded-For SpoofingBruteforceffufCommand InjectionNewline InjectionWeb SecurityLinux EnumerationSUID ExploitationBuffer OverflowARM64 ROPStatic Binary AnalysisBinary ExploitationpwntoolsropperGDB
Blockchain Secrets
Desafio
Blockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic Analysis
WebDAV Explorer
Desafio
WebDAV ExploitationFile UploadDirectory TraversalRemote File AccessHTTP MethodsWeb Server SecurityFile System Enumeration
Email Header Forensics
Desafio
Email ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital Investigation
ZIP Cracker
Desafio
ZIP Password CrackingJohn the RipperfcrackzipDictionary AttacksBrute ForceArchive Security
IP Spoofing Admin
Desafio
Web SecurityHTTP HeadersIP SpoofingAccess Control BypassInformation Gathering
Git Exposed
Desafio
GitVersion ControlSource Code AnalysisReconnaissanceWeb Security
Crack SHA1 Hash
Desafio
CryptographyHash CrackingPassword AnalysisSecurity Tools
Broken Chain
Difícil
IDOR ExploitationZip Slip VulnerabilityServer-Side Template InjectionInternal Service DiscoveryBackup Service ExploitationPrivilege EscalationSudo Vim Exploitation
Get the Password
Desafio
JavaScriptMD5Rainbow TablesWeb DevelopmentBrowser DevTools
Office Password Cracker
Desafio
Password CrackingOffice SecurityHash ExtractionJohn the RipperHashcat
Windows Password Cracker
Desafio
Password CrackingWindows SecurityNTLMHashcatJohn the RipperHash Analysis
FortiPy
Difícil
Web Application SecuritySSTIFlask SecuritySSH Brute ForceDatabase EnumerationHash CrackingPrivilege Escalation
TechNova Infiltration
Médio
Web EnumerationSSHPassword CrackingPrivilege EscalationLinux SecurityCVE Exploitation
Simple Directory Traversal
Desafio
Directory TraversalPath InjectionFile System SecurityWeb SecurityInput ValidationPath ManipulationFile Access
SSRF Validator
Desafio
SSRFWeb SecurityURL ManipulationInternal Network AccessProtocol Bypass
Spoof!
Fácil
IP SPOOFING
Include me
Fácil
PHPLFI
Shadow Cracker
Desafio
Password CrackingLinux SecurityJohn the RipperhashcatCryptography
Linux Fundamentals Practice
Desafio
LinuxCommand LineFile System NavigationHidden Filesgrepfind
Alpwned
Médio
SQL InjectionAuthentication BypassSSHLinux Privilege EscalationFile PermissionsWeb Application Security
Internal
Difícil
Command InjectionLinux CapabilitiesPrivilege EscalationReverse ShellWeb Application SecuritySystem EnumerationNetwork Reconnaissance
Compromised 1
Médio
Apache TomcatWeb Application SecurityWAR DeploymentDefault CredentialsPrivilege EscalationLinuxSudoWeb Shells
Matsudo
Médio
SSHBrute ForcePrivilege EscalationLinuxSudoNetwork ReconnaissancePenetration Testing
Hidden CMS Breach
Médio
Web EnumerationWeb SecurityAuthenticationRCEPrivilege EscalationLinux
FiPloit
Fácil
Local File InclusionFile Upload BypassPHP SecurityDirectory TraversalWeb Shell ExploitationPrivilege EscalationLog Analysis
Anonymous 2
Fácil
FTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem Exploitation
Anonymous
Fácil
FTP
Secrets in Source 2
Muito Fácil
Web SecurityHTMLBrowser DevToolsClient-Side SecuritySource Code AnalysisLearning Path
Hack the Cookie
Muito Fácil
WEBLearning Path
Hack the Login
Muito Fácil
WebAuthenticationClient-Side SecurityLearning Path
Nmap Lab 102
Muito Fácil
TELNETLearning Path
Secrets in Source
Muito Fácil
HTMLLearning Path
Onboarding Lab: Access and Flags
Muito Fácil
NetworkingReconnaissanceCommand LineWeb ServicesLearning Path
Progresso dos Cursos
Seus caminhos de aprendizado e módulos