Profile Avatar

captainB

✦ Legend ✦
#4 Live Ranking
16277 Total XP
116 Labs Completed 0 First Bloods 1 Streak 9 Best
+1100 this month
Israel Joined June 2025

Activity

142 active days in the last year
Less More

Rank Progress

✦ Legend ✦
Max Rank

Achievements

Streak Starter
Streak Master
Lab Rat
Lab Expert
Lab Master
Scholar
Top 10
Web ExploitationHeadless CMSAPI EnumerationInformation DisclosureRevision HistoryToken AbusePrivilege EscalationWeb Application SecurityMass AssignmentCommand InjectionHash CrackingPassword ReuseLinux Privilege EscalationLinux CapabilitiesPenetration TestingPythonPickle DeserializationRCELinuxHost Header InjectionPassword Reset PoisoningHTTP HeadersIDORAPI SecurityPath TraversalAccess ControlDirectory FuzzingX-Forwarded-For SpoofingBruteforceffufNewline InjectionWeb SecurityLinux EnumerationSUID ExploitationBuffer OverflowARM64 ROPStatic Binary AnalysisBinary ExploitationpwntoolsropperGDBWeb EnumerationAuthenticationClient-Side SecuritySecurity Through ObscurityBrowser DevToolsView SourceBroken Access ControlHTMLPassword CrackingLinux SecurityJohn the RipperhashcatCryptographyWindows SecurityNTLMHashcatHash AnalysisSSHCVE ExploitationGitVersion ControlSource Code AnalysisReconnaissancePHPType JugglingAuthentication BypassPassword AnalysisSecurity ToolsSQL InjectionDatabase SecurityInput ValidationJavaScriptDeobfuscationCode AnalysisHTTP ProtocolRequest SmugglingNetwork ForensicsTraffic AnalysisPacket AnalysisEmail ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital InvestigationSSRFURL ManipulationInternal Network AccessProtocol BypassSSTIFlask SecuritySSH Brute ForceDatabase EnumerationSteganographyClassical CiphersImage AnalysisPolyalphabetic CiphersDirectory TraversalPath InjectionFile System SecurityPath ManipulationFile AccessWebDAV ExploitationFile UploadRemote File AccessHTTP MethodsWeb Server SecurityFile System EnumerationYAML DeserializationPyYAML ExploitationConfiguration InjectionPython SecurityUnsafe DeserializationRemote Code ExecutionFile Processing SecurityRace ConditionsTiming AttacksConcurrent ExploitationPrototype PollutionNode.js SecurityJavaScript ExploitationObject ManipulationInput Validation BypassModern Web VulnerabilitiesParameter ManipulationAuthorization BypassSecurity BypassClient-Side ManipulationDirectory EnumerationWeb ReconnaissanceAdministrative Panel DiscoverySecurity AssessmentLocal File InclusionFilter BypassApache AuthenticationNetwork AnalysisPacket CaptureWiresharkProtocol AnalysisShell CommandsSystem AdministrationHTTP Parameter ManipulationUser-Agent Log PoisoningApache SecurityLog AnalysisBypass TechniquesWeb ShellsSocial EngineeringPost ExploitationJWTToken AuthenticationLogic FlawFlaskDebug ModeMemory AnalysisCryptanalysisClassical CryptoPattern RecognitionData EncodingJenkinsCI/CDDevOpsPentestAutomationMemory ForensicsBinary AnalysisDigital ForensicsIncident ResponseTool UsageData RecoveryROT13 EncodingNetwork ReconnaissanceService DiscoveryDatabase ForensicsCLI UsageBase64Hex EncodingRedisQR Code AnalysisData ExtractionWeb InspectionHTML AnalysisHex EditorsData StructuresReverse EngineeringFile AnalysisMD5Rainbow TablesWeb DevelopmentWebCTF BasicsHexadecimalDOM ManipulationCookie ManipulationGraphQLSchema IntrospectionInjectionDNS AnalysisData ExfiltrationFrequency AnalysisDocker Registry APIContainer SecurityAPI ManipulationRegistry ExploitationJWT ManipulationSSH ExploitationLog InjectionSUID BinariesNoSQL InjectionMongoDBDocument DatabasesCRLF InjectionRedis Command InjectionCache PoisoningProtocol ManipulationLDAP InjectionDirectory ServicesEnterprise SecurityServer-Side Template InjectionJinja2 ExploitationFilter EvasionWiFi SecurityWPA CrackingDictionary AttacksWireless Penetration TestingNetwork SecurityIP SpoofingAccess Control BypassInformation GatheringWireless SecurityWEP CrackingRC4 AnalysisCryptographic AttacksLegacy Protocol ExploitationWindows RegistryPersistence AnalysisMalware AnalysisHistorical CryptanalysisMD5 CrackingPassword AttacksGit ForensicsVersion Control SecurityRepository AnalysisSecret RecoveryPython PickleEnterprise DeserializationCorporate Backup SystemsDisaster Recovery ExploitationConfiguration Import AttacksKeePass 4.x SecurityDirect Brute ForcePassword Manager AssessmentModern CryptographySecurity Tool LimitationsZIP Password CrackingfcrackzipBrute ForceArchive SecurityJinja2Web Application TestingCode InjectionCGIPDF SecurityDocument SecurityBrute Force AttacksVisibility ControlsSecurity TestingOperator ExploitationServer-Side Request ForgeryAWS MetadataCloud SecurityIAM CredentialsAWS EC2CSRFCross-Site Request ForgerySession SecurityForm SecurityHTTP SecurityState ManagementFile PermissionsXSSCross-Site ScriptingStored XSSSession HijackingClaims ManipulationTime-Based AttacksSignature CrackingBlind SQLiTime-based SQLiBoolean-based SQLiVulnerability AssessmentXXEXML SecurityFile DisclosureExternal EntityAlgorithm ConfusionRS256HS256Token ForgeryFile DiscoveryCommand Line ToolsForensicsAttack DetectionTransposition CipherRail FenceAudio AnalysisLSBPDF ForensicsMetadataHidden DataForensic ToolsBlockchain AnalysisBitcoinOP_RETURNHex DecodingForensic AnalysisLFIFile InclusionDNSMYSQLISession ManagementReverse ShellSystem EnumerationIDOR ExploitationZip Slip VulnerabilityInternal Service DiscoveryBackup Service ExploitationSudo Vim ExploitationWPAdvanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationSudoFile Upload BypassPHP SecurityWeb Shell ExploitationBroken AuthenticationDeveloper ToolsLearning PathWeb HackingLogic FlawsToken ManipulationBase64 EncodingGITIP SPOOFINGApache TomcatWAR DeploymentDefault CredentialsWEBFTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem ExploitationFTPNmapNmap CommandsTelnetPort ScanningCapture The FlagCTFFlag SubmissionUUIDGetting StartedCyber Security FundamentalsView Source CodeCookie PoisoningSession Tampering
Mythos Leak - Headless CMS Draft Exposure
Mythos Leak - Headless CMS Draft Exposure Medium
400 XP Jun 09, 2026
Pwnify - Web Application Penetration Testing
Pwnify - Web Application Penetration Testing Hard
700 XP Jun 08, 2026
Pickle Jar
Pickle Jar Medium
400 XP May 11, 2026
Host Hijack
Host Hijack Medium
400 XP May 10, 2026
ClearDesk
ClearDesk Medium
400 XP May 10, 2026
Hack the Box
Hack the Box Hard
700 XP Dec 23, 2025
Hidden CMS Breach
Hidden CMS Breach Medium
400 XP Dec 10, 2025
Secrets in Source 2: Bypass Security Through Obscurity
Secrets in Source 2: Bypass Security Through Obscurity Very Easy
50 XP Nov 19, 2025
Shadow Cracker
Shadow Cracker Challenge
50 XP Nov 13, 2025
Windows Password Cracker
Windows Password Cracker Challenge
50 XP Nov 13, 2025
TechNova Infiltration
TechNova Infiltration Medium
400 XP Nov 13, 2025
Git Exposed
Git Exposed Challenge
50 XP Oct 23, 2025
Type Juggling Bypass
Type Juggling Bypass Challenge
50 XP Oct 15, 2025
Crack SHA1 Hash
Crack SHA1 Hash Challenge
50 XP Oct 10, 2025
SQL Injection Test
SQL Injection Test Challenge
50 XP Oct 10, 2025
Hack This Site
Hack This Site Challenge
50 XP Oct 08, 2025
HTTP Smuggling
HTTP Smuggling Challenge
50 XP Oct 08, 2025
Email Header Forensics
Email Header Forensics Challenge
50 XP Oct 03, 2025
SSRF Validator
SSRF Validator Challenge
50 XP Oct 03, 2025
FortiPy
FortiPy Hard
700 XP Oct 02, 2025
Vigenere Stego Hunt
Vigenere Stego Hunt Challenge
50 XP Oct 01, 2025
Simple Directory Traversal
Simple Directory Traversal Challenge
50 XP Sep 30, 2025
WebDAV Explorer
WebDAV Explorer Challenge
50 XP Sep 26, 2025
YAML Bomb
YAML Bomb Challenge
50 XP Sep 26, 2025
Race Condition Hunter
Race Condition Hunter Challenge
50 XP Sep 24, 2025
Prototype Pollution Hunter
Prototype Pollution Hunter Challenge
50 XP Sep 24, 2025
IDOR Explorer
IDOR Explorer Challenge
50 XP Sep 24, 2025
Header Hijacker
Header Hijacker Challenge
50 XP Sep 21, 2025
Corporate Directory Hunt
Corporate Directory Hunt Challenge
50 XP Sep 21, 2025
File Include Bypass
File Include Bypass Challenge
50 XP Sep 21, 2025
Packet Pursuit
Packet Pursuit Challenge
50 XP Sep 20, 2025
Shell Command Scanner
Shell Command Scanner Challenge
50 XP Sep 19, 2025
LFI Log Poison
LFI Log Poison Challenge
50 XP Sep 19, 2025
File Upload Bypass
File Upload Bypass Challenge
50 XP Sep 19, 2025
JWT Bypass
JWT Bypass Challenge
50 XP Sep 19, 2025
API Logic Flaw
API Logic Flaw Challenge
50 XP Sep 19, 2025
Flask Error
Flask Error Challenge
50 XP Sep 19, 2025
Crypto Cipher
Crypto Cipher Challenge
50 XP Sep 19, 2025
Snapchat Exposed
Snapchat Exposed Challenge
50 XP Sep 19, 2025
Memory Forensics
Memory Forensics Challenge
50 XP Sep 19, 2025
Red is Dead
Red is Dead Challenge
50 XP Sep 19, 2025
QR Code Quest
QR Code Quest Challenge
50 XP Sep 19, 2025
Base64 Detective
Base64 Detective Challenge
50 XP Sep 19, 2025
Binary Secrets
Binary Secrets Challenge
50 XP Sep 19, 2025
Get the Password
Get the Password Challenge
50 XP Sep 19, 2025
Stego Hunt
Stego Hunt Challenge
50 XP Sep 19, 2025
Hex Hunt
Hex Hunt Challenge
50 XP Sep 19, 2025
Button Activator
Button Activator Challenge
50 XP Sep 16, 2025
Cookie Forge
Cookie Forge Challenge
50 XP Sep 16, 2025
GraphQL Gateway
GraphQL Gateway Challenge
50 XP Sep 13, 2025
DNS Tunneling Detective
DNS Tunneling Detective Challenge
50 XP Sep 13, 2025
Caesar Shift Decoder
Caesar Shift Decoder Challenge
50 XP Sep 10, 2025
Registry Hijacker
Registry Hijacker Challenge
50 XP Sep 09, 2025
Infiltrator
Infiltrator Easy
200 XP Sep 08, 2025
SUID Privilege Hunter
SUID Privilege Hunter Challenge
50 XP Sep 08, 2025
MongoDB Injector
MongoDB Injector Challenge
50 XP Sep 07, 2025
Redis Cache Poisoner
Redis Cache Poisoner Challenge
50 XP Sep 07, 2025
LDAP Injector
LDAP Injector Challenge
50 XP Sep 03, 2025
Template Injector
Template Injector Challenge
50 XP Sep 02, 2025
RCE Playground
RCE Playground Medium
200 XP Sep 02, 2025
WiFi Password Cracker
WiFi Password Cracker Challenge
50 XP Aug 28, 2025
IP Spoofing Admin
IP Spoofing Admin Challenge
50 XP Aug 28, 2025
WEP Cracker
WEP Cracker Challenge
50 XP Aug 27, 2025
Registry Hunter
Registry Hunter Challenge
50 XP Aug 27, 2025
Book Cipher Challenge
Book Cipher Challenge Challenge
50 XP Aug 22, 2025
Admin Portal Breach
Admin Portal Breach Challenge
50 XP Aug 22, 2025
Git Secrets Hunter
Git Secrets Hunter Challenge
50 XP Aug 21, 2025
Corporate Backup Deserializer
Corporate Backup Deserializer Challenge
50 XP Aug 19, 2025
KeePass Breaker
KeePass Breaker Challenge
50 XP Aug 19, 2025
ZIP Cracker
ZIP Cracker Challenge
50 XP Aug 19, 2025
Template Injection
Template Injection Challenge
50 XP Aug 14, 2025
Path Traversal
Path Traversal Challenge
50 XP Aug 13, 2025
PDF Password Cracker
PDF Password Cracker Challenge
50 XP Aug 13, 2025
NoSQL Injection
NoSQL Injection Challenge
50 XP Aug 08, 2025
URL Scanner
URL Scanner Challenge
50 XP Aug 06, 2025
CSRF Bank Transfer
CSRF Bank Transfer Challenge
50 XP Aug 05, 2025
Alpwned
Alpwned Medium
400 XP Aug 04, 2025
XSS Playground
XSS Playground Challenge
50 XP Aug 04, 2025
JWT Claims Manipulation
JWT Claims Manipulation Challenge
50 XP Jul 31, 2025
SQL Injection
SQL Injection Challenge
50 XP Jul 30, 2025
XXE Exposed
XXE Exposed Challenge
50 XP Jul 29, 2025
JWT Algo Confusion
JWT Algo Confusion Challenge
50 XP Jul 28, 2025
Auth Bypass
Auth Bypass Challenge
50 XP Jul 24, 2025
Ping Pwn
Ping Pwn Challenge
50 XP Jul 23, 2025
Log Hunter
Log Hunter Challenge
50 XP Jul 22, 2025
Rail Fence
Rail Fence Challenge
50 XP Jul 16, 2025
Sonic Cipher
Sonic Cipher Challenge
50 XP Jul 15, 2025
Pixel Puzzler
Pixel Puzzler Challenge
50 XP Jul 14, 2025
PDF Trap
PDF Trap Challenge
50 XP Jul 11, 2025
Blockchain Secrets
Blockchain Secrets Challenge
50 XP Jul 10, 2025
Corporate Breach 2
Corporate Breach 2 Challenge
50 XP Jul 09, 2025
Corporate Breach
Corporate Breach Challenge
50 XP Jul 08, 2025
DNS Exfil
DNS Exfil Challenge
50 XP Jul 07, 2025
Query Quake
Query Quake Medium
400 XP Jul 05, 2025
Session Switch
Session Switch Challenge
50 XP Jul 03, 2025
Internal
Internal Hard
700 XP Jul 03, 2025
Broken Chain
Broken Chain Hard
700 XP Jul 03, 2025
WP Ultimate
WP Ultimate Hard
700 XP Jul 03, 2025
Compromised 2
Compromised 2 Hard
700 XP Jun 30, 2025
Matsudo
Matsudo Medium
400 XP Jun 27, 2025
FiPloit
FiPloit Easy
200 XP Jun 27, 2025
Hack the Login
Hack the Login Very Easy
50 XP Jun 26, 2025
API Breaker
API Breaker Challenge
50 XP Jun 26, 2025
Traversed
Traversed Medium
400 XP Jun 26, 2025
Spoof!
Spoof! Easy
100 XP Jun 26, 2025
Compromised 1
Compromised 1 Medium
400 XP Jun 26, 2025
AlVault
AlVault Medium
400 XP Jun 26, 2025
Beyond Echo
Beyond Echo Medium
200 XP Jun 25, 2025
Cronpocalypse
Cronpocalypse Easy
200 XP Jun 25, 2025
Anonymous 2
Anonymous 2 Easy
100 XP Jun 24, 2025
Include me
Include me Easy
100 XP Jun 24, 2025
Anonymous
Anonymous Easy
100 XP Jun 24, 2025
Nmap Commands Lab: Port Scanning to Privilege Escalation
Nmap Commands Lab: Port Scanning to Privilege Escalation Very Easy
100 XP Jun 23, 2025
Capture the Flag 101: Find and Submit Your First Flag
Capture the Flag 101: Find and Submit Your First Flag Very Easy
50 XP Jun 23, 2025
Secrets in Source: View Source Code to Find the Flag
Secrets in Source: View Source Code to Find the Flag Very Easy
50 XP Jun 23, 2025
Hack the Cookie: Cookie Poisoning Attack
Hack the Cookie: Cookie Poisoning Attack Very Easy
50 XP Jun 23, 2025
Nmap Mastery: Dominate Network Scanning 4
Installing Nmap 1 XP Sep 20, 2025
Advanced Techniques 1 XP Sep 20, 2025
Introduction to Nmap 1 XP Jun 25, 2025
Essential Nmap Scanning 1 XP Sep 20, 2025
HTTP Header Manipulation: IP Spoofing 3
Remediate 1 XP Sep 20, 2025
Techniques for IP Spoofing in HTTP Headers 1 XP Sep 20, 2025
Manipulating Headers 1 XP Jun 24, 2025
Password Cracking 10
Rainbow tables 1 XP Sep 02, 2025
Wireless cracking 1 XP Nov 13, 2025
PDF cracking 1 XP Sep 21, 2025
Linux hash cracking 1 XP Nov 19, 2025
Office Documents cracking 1 XP Nov 13, 2025
ZIP cracking 1 XP Nov 13, 2025
Brute force attacks 1 XP Aug 28, 2025
Password fundamentals 1 XP Aug 22, 2025
Dictionary attacks 1 XP Aug 22, 2025
Windows hash cracking 1 XP Nov 13, 2025
Network Pentesting 1
Network fundamentals 1 XP Dec 23, 2025
HDNA Ethical Hacking Course 5
1. Legal & Compliance 1 XP Sep 20, 2025
2. Network Protocols and Security 1 XP Sep 20, 2025
4. Network Scanning 1 XP Sep 20, 2025
3. Reconnaissance 1 XP Sep 20, 2025
Course Summary 1 XP Jun 26, 2025
Web App Attacks 12
CSRF Attacks 1 XP Aug 19, 2025
XXE Injection 1 XP Aug 19, 2025
SSRF 1 XP Aug 19, 2025
File Inclusion 1 XP Aug 19, 2025
Web Security Intro 1 XP Aug 19, 2025
SSTI 1 XP Aug 19, 2025
Deserialization 1 XP Aug 19, 2025
File Upload Attacks 1 XP Aug 19, 2025
XSS Attacks 1 XP Aug 19, 2025
Auth Bypass 1 XP Aug 19, 2025
SQL Injection 1 XP Aug 19, 2025
Command Injection 1 XP Aug 19, 2025
JWT Attacks 4
JWT Basics 1 XP Aug 19, 2025
JWT Tampering 1 XP Aug 19, 2025
JWT Cracking 1 XP Aug 19, 2025
Algorithm Confusion 1 XP Aug 19, 2025
Remote Code Execution (RCE) 3
Shellshock (CVE-2014-6271) 1 XP Sep 20, 2025
RCE: Introduction 1 XP Jun 26, 2025
RCE in PHP 1 XP Sep 20, 2025
Active for 1 days
5 days ago
Flag Found - Mythos Leak - Headless CMS Draft Exposure +200 XP
2 weeks ago
Flag Found - Mythos Leak - Headless CMS Draft Exposure +200 XP
2 weeks ago
Flag Found - Pwnify - Web Application Penetration Testing +350 XP
2 weeks ago
Flag Found - Pwnify - Web Application Penetration Testing +350 XP
2 weeks ago
Active for 9 days
2 weeks ago
Flag Found - Pickle Jar +200 XP
1 month ago
Flag Found - Pickle Jar +200 XP
1 month ago
Flag Found - Host Hijack +200 XP
1 month ago
Flag Found - Host Hijack +200 XP
1 month ago
Flag Found - ClearDesk +200 XP
1 month ago
Flag Found - ClearDesk +200 XP
1 month ago
Active for 9 days
2 months ago
Chapter Completed - Network fundamentals +1 XP
5 months ago
Flag Found - Hack the Box +350 XP
5 months ago
Flag Found - Hack the Box +350 XP
6 months ago
Active for 5 days
6 months ago
Flag Found - Hidden CMS Breach +200 XP
6 months ago
Flag Found - Hidden CMS Breach +200 XP
6 months ago
Active for 8 days
6 months ago
Chapter Completed - Linux hash cracking +1 XP
7 months ago
Flag Found - Secrets in Source 2: Bypass Security Through Obscurity +50 XP
7 months ago
Active for 1 days
7 months ago

Your Certificate is Ready!

View and share your Certificate of Achievement

View Certificate
13,000+ Hackers 100+ Labs & Courses Free
Start Hacking Free