Abo3Leo
Grandmaster
Live Ranking
#9
Best: #9
Total Points
917
Total Earned
Labs Completed
45
46 User • 16 Root
Modules
2
Validated
First Bloods
0
First to Complete
Best Streak
7
Days
Skills Acquired
Technical skills practiced through completed labs
XSSCross-Site ScriptingStored XSSSession HijackingJavaScriptWeb SecurityClient-Side SecurityDOM ManipulationSQL InjectionDatabase SecurityBlind SQLiTime-based SQLiBoolean-based SQLiDatabase EnumerationVulnerability AssessmentHTTP HeadersIP SpoofingAccess Control BypassInformation GatheringBase64Web InspectionBrowser DevToolsData EncodingHTML AnalysisIDOR ExploitationZip Slip VulnerabilityServer-Side Template InjectionInternal Service DiscoveryBackup Service ExploitationPrivilege EscalationSudo Vim ExploitationDirectory FuzzingX-Forwarded-For SpoofingBruteforceffufCommand InjectionNewline InjectionLinux EnumerationSUID ExploitationBuffer OverflowARM64 ROPStatic Binary AnalysisBinary ExploitationpwntoolsropperGDBWEBWeb EnumerationAuthenticationRCELinuxMYSQLIEmail ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital InvestigationSSRFURL ManipulationInternal Network AccessProtocol BypassHTTP ProtocolRequest SmugglingNetwork ForensicsTraffic AnalysisPacket AnalysisCryptographyHash CrackingPassword AnalysisSecurity ToolsLinux CapabilitiesReverse ShellWeb Application SecuritySystem EnumerationNetwork ReconnaissanceRegex BypassInput ValidationSQLiteUNION-Based SQLiPassword CrackingOffice SecurityHash ExtractionJohn the RipperHashcatWindows SecurityNTLMHash AnalysisLinux SecurityhashcatWeb DevelopmentHexadecimalSSHAdvanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationAuthentication BypassInput Validation BypassRemote Code ExecutionFilter EvasionLog AnalysisIncident ResponsePattern RecognitionFile DiscoveryCommand Line ToolsForensicsAttack DetectionSecurity AssessmentWeb ExploitationService DiscoveryNetwork SecurityDeobfuscationCode AnalysisPenetration TestingSSTIFlask SecuritySSH Brute ForceBrute ForceSudoGITApache TomcatWAR DeploymentDefault CredentialsWeb ShellsPHPFTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem ExploitationIP SPOOFINGFTPLFITELNETLearning PathLocal File InclusionFile Upload BypassPHP SecurityDirectory TraversalWeb Shell ExploitationJWT ManipulationSSH ExploitationLog InjectionHTMLSource Code AnalysisWebNetworkingReconnaissanceCommand LineWeb Services
Completed Modules
Educational modules successfully validated
HDNA Ethical Hacking Course
2 modules1. Legal & Compliance
Course Summary
Completed Labs & Challenges
Hands-on cybersecurity challenges successfully completed
XSS Playground
Challenge
XSSCross-Site ScriptingStored XSSSession HijackingJavaScriptWeb SecurityClient-Side SecurityDOM Manipulation
SQL Injection
Challenge
SQL InjectionDatabase SecurityWeb SecurityBlind SQLiTime-based SQLiBoolean-based SQLiDatabase EnumerationVulnerability Assessment
IP Spoofing Admin
Challenge
Web SecurityHTTP HeadersIP SpoofingAccess Control BypassInformation Gathering
Base64 Detective
Challenge
Base64Web InspectionBrowser DevToolsData EncodingHTML Analysis
Broken Chain
Hard
IDOR ExploitationZip Slip VulnerabilityServer-Side Template InjectionInternal Service DiscoveryBackup Service ExploitationPrivilege EscalationSudo Vim Exploitation
Hack the Box
Hard
Directory FuzzingX-Forwarded-For SpoofingBruteforceffufCommand InjectionNewline InjectionWeb SecurityLinux EnumerationSUID ExploitationBuffer OverflowARM64 ROPStatic Binary AnalysisBinary ExploitationpwntoolsropperGDB
AlVault
Medium
WEB
Hidden CMS Breach
Medium
Web EnumerationWeb SecurityAuthenticationRCEPrivilege EscalationLinux
Query Quake
Medium
MYSQLIRCE
Email Header Forensics
Challenge
Email ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital Investigation
SSRF Validator
Challenge
SSRFWeb SecurityURL ManipulationInternal Network AccessProtocol Bypass
HTTP Smuggling
Challenge
HTTP ProtocolRequest SmugglingNetwork ForensicsTraffic AnalysisWeb SecurityPacket Analysis
Crack SHA1 Hash
Challenge
CryptographyHash CrackingPassword AnalysisSecurity Tools
Internal
Hard
Command InjectionLinux CapabilitiesPrivilege EscalationReverse ShellWeb Application SecuritySystem EnumerationNetwork Reconnaissance
Regex Bypass to SQLi
Challenge
SQL InjectionRegex BypassInput ValidationWeb Application SecuritySQLiteUNION-Based SQLi
Office Password Cracker
Challenge
Password CrackingOffice SecurityHash ExtractionJohn the RipperHashcat
Windows Password Cracker
Challenge
Password CrackingWindows SecurityNTLMHashcatJohn the RipperHash Analysis
Shadow Cracker
Challenge
Password CrackingLinux SecurityJohn the RipperhashcatCryptography
Hex Hunt
Challenge
JavaScriptWeb DevelopmentHexadecimalBrowser DevTools
Cronpocalypse
Easy
SSH
Compromised 2
Hard
Advanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationAuthentication BypassPrivilege Escalation
RCE Playground
Medium
Command InjectionInput Validation BypassRemote Code ExecutionFilter EvasionWeb Security
TechNova Infiltration
Medium
Web EnumerationSSHPassword CrackingPrivilege EscalationLinux SecurityCVE Exploitation
Log Hunter
Challenge
Log AnalysisWeb SecurityIncident ResponsePattern RecognitionFile DiscoveryCommand Line ToolsForensicsHTTP ProtocolAttack DetectionSecurity Assessment
Ping Pwn
Challenge
Command InjectionWeb ExploitationService DiscoveryNetwork Security
Auth Bypass
Challenge
SQL InjectionAuthentication BypassWeb SecurityDatabase Security
Hack This Site
Challenge
JavaScriptDeobfuscationClient-Side SecurityBrowser DevToolsCode AnalysisAuthentication Bypass
SQL Injection Test
Challenge
SQL InjectionWeb SecurityDatabase SecurityAuthentication BypassInput ValidationPenetration Testing
FortiPy
Hard
Web Application SecuritySSTIFlask SecuritySSH Brute ForceDatabase EnumerationHash CrackingPrivilege Escalation
Matsudo
Medium
SSHBrute ForcePrivilege EscalationLinuxSudoNetwork ReconnaissancePenetration Testing
Traversed
Medium
GIT
Compromised 1
Medium
Apache TomcatWeb Application SecurityWAR DeploymentDefault CredentialsPrivilege EscalationLinuxSudoWeb Shells
Beyond Echo
Medium
PHPRCE
Anonymous 2
Easy
FTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem Exploitation
Spoof!
Easy
IP SPOOFING
Anonymous
Easy
FTP
Include me
Easy
PHPLFI
Nmap Lab 102
Very Easy
TELNETLearning Path
Hack the Cookie
Very Easy
WEBLearning Path
FiPloit
Easy
Local File InclusionFile Upload BypassPHP SecurityDirectory TraversalWeb Shell ExploitationPrivilege EscalationLog Analysis
Infiltrator
Easy
JWT ManipulationSSH ExploitationLog InjectionPrivilege EscalationWeb SecurityLinux Security
Secrets in Source 2
Very Easy
Web SecurityHTMLBrowser DevToolsClient-Side SecuritySource Code AnalysisLearning Path
Secrets in Source
Very Easy
HTMLLearning Path
Hack the Login
Very Easy
WebAuthenticationClient-Side SecurityLearning Path
Onboarding Lab: Access and Flags
Very Easy
NetworkingReconnaissanceCommand LineWeb ServicesLearning Path
Courses Progress
Your learning paths and modules