bloman
Grandmaster
Live Ranking
#10
Best: #4
Total Points
674
Total Earned
Labs Completed
39
41 User • 13 Root
Modules
3
Validated
First Bloods
4
First to Complete
Best Streak
1
Days
Skills Acquired
Technical skills practiced through completed labs
Server-Side Template InjectionFlask SecurityJinja2 ExploitationRemote Code ExecutionWeb SecurityJWT ManipulationSSH ExploitationLog InjectionPrivilege EscalationLinux SecurityZIP Password CrackingJohn the RipperfcrackzipDictionary AttacksBrute ForceArchive SecurityKeePass 4.x SecurityDirect Brute ForcePassword Manager AssessmentModern CryptographySecurity Tool LimitationsJinja2Web Application TestingCode InjectionPDF SecurityPassword CrackingDigital ForensicsDocument SecurityBrute Force AttacksCommand InjectionShell CommandsSystem AdministrationHTTP Parameter ManipulationSecurity AssessmentLocal File InclusionUser-Agent Log PoisoningDirectory TraversalApache SecurityLog AnalysisCryptographyTransposition CipherRail FencePattern RecognitionPythonPDF ForensicsFile AnalysisMetadataHidden DataForensic ToolsBlockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic AnalysisPHPLFIAuthentication BypassNetwork AnalysisDNSPacket AnalysisData ExfiltrationBase64 DecodingBinary AnalysisHex EditorsData StructuresReverse EngineeringJavaScriptMD5Rainbow TablesWeb DevelopmentBrowser DevToolsPacket CaptureWiresharkProtocol AnalysisSteganographyImage AnalysisWebCTF BasicsHexadecimalFile Upload BypassPHP SecurityWeb Shell ExploitationAdvanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationApache TomcatWeb Application SecurityWAR DeploymentDefault CredentialsLinuxSudoWeb ShellsLinux CapabilitiesReverse ShellSystem EnumerationNetwork ReconnaissanceIDOR ExploitationZip Slip VulnerabilityInternal Service DiscoveryBackup Service ExploitationSudo Vim ExploitationWPMYSQLIRCESSHPenetration TestingWEBGITHTMLLearning PathIP SPOOFINGFTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem ExploitationFTPTELNETNetworkingReconnaissanceCommand LineWeb ServicesJS
Completed Modules
Educational modules successfully validated
HTTP Header Manipulation: IP Spoofing
1 modulesManipulating Headers
Nmap Mastery: Dominate Network Scanning
1 modulesIntroduction to Nmap
HDNA Ethical Hacking Course
1 modulesCourse Summary
Completed Labs & Challenges
Hands-on cybersecurity challenges successfully completed
Template Injector
Challenge
Server-Side Template InjectionFlask SecurityJinja2 ExploitationRemote Code ExecutionWeb Security
Infiltrator
Easy
JWT ManipulationSSH ExploitationLog InjectionPrivilege EscalationWeb SecurityLinux Security
ZIP Cracker
Challenge
ZIP Password CrackingJohn the RipperfcrackzipDictionary AttacksBrute ForceArchive Security
KeePass Breaker
Challenge
KeePass 4.x SecurityDirect Brute ForcePassword Manager AssessmentModern CryptographySecurity Tool Limitations
Template Injection
Challenge
Server-Side Template InjectionJinja2Flask SecurityWeb Application TestingCode InjectionPrivilege Escalation
PDF Password Cracker
Challenge
PDF SecurityPassword CrackingDictionary AttacksDigital ForensicsDocument SecurityBrute Force Attacks
Shell Command Scanner
Challenge
Command InjectionWeb SecurityShell CommandsSystem AdministrationHTTP Parameter ManipulationSecurity Assessment
LFI Log Poison
Challenge
Local File InclusionUser-Agent Log PoisoningRemote Code ExecutionDirectory TraversalWeb SecurityApache SecuritySystem AdministrationLog Analysis
Rail Fence
Challenge
CryptographyTransposition CipherRail FencePattern RecognitionPython
PDF Trap
Challenge
PDF ForensicsFile AnalysisMetadataHidden DataForensic Tools
Blockchain Secrets
Challenge
Blockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic Analysis
Corporate Breach
Challenge
Web SecurityPHPLFIPassword CrackingAuthentication BypassDirectory Traversal
DNS Exfil
Challenge
Network AnalysisDNSPacket AnalysisData ExfiltrationBase64 Decoding
Binary Secrets
Challenge
Binary AnalysisHex EditorsData StructuresReverse EngineeringFile Analysis
Get the Password
Challenge
JavaScriptMD5Rainbow TablesWeb DevelopmentBrowser DevTools
Packet Pursuit
Challenge
Network AnalysisPacket CaptureWiresharkProtocol Analysis
Stego Hunt
Challenge
SteganographyImage AnalysisWebCTF Basics
Hex Hunt
Challenge
JavaScriptWeb DevelopmentHexadecimalBrowser DevTools
FiPloit
Easy
Local File InclusionFile Upload BypassPHP SecurityDirectory TraversalWeb Shell ExploitationPrivilege EscalationLog Analysis
Compromised 2
Hard
Advanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationAuthentication BypassPrivilege Escalation
Compromised 1
Medium
Apache TomcatWeb Application SecurityWAR DeploymentDefault CredentialsPrivilege EscalationLinuxSudoWeb Shells
Internal
Hard
Command InjectionLinux CapabilitiesPrivilege EscalationReverse ShellWeb Application SecuritySystem EnumerationNetwork Reconnaissance
Broken Chain
Hard
IDOR ExploitationZip Slip VulnerabilityServer-Side Template InjectionInternal Service DiscoveryBackup Service ExploitationPrivilege EscalationSudo Vim Exploitation
WP Ultimate
Hard
WP
Query Quake
Medium
MYSQLIRCE
Beyond Echo
Medium
PHPRCE
Matsudo
Medium
SSHBrute ForcePrivilege EscalationLinuxSudoNetwork ReconnaissancePenetration Testing
AlVault
Medium
WEB
Traversed
Medium
GIT
Cronpocalypse
Easy
SSH
Secrets in Source
Very Easy
HTMLLearning Path
Hack the Cookie
Very Easy
WEBLearning Path
Spoof!
Easy
IP SPOOFING
Anonymous 2
Easy
FTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem Exploitation
Include me
Easy
PHPLFI
Anonymous
Easy
FTP
Nmap Lab 102
Very Easy
TELNETLearning Path
Learning Lab 101
Very Easy
NetworkingReconnaissanceCommand LineWeb ServicesLearning Path
Hack the Login
Very Easy
JSLearning Path
Courses Progress
Your learning paths and modules