Avatar do Perfil

skalvin

Grandmaster
Lebanon Entrou em maio 2025

Ranking

#6

Melhor: #6

Total de Pontos

1408

Total Ganho

Labs Concluídos

115

115 User18 Root

Módulos

62

Validados

Primeiros Sangues

1

Primeiro a Concluir

Melhor Sequência

27

Dias

Conquistas Certificados Atividade

Habilidades Adquiridas

Habilidades técnicas praticadas através dos labs concluídos

LinuxCommand LineFile System NavigationHidden FilesgrepfindAdvanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationAuthentication BypassPrivilege EscalationJavaScriptWeb DevelopmentHexadecimalBrowser DevToolsSteganographyImage AnalysisWebCTF BasicsNetwork AnalysisPacket CaptureWiresharkProtocol AnalysisBinary AnalysisHex EditorsData StructuresReverse EngineeringFile AnalysisAPI SecurityWeb HackingLogic FlawsToken ManipulationBase64 EncodingAuthorization BypassMemory ForensicsDigital ForensicsPattern RecognitionIncident ResponseTool UsageData RecoveryROT13 EncodingWeb SecuritySession ManagementAuthenticationPHPFile UploadBypass TechniquesWeb ShellsInput ValidationSocial EngineeringPost ExploitationAudio AnalysisLSBForensicsPythonKeePass 4.x SecurityDirect Brute ForcePassword Manager AssessmentModern CryptographySecurity Tool LimitationsJWTAlgorithm ConfusionRS256HS256Token ForgeryLogic FlawParameter ManipulationMD5Rainbow TablesDirectory FuzzingX-Forwarded-For SpoofingBruteforceffufCommand InjectionNewline InjectionLinux EnumerationSUID ExploitationBuffer OverflowARM64 ROPStatic Binary AnalysisBinary ExploitationpwntoolsropperGDBWeb EnumerationRCEWPHTMLClient-Side SecuritySource Code AnalysisLearning PathIDOR ExploitationZip Slip VulnerabilityServer-Side Template InjectionInternal Service DiscoveryBackup Service ExploitationSudo Vim ExploitationPassword CrackingLinux SecurityJohn the RipperhashcatCryptographySSHWindows SecurityNTLMHashcatHash AnalysisOffice SecurityHash ExtractionSQL InjectionRegex BypassWeb Application SecuritySQLiteUNION-Based SQLiGitVersion ControlReconnaissanceFile DiscoveryInformation GatheringType JugglingHash CrackingPassword AnalysisSecurity ToolsDatabase SecurityPenetration TestingDeobfuscationCode AnalysisHTTP ProtocolRequest SmugglingNetwork ForensicsTraffic AnalysisPacket AnalysisEmail ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital InvestigationSSRFURL ManipulationInternal Network AccessProtocol BypassSSTIFlask SecuritySSH Brute ForceDatabase EnumerationClassical CiphersPolyalphabetic CiphersDirectory TraversalPath InjectionFile System SecurityPath ManipulationFile AccessYAML DeserializationPyYAML ExploitationConfiguration InjectionPython SecurityUnsafe DeserializationRemote Code ExecutionFile Processing SecurityWebDAV ExploitationRemote File AccessHTTP MethodsWeb Server SecurityFile System EnumerationPrototype PollutionNode.js SecurityJavaScript ExploitationObject ManipulationInput Validation BypassModern Web VulnerabilitiesRace ConditionsTiming AttacksConcurrent ExploitationIDORHTTP HeadersSecurity BypassClient-Side ManipulationDirectory EnumerationWeb ReconnaissanceAdministrative Panel DiscoverySecurity AssessmentLocal File InclusionFilter BypassApache AuthenticationCookie ManipulationDOM ManipulationFilter EvasionGraphQLSchema IntrospectionInjectionDNS AnalysisData ExfiltrationFrequency AnalysisDocker Registry APIContainer SecurityAPI ManipulationRegistry ExploitationSUID BinariesNoSQL InjectionMongoDBDocument DatabasesCRLF InjectionRedis Command InjectionCache PoisoningProtocol ManipulationLDAP InjectionDirectory ServicesEnterprise SecurityJWT ManipulationSSH ExploitationLog InjectionPython PickleEnterprise DeserializationCorporate Backup SystemsDisaster Recovery ExploitationConfiguration Import AttacksIP SpoofingAccess Control BypassJinja2 ExploitationWiFi SecurityWPA CrackingDictionary AttacksWireless Penetration TestingNetwork SecurityWireless SecurityWEP CrackingRC4 AnalysisCryptographic AttacksLegacy Protocol ExploitationWindows RegistryPersistence AnalysisMalware AnalysisHistorical CryptanalysisMD5 CrackingPassword AttacksGit ForensicsVersion Control SecurityRepository AnalysisSecret RecoveryZIP Password CrackingfcrackzipBrute ForceArchive SecurityJinja2Web Application TestingCode InjectionPDF SecurityDocument SecurityBrute Force AttacksShell CommandsSystem AdministrationHTTP Parameter ManipulationUser-Agent Log PoisoningApache SecurityLog AnalysisVisibility ControlsSecurity TestingOperator ExploitationLinux CapabilitiesReverse ShellSystem EnumerationNetwork ReconnaissanceServer-Side Request ForgeryAWS MetadataCloud SecurityIAM CredentialsAWS EC2Linux Privilege EscalationFile PermissionsCSRFCross-Site Request ForgerySession SecurityForm SecurityHTTP SecurityState ManagementXSSCross-Site ScriptingStored XSSSession HijackingPath TraversalCGIClaims ManipulationTime-Based AttacksSignature CrackingBlind SQLiTime-based SQLiBoolean-based SQLiVulnerability AssessmentXXEXML SecurityFile DisclosureExternal EntityToken AuthenticationWeb ExploitationService DiscoveryCommand Line ToolsAttack DetectionFlaskDebug ModeMemory AnalysisTransposition CipherRail FencePDF ForensicsMetadataHidden DataForensic ToolsBlockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic AnalysisLFIFile InclusionDNSCryptanalysisClassical CryptoData EncodingJenkinsCI/CDDevOpsPentestAutomationDatabase ForensicsCLI UsageBase64Hex EncodingRedisQR Code AnalysisMYSQLIWeb InspectionHTML AnalysisWEBFile Upload BypassPHP SecurityWeb Shell ExploitationApache TomcatWAR DeploymentDefault CredentialsSudoGITTELNETFTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem ExploitationFTPNetworkingWeb ServicesIP SPOOFING

Módulos Concluídos

Módulos educacionais validados com sucesso

Nmap Mastery: Dominate Network Scanning

4 módulos
Installing Nmap
1 pts Concluído: dez. 24, 2025
Advanced Techniques
1 pts Concluído: dez. 24, 2025
Introduction to Nmap
1 pts Concluído: mai. 29, 2025
Essential Nmap Scanning
1 pts Concluído: dez. 24, 2025

HTTP Header Manipulation: IP Spoofing

3 módulos
Remediate
1 pts Concluído: dez. 24, 2025
Techniques for IP Spoofing in HTTP Headers
1 pts Concluído: dez. 24, 2025
Manipulating Headers
1 pts Concluído: mai. 29, 2025

Quebra de Senhas

10 módulos
Rainbow tables
1 pts Concluído: dez. 24, 2025
Quebra de wireless
1 pts Concluído: dez. 24, 2025
Quebra de PDF
1 pts Concluído: dez. 31, 2025
Quebra de hashes Linux
1 pts Concluído: dez. 24, 2025
Quebra de Documentos Office
1 pts Concluído: dez. 24, 2025
Quebra de ZIP
1 pts Concluído: dez. 31, 2025
Ataques de força bruta
1 pts Concluído: ago. 28, 2025
Fundamentos de senhas
1 pts Concluído: ago. 21, 2025
Ataques de dicionário
1 pts Concluído: ago. 22, 2025
Quebra de hashes Windows
1 pts Concluído: dez. 24, 2025

Pentest de Rede

10 módulos
Reconhecimento ativo
1 pts Concluído: dez. 31, 2025
Pós-exploração
1 pts Concluído: dez. 31, 2025
Pivoteamento
1 pts Concluído: dez. 31, 2025
Exploração de serviços
1 pts Concluído: dez. 31, 2025
Relatórios de pentest
1 pts Concluído: dez. 31, 2025
Ataques de senha
1 pts Concluído: dez. 31, 2025
Ataques MITM
1 pts Concluído: dez. 31, 2025
Varredura de vulnerabilidades
1 pts Concluído: dez. 31, 2025
Fundamentos de rede
1 pts Concluído: dez. 24, 2025
Enumeração de serviços
1 pts Concluído: dez. 31, 2025

Cheat Sheets de Segurança

10 módulos
Cheat Sheet do Hydra
1 pts Concluído: jan. 04, 2026
Cheat Sheet do Nikto
1 pts Concluído: jan. 07, 2026
Cheat Sheet do John the Ripper
1 pts Concluído: jan. 15, 2026
Cheat Sheet do SQLMap
1 pts Concluído: jan. 07, 2026
Cheat Sheet do Wireshark
1 pts Concluído: jan. 15, 2026
Cheat Sheet do Burp Suite
1 pts Concluído: jan. 04, 2026
Cheat Sheet do Gobuster
1 pts Concluído: jan. 07, 2026
Cheat Sheet do Nmap
1 pts Concluído: jan. 01, 2026
Cheat Sheet do Hashcat
1 pts Concluído: jan. 15, 2026
Cheat Sheet do Metasploit
1 pts Concluído: jan. 04, 2026

HDNA Ethical Hacking Course

5 módulos
1. Legal & Compliance
1 pts Concluído: dez. 24, 2025
2. Network Protocols and Security
1 pts Concluído: dez. 24, 2025
4. Network Scanning
1 pts Concluído: dez. 24, 2025
3. Reconnaissance
1 pts Concluído: dez. 24, 2025
Course Summary
1 pts Concluído: mai. 29, 2025

Ataques Web

12 módulos
Ataques CSRF
1 pts Concluído: dez. 24, 2025
Injeção XXE
1 pts Concluído: dez. 24, 2025
SSRF
1 pts Concluído: dez. 24, 2025
Inclusão de Arquivos
1 pts Concluído: dez. 24, 2025
Intro Segurança Web
1 pts Concluído: dez. 24, 2025
SSTI
1 pts Concluído: ago. 14, 2025
Desserialização
1 pts Concluído: ago. 16, 2025
Ataques File Upload
1 pts Concluído: dez. 24, 2025
Ataques XSS
1 pts Concluído: dez. 24, 2025
Bypass de Auth
1 pts Concluído: dez. 24, 2025
Injeção SQL
1 pts Concluído: dez. 24, 2025
Injeção de Comandos
1 pts Concluído: ago. 13, 2025

Ataques JWT

4 módulos
Fundamentos JWT
1 pts Concluído: ago. 13, 2025
Adulteração JWT
1 pts Concluído: dez. 24, 2025
Quebra de JWT
1 pts Concluído: dez. 24, 2025
Confusão de Algoritmo
1 pts Concluído: dez. 24, 2025

Remote Code Execution (RCE)

3 módulos
Shellshock (CVE-2014-6271)
1 pts Concluído: dez. 24, 2025
RCE: Introduction
1 pts Concluído: mai. 29, 2025
RCE in PHP
1 pts Concluído: dez. 24, 2025

CVE

1 módulos
CVE-2024-34899
0 pts Concluído: mai. 29, 2025

Labs & Desafios Concluídos

Desafios práticos de cibersegurança concluídos com sucesso

Linux Fundamentals Practice
Desafio
5 pontos jan. 04, 2026 3m
LinuxCommand LineFile System NavigationHidden Filesgrepfind
Compromised 2
Difícil
70 pontos dez. 31, 2025 4h 35m
Advanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationAuthentication BypassPrivilege Escalation
Hex Hunt
Desafio
5 pontos dez. 31, 2025
JavaScriptWeb DevelopmentHexadecimalBrowser DevTools
Stego Hunt
Desafio
5 pontos dez. 31, 2025 3m
SteganographyImage AnalysisWebCTF Basics
Packet Pursuit
Desafio
5 pontos dez. 31, 2025 2m
Network AnalysisPacket CaptureWiresharkProtocol Analysis
Binary Secrets
Desafio
5 pontos dez. 31, 2025
Binary AnalysisHex EditorsData StructuresReverse EngineeringFile Analysis
API Breaker
Desafio
5 pontos dez. 31, 2025
API SecurityWeb HackingLogic FlawsPrivilege EscalationToken ManipulationBase64 EncodingAuthorization Bypass
Memory Forensics
Desafio
5 pontos dez. 31, 2025
Memory ForensicsBinary AnalysisDigital ForensicsPattern RecognitionIncident ResponseTool UsageData RecoveryROT13 Encoding
Session Switch
Desafio
5 pontos dez. 31, 2025 1m
Web SecuritySession ManagementAuthenticationPrivilege EscalationPHP
File Upload Bypass
Desafio
5 pontos dez. 31, 2025 1h 0m
File UploadWeb SecurityBypass TechniquesPHPWeb ShellsInput ValidationSocial EngineeringPost Exploitation
Sonic Cipher
Desafio
5 pontos dez. 31, 2025 1h 0m
SteganographyAudio AnalysisLSBForensicsPython
KeePass Breaker
Desafio
5 pontos dez. 31, 2025 2h 3m
KeePass 4.x SecurityDirect Brute ForcePassword Manager AssessmentModern CryptographySecurity Tool Limitations
JWT Algo Confusion
Desafio
5 pontos dez. 31, 2025 1h 7m
JWTAlgorithm ConfusionRS256HS256Token ForgeryWeb Security
API Logic Flaw
Desafio
5 pontos dez. 31, 2025 3h 13m
API SecurityLogic FlawAuthentication BypassParameter ManipulationPHPWeb Security
Get the Password
Desafio
5 pontos dez. 31, 2025 1m
JavaScriptMD5Rainbow TablesWeb DevelopmentBrowser DevTools
Hack the Box
Difícil
70 pontos dez. 16, 2025 2h 15m
Directory FuzzingX-Forwarded-For SpoofingBruteforceffufCommand InjectionNewline InjectionWeb SecurityLinux EnumerationSUID ExploitationBuffer OverflowARM64 ROPStatic Binary AnalysisBinary ExploitationpwntoolsropperGDB
Hidden CMS Breach
Médio
40 pontos dez. 02, 2025 2h 7m
Web EnumerationWeb SecurityAuthenticationRCEPrivilege EscalationLinux
WP Ultimate
Difícil
70 pontos nov. 17, 2025 3h 56m
WP
Secrets in Source 2
Muito Fácil
5 pontos nov. 17, 2025 1m
Web SecurityHTMLBrowser DevToolsClient-Side SecuritySource Code AnalysisLearning Path
Broken Chain
Difícil
70 pontos nov. 16, 2025 15h 45m
IDOR ExploitationZip Slip VulnerabilityServer-Side Template InjectionInternal Service DiscoveryBackup Service ExploitationPrivilege EscalationSudo Vim Exploitation
Shadow Cracker
Desafio
5 pontos nov. 12, 2025 4m
Password CrackingLinux SecurityJohn the RipperhashcatCryptography
TechNova Infiltration
Médio
40 pontos nov. 10, 2025 1h 9m
Web EnumerationSSHPassword CrackingPrivilege EscalationLinux SecurityCVE Exploitation
Windows Password Cracker
Desafio
5 pontos nov. 05, 2025 3m
Password CrackingWindows SecurityNTLMHashcatJohn the RipperHash Analysis
Office Password Cracker
Desafio
5 pontos out. 30, 2025 6m
Password CrackingOffice SecurityHash ExtractionJohn the RipperHashcat
Regex Bypass to SQLi
Desafio
5 pontos out. 27, 2025 6m
SQL InjectionRegex BypassInput ValidationWeb Application SecuritySQLiteUNION-Based SQLi
Git Exposed
Desafio
5 pontos out. 22, 2025 11m
GitVersion ControlSource Code AnalysisReconnaissanceWeb Security
Backup Hunter
Desafio
5 pontos out. 18, 2025 1h 13m
Web EnumerationFile DiscoveryReconnaissanceInformation Gathering
Type Juggling Bypass
Desafio
5 pontos out. 14, 2025 1m
Web SecurityPHPType JugglingAuthentication BypassHash Analysis
Crack SHA1 Hash
Desafio
5 pontos out. 09, 2025
CryptographyHash CrackingPassword AnalysisSecurity Tools
SQL Injection Test
Desafio
5 pontos out. 08, 2025
SQL InjectionWeb SecurityDatabase SecurityAuthentication BypassInput ValidationPenetration Testing
Hack This Site
Desafio
5 pontos out. 07, 2025 1m
JavaScriptDeobfuscationClient-Side SecurityBrowser DevToolsCode AnalysisAuthentication Bypass
HTTP Smuggling
Desafio
5 pontos out. 07, 2025
HTTP ProtocolRequest SmugglingNetwork ForensicsTraffic AnalysisWeb SecurityPacket Analysis
Email Header Forensics
Desafio
5 pontos out. 03, 2025 3m
Email ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital Investigation
SSRF Validator
Desafio
5 pontos out. 03, 2025 12m
SSRFWeb SecurityURL ManipulationInternal Network AccessProtocol Bypass
FortiPy
Difícil
70 pontos out. 01, 2025 1h 53m
Web Application SecuritySSTIFlask SecuritySSH Brute ForceDatabase EnumerationHash CrackingPrivilege Escalation
Vigenere Stego Hunt
Desafio
5 pontos set. 30, 2025 2m
CryptographySteganographyClassical CiphersImage AnalysisPolyalphabetic Ciphers
Simple Directory Traversal
Desafio
5 pontos set. 29, 2025 8m
Directory TraversalPath InjectionFile System SecurityWeb SecurityInput ValidationPath ManipulationFile Access
YAML Bomb
Desafio
5 pontos set. 26, 2025 7m
YAML DeserializationPyYAML ExploitationConfiguration InjectionPython SecurityUnsafe DeserializationRemote Code ExecutionFile Processing Security
WebDAV Explorer
Desafio
5 pontos set. 25, 2025 1h 56m
WebDAV ExploitationFile UploadDirectory TraversalRemote File AccessHTTP MethodsWeb Server SecurityFile System Enumeration
Prototype Pollution Hunter
Desafio
5 pontos set. 24, 2025 5m
Prototype PollutionNode.js SecurityAPI SecurityJavaScript ExploitationObject ManipulationInput Validation BypassModern Web Vulnerabilities
Race Condition Hunter
Desafio
5 pontos set. 23, 2025 1h 15m
Race ConditionsTiming AttacksConcurrent ExploitationWeb Application Security
IDOR Explorer
Desafio
5 pontos set. 22, 2025 4m
IDORParameter ManipulationWeb Application SecurityAuthorization Bypass
Header Hijacker
Desafio
5 pontos set. 19, 2025 7m
HTTP HeadersSecurity BypassWeb Application SecurityClient-Side Manipulation
Corporate Directory Hunt
Desafio
5 pontos set. 18, 2025 19m
Directory EnumerationWeb ReconnaissanceAdministrative Panel DiscoverySecurity Assessment
File Include Bypass
Desafio
5 pontos set. 17, 2025 1h 8m
Local File InclusionFilter BypassApache AuthenticationPassword Cracking
Cookie Forge
Desafio
5 pontos set. 16, 2025 1h 27m
JWTCookie ManipulationAuthentication BypassPrivilege Escalation
Button Activator
Desafio
5 pontos set. 15, 2025 1m
JavaScriptBrowser DevToolsDOM ManipulationClient-Side Security
RCE Playground
Médio
20 pontos set. 12, 2025 5h 34m
Command InjectionInput Validation BypassRemote Code ExecutionFilter EvasionWeb Security
GraphQL Gateway
Desafio
5 pontos set. 12, 2025 12m
GraphQLAPI SecuritySchema IntrospectionAuthorization BypassInjection
DNS Tunneling Detective
Desafio
5 pontos set. 11, 2025 2m
Network ForensicsDNS AnalysisData ExfiltrationTraffic Analysis
Caesar Shift Decoder
Desafio
5 pontos set. 10, 2025 1m
CryptographyClassical CiphersFrequency AnalysisPattern Recognition
Registry Hijacker
Desafio
5 pontos set. 09, 2025 2m
Docker Registry APIAuthentication BypassContainer SecurityAPI ManipulationRegistry Exploitation
SUID Privilege Hunter
Desafio
5 pontos set. 08, 2025 3m
SUID BinariesPrivilege EscalationCommand InjectionLinux SecurityBinary Exploitation
MongoDB Injector
Desafio
5 pontos set. 05, 2025 6m
NoSQL InjectionMongoDBAuthentication BypassDocument DatabasesWeb Security
Redis Cache Poisoner
Desafio
5 pontos set. 04, 2025 10m
CRLF InjectionRedis Command InjectionCache PoisoningProtocol ManipulationWeb Security
LDAP Injector
Desafio
5 pontos set. 03, 2025 5m
LDAP InjectionAuthentication BypassDirectory ServicesEnterprise SecurityWeb Security
Infiltrator
Fácil
20 pontos set. 01, 2025 55m
JWT ManipulationSSH ExploitationLog InjectionPrivilege EscalationWeb SecurityLinux Security
Corporate Backup Deserializer
Desafio
5 pontos set. 01, 2025 1h 10m
Python PickleEnterprise DeserializationCorporate Backup SystemsDisaster Recovery ExploitationConfiguration Import AttacksEnterprise Security
IP Spoofing Admin
Desafio
5 pontos set. 01, 2025 3h 57m
Web SecurityHTTP HeadersIP SpoofingAccess Control BypassInformation Gathering
Template Injector
Desafio
5 pontos set. 01, 2025 34m
Server-Side Template InjectionFlask SecurityJinja2 ExploitationRemote Code ExecutionWeb Security
WiFi Password Cracker
Desafio
5 pontos ago. 27, 2025 1h 55m
WiFi SecurityWPA CrackingDictionary AttacksWireless Penetration TestingNetwork SecurityPacket Analysis
WEP Cracker
Desafio
5 pontos ago. 27, 2025 3m
Wireless SecurityWEP CrackingRC4 AnalysisPacket AnalysisCryptographic AttacksLegacy Protocol Exploitation
Registry Hunter
Desafio
5 pontos ago. 26, 2025 40m
Digital ForensicsWindows RegistryPersistence AnalysisBase64 DecodingIncident ResponseMalware Analysis
Book Cipher Challenge
Desafio
5 pontos ago. 23, 2025 13m
CryptographyClassical CiphersPattern RecognitionHistorical Cryptanalysis
Admin Portal Breach
Desafio
5 pontos ago. 21, 2025 1m
Client-Side SecurityMD5 CrackingSource Code AnalysisWeb Application SecurityPassword AttacksAuthentication Bypass
Git Secrets Hunter
Desafio
5 pontos ago. 20, 2025 10m
Git ForensicsVersion Control SecurityRepository AnalysisPenetration TestingSecret RecoveryOSINT
ZIP Cracker
Desafio
5 pontos ago. 19, 2025 14m
ZIP Password CrackingJohn the RipperfcrackzipDictionary AttacksBrute ForceArchive Security
Template Injection
Desafio
5 pontos ago. 14, 2025 1h 0m
Server-Side Template InjectionJinja2Flask SecurityWeb Application TestingCode InjectionPrivilege Escalation
PDF Password Cracker
Desafio
5 pontos ago. 13, 2025 1h 6m
PDF SecurityPassword CrackingDictionary AttacksDigital ForensicsDocument SecurityBrute Force Attacks
Shell Command Scanner
Desafio
5 pontos ago. 12, 2025 1h 2m
Command InjectionWeb SecurityShell CommandsSystem AdministrationHTTP Parameter ManipulationSecurity Assessment
LFI Log Poison
Desafio
5 pontos ago. 11, 2025 1h 0m
Local File InclusionUser-Agent Log PoisoningRemote Code ExecutionDirectory TraversalWeb SecurityApache SecuritySystem AdministrationLog Analysis
NoSQL Injection
Desafio
5 pontos ago. 08, 2025 2h 0m
NoSQL InjectionMongoDBVisibility ControlsAccess Control BypassSecurity TestingOperator Exploitation
Internal
Difícil
70 pontos ago. 06, 2025 11h 29m
Command InjectionLinux CapabilitiesPrivilege EscalationReverse ShellWeb Application SecuritySystem EnumerationNetwork Reconnaissance
URL Scanner
Desafio
5 pontos ago. 06, 2025 1h 15m
SSRFServer-Side Request ForgeryAWS MetadataCloud SecurityIAM CredentialsNetwork SecurityWeb SecurityAWS EC2
Alpwned
Médio
40 pontos ago. 05, 2025 9h 34m
SQL InjectionAuthentication BypassSSHLinux Privilege EscalationFile PermissionsWeb Application Security
CSRF Bank Transfer
Desafio
5 pontos ago. 05, 2025 1h 0m
CSRFCross-Site Request ForgerySession SecurityWeb SecuritySocial EngineeringForm SecurityHTTP SecurityState Management
XSS Playground
Desafio
5 pontos ago. 04, 2025 1h 0m
XSSCross-Site ScriptingStored XSSSession HijackingJavaScriptWeb SecurityClient-Side SecurityDOM Manipulation
Path Traversal
Desafio
5 pontos ago. 02, 2025 4h 0m
Path TraversalCGIWeb SecurityFile AccessDirectory TraversalInput Validation
JWT Claims Manipulation
Desafio
5 pontos jul. 31, 2025 1h 0m
JWTClaims ManipulationPrivilege EscalationAuthentication BypassTime-Based AttacksSignature Cracking
SQL Injection
Desafio
5 pontos jul. 30, 2025 2h 0m
SQL InjectionDatabase SecurityWeb SecurityBlind SQLiTime-based SQLiBoolean-based SQLiDatabase EnumerationVulnerability Assessment
XXE Exposed
Desafio
5 pontos jul. 29, 2025 1h 0m
XXEXML SecurityFile DisclosureExternal EntityWeb SecurityVulnerability Assessment
JWT Bypass
Desafio
5 pontos jul. 25, 2025 1h 0m
JWTWeb SecurityToken AuthenticationCryptography
Auth Bypass
Desafio
5 pontos jul. 24, 2025 1h 0m
SQL InjectionAuthentication BypassWeb SecurityDatabase Security
Ping Pwn
Desafio
5 pontos jul. 23, 2025 18m
Command InjectionWeb ExploitationService DiscoveryNetwork Security
Log Hunter
Desafio
5 pontos jul. 22, 2025 1h 0m
Log AnalysisWeb SecurityIncident ResponsePattern RecognitionFile DiscoveryCommand Line ToolsForensicsHTTP ProtocolAttack DetectionSecurity Assessment
Flask Error
Desafio
5 pontos jul. 17, 2025 2h 0m
FlaskDebug ModePythonWeb SecurityMemory Analysis
Rail Fence
Desafio
5 pontos jul. 16, 2025 1h 0m
CryptographyTransposition CipherRail FencePattern RecognitionPython
Pixel Puzzler
Desafio
5 pontos jul. 14, 2025 1h 0m
SteganographyImage AnalysisLSBForensicsPython
PDF Trap
Desafio
5 pontos jul. 11, 2025 1h 0m
PDF ForensicsFile AnalysisMetadataHidden DataForensic Tools
Blockchain Secrets
Desafio
5 pontos jul. 10, 2025 1h 0m
Blockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic Analysis
Corporate Breach 2
Desafio
5 pontos jul. 09, 2025 1h 0m
Web SecurityPHPLFIPath ManipulationFile Inclusion
Corporate Breach
Desafio
5 pontos jul. 08, 2025 1h 0m
Web SecurityPHPLFIPassword CrackingAuthentication BypassDirectory Traversal
DNS Exfil
Desafio
5 pontos jul. 07, 2025 33m
Network AnalysisDNSPacket AnalysisData ExfiltrationBase64 Decoding
Crypto Cipher
Desafio
5 pontos jul. 04, 2025 1h 0m
CryptanalysisClassical CryptoPattern RecognitionData Encoding
Snapchat Exposed
Desafio
5 pontos jul. 02, 2025 1h 0m
JenkinsCI/CDDevOpsWeb SecurityPentestAutomation
Red is Dead
Desafio
5 pontos jun. 30, 2025 1h 0m
Network ReconnaissanceService DiscoveryDatabase ForensicsData EncodingCLI UsageData RecoveryIncident ResponseBase64Hex EncodingRedis
QR Code Quest
Desafio
5 pontos jun. 25, 2025 1h 0m
QR Code AnalysisImage AnalysisData ExtractionSteganographyDigital Forensics
Query Quake
Médio
40 pontos jun. 25, 2025 12h 50m
MYSQLIRCE
Base64 Detective
Desafio
5 pontos jun. 24, 2025 1h 0m
Base64Web InspectionBrowser DevToolsData EncodingHTML Analysis
AlVault
Médio
40 pontos jun. 06, 2025 6h 24m
WEB
FiPloit
Fácil
20 pontos jun. 02, 2025 1h 0m
Local File InclusionFile Upload BypassPHP SecurityDirectory TraversalWeb Shell ExploitationPrivilege EscalationLog Analysis
Compromised 1
Médio
40 pontos mai. 29, 2025 1h 10m
Apache TomcatWeb Application SecurityWAR DeploymentDefault CredentialsPrivilege EscalationLinuxSudoWeb Shells
Traversed
Médio
40 pontos mai. 29, 2025 46m
GIT
Matsudo
Médio
40 pontos mai. 29, 2025 26m
SSHBrute ForcePrivilege EscalationLinuxSudoNetwork ReconnaissancePenetration Testing
Beyond Echo
Médio
20 pontos mai. 29, 2025 1h 0m
PHPRCE
Cronpocalypse
Fácil
20 pontos mai. 29, 2025 3h 0m
SSH
Secrets in Source
Muito Fácil
5 pontos mai. 29, 2025 2m
HTMLLearning Path
Nmap Lab 102
Muito Fácil
10 pontos mai. 29, 2025 19m
TELNETLearning Path
Include me
Fácil
10 pontos mai. 29, 2025 4m
PHPLFI
Anonymous 2
Fácil
10 pontos mai. 29, 2025 38m
FTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem Exploitation
Anonymous
Fácil
10 pontos mai. 29, 2025 1h 37m
FTP
Onboarding Lab: Access and Flags
Muito Fácil
5 pontos mai. 29, 2025 35m
NetworkingReconnaissanceCommand LineWeb ServicesLearning Path
Spoof!
Fácil
10 pontos mai. 28, 2025 4m
IP SPOOFING
Hack the Cookie
Muito Fácil
5 pontos mai. 28, 2025 2h 1m
WEBLearning Path
Hack the Login
Muito Fácil
5 pontos mai. 28, 2025 6m
WebAuthenticationClient-Side SecurityLearning Path

Progresso dos Cursos

Seus caminhos de aprendizado e módulos

CVE
1 / 1 módulos concluídos
100%
Nmap Mastery: Dominate Network Scanning
4 / 4 módulos concluídos
100%
HTTP Header Manipulation: IP Spoofing
3 / 3 módulos concluídos
100%
Ataques Web
12 / 12 módulos concluídos
100%
Cheat Sheets de Segurança
10 / 10 módulos concluídos
100%
HDNA Ethical Hacking Course
5 / 5 módulos concluídos
100%
Ataques JWT
4 / 4 módulos concluídos
100%
Pentest de Rede
10 / 10 módulos concluídos
100%
Remote Code Execution (RCE)
3 / 3 módulos concluídos
100%
Quebra de Senhas
10 / 10 módulos concluídos
100%
Junte-se a 5.000+ hackers aprendendo cibersegurança com labs práticos. Criar Conta