ibarkay
Grandmaster
Live Ranking
#8
Best: #4
Total Points
1058
Total Earned
Labs Completed
54
56 User • 17 Root
Modules
13
Validated
First Bloods
0
First to Complete
Best Streak
2
Days
Skills Acquired
Technical skills practiced through completed labs
Web EnumerationWeb SecurityAuthenticationRCEPrivilege EscalationLinuxHTMLBrowser DevToolsClient-Side SecuritySource Code AnalysisLearning PathSSHPassword CrackingLinux SecurityCVE ExploitationWindows SecurityNTLMHashcatJohn the RipperHash AnalysisSQL InjectionRegex BypassInput ValidationWeb Application SecuritySQLiteUNION-Based SQLiOffice SecurityHash ExtractionGitVersion ControlReconnaissanceCryptographyHash CrackingPassword AnalysisSecurity ToolsSSRFURL ManipulationInternal Network AccessProtocol BypassSteganographyClassical CiphersImage AnalysisPolyalphabetic CiphersJavaScriptDeobfuscationCode AnalysisAuthentication BypassHTTP ProtocolRequest SmugglingNetwork ForensicsTraffic AnalysisPacket AnalysisDatabase SecurityPenetration TestingEmail ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital InvestigationSSTIFlask SecuritySSH Brute ForceDatabase EnumerationDNS AnalysisData ExfiltrationFrequency AnalysisPattern RecognitionHTTP HeadersIP SpoofingAccess Control BypassInformation GatheringNoSQL InjectionMongoDBDocument DatabasesCommand InjectionInput Validation BypassRemote Code ExecutionFilter EvasionLDAP InjectionDirectory ServicesEnterprise SecurityServer-Side Template InjectionJinja2 ExploitationMD5 CrackingPassword AttacksGit ForensicsVersion Control SecurityRepository AnalysisSecret RecoveryJWT ManipulationSSH ExploitationLog InjectionLinux Privilege EscalationFile PermissionsLSBForensicsPythonPDF ForensicsFile AnalysisMetadataHidden DataForensic ToolsBlockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic AnalysisPHPLFIPath ManipulationFile InclusionNetwork AnalysisDNSMYSQLINetwork ReconnaissanceService DiscoveryDatabase ForensicsData EncodingCLI UsageData RecoveryIncident ResponseBase64Hex EncodingRedisIDOR ExploitationZip Slip VulnerabilityInternal Service DiscoveryBackup Service ExploitationSudo Vim ExploitationLinux CapabilitiesReverse ShellSystem EnumerationWPAdvanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationLocal File InclusionFile Upload BypassPHP SecurityDirectory TraversalWeb Shell ExploitationLog AnalysisMemory ForensicsBinary AnalysisDigital ForensicsTool UsageROT13 EncodingBrute ForceSudoWEBGITApache TomcatWAR DeploymentDefault CredentialsWeb ShellsFTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem ExploitationFTPNetworkingCommand LineWeb ServicesTELNETWebIP SPOOFING
Completed Modules
Educational modules successfully validated
HTTP Header Manipulation: IP Spoofing
1 modulesManipulating Headers
Nmap Mastery: Dominate Network Scanning
1 modulesIntroduction to Nmap
Password Cracking: Advanced Techniques for Security Assessment
1 modulesPassword Security Fundamentals
HDNA Ethical Hacking Course
1 modulesCourse Summary
Web Application Security: Exploitation and Defense
5 modulesCross-Site Request Forgery
Server-Side Request Forgery
Course Introduction
Cross-Site Scripting
SQL Injection
JWT Ethical Hacking: Token Takeover Tactics
3 modulesIntroduction to JWT Tokens
Secret Key Brute Forcing
Algorithm Confusion Exploits
Remote Code Execution (RCE)
1 modulesRCE: Introduction
Completed Labs & Challenges
Hands-on cybersecurity challenges successfully completed
Hidden CMS Breach
Medium
Web EnumerationWeb SecurityAuthenticationRCEPrivilege EscalationLinux
Secrets in Source 2
Very Easy
Web SecurityHTMLBrowser DevToolsClient-Side SecuritySource Code AnalysisLearning Path
TechNova Infiltration
Medium
Web EnumerationSSHPassword CrackingPrivilege EscalationLinux SecurityCVE Exploitation
Windows Password Cracker
Challenge
Password CrackingWindows SecurityNTLMHashcatJohn the RipperHash Analysis
Regex Bypass to SQLi
Challenge
SQL InjectionRegex BypassInput ValidationWeb Application SecuritySQLiteUNION-Based SQLi
Office Password Cracker
Challenge
Password CrackingOffice SecurityHash ExtractionJohn the RipperHashcat
Git Exposed
Challenge
GitVersion ControlSource Code AnalysisReconnaissanceWeb Security
Crack SHA1 Hash
Challenge
CryptographyHash CrackingPassword AnalysisSecurity Tools
SSRF Validator
Challenge
SSRFWeb SecurityURL ManipulationInternal Network AccessProtocol Bypass
Vigenere Stego Hunt
Challenge
CryptographySteganographyClassical CiphersImage AnalysisPolyalphabetic Ciphers
Hack This Site
Challenge
JavaScriptDeobfuscationClient-Side SecurityBrowser DevToolsCode AnalysisAuthentication Bypass
HTTP Smuggling
Challenge
HTTP ProtocolRequest SmugglingNetwork ForensicsTraffic AnalysisWeb SecurityPacket Analysis
SQL Injection Test
Challenge
SQL InjectionWeb SecurityDatabase SecurityAuthentication BypassInput ValidationPenetration Testing
Email Header Forensics
Challenge
Email ForensicsHeader AnalysisPhishing DetectionBase64 DecodingOSINTDigital Investigation
FortiPy
Hard
Web Application SecuritySSTIFlask SecuritySSH Brute ForceDatabase EnumerationHash CrackingPrivilege Escalation
DNS Tunneling Detective
Challenge
Network ForensicsDNS AnalysisData ExfiltrationTraffic Analysis
Caesar Shift Decoder
Challenge
CryptographyClassical CiphersFrequency AnalysisPattern Recognition
IP Spoofing Admin
Challenge
Web SecurityHTTP HeadersIP SpoofingAccess Control BypassInformation Gathering
MongoDB Injector
Challenge
NoSQL InjectionMongoDBAuthentication BypassDocument DatabasesWeb Security
RCE Playground
Medium
Command InjectionInput Validation BypassRemote Code ExecutionFilter EvasionWeb Security
LDAP Injector
Challenge
LDAP InjectionAuthentication BypassDirectory ServicesEnterprise SecurityWeb Security
Template Injector
Challenge
Server-Side Template InjectionFlask SecurityJinja2 ExploitationRemote Code ExecutionWeb Security
Admin Portal Breach
Challenge
Client-Side SecurityMD5 CrackingSource Code AnalysisWeb Application SecurityPassword AttacksAuthentication Bypass
Git Secrets Hunter
Challenge
Git ForensicsVersion Control SecurityRepository AnalysisPenetration TestingSecret RecoveryOSINT
Infiltrator
Easy
JWT ManipulationSSH ExploitationLog InjectionPrivilege EscalationWeb SecurityLinux Security
Alpwned
Medium
SQL InjectionAuthentication BypassSSHLinux Privilege EscalationFile PermissionsWeb Application Security
Pixel Puzzler
Challenge
SteganographyImage AnalysisLSBForensicsPython
PDF Trap
Challenge
PDF ForensicsFile AnalysisMetadataHidden DataForensic Tools
Blockchain Secrets
Challenge
Blockchain AnalysisBitcoinOP_RETURNHex DecodingData ExtractionForensic Analysis
Corporate Breach 2
Challenge
Web SecurityPHPLFIPath ManipulationFile Inclusion
DNS Exfil
Challenge
Network AnalysisDNSPacket AnalysisData ExfiltrationBase64 Decoding
Query Quake
Medium
MYSQLIRCE
Red is Dead
Challenge
Network ReconnaissanceService DiscoveryDatabase ForensicsData EncodingCLI UsageData RecoveryIncident ResponseBase64Hex EncodingRedis
Broken Chain
Hard
IDOR ExploitationZip Slip VulnerabilityServer-Side Template InjectionInternal Service DiscoveryBackup Service ExploitationPrivilege EscalationSudo Vim Exploitation
Internal
Hard
Command InjectionLinux CapabilitiesPrivilege EscalationReverse ShellWeb Application SecuritySystem EnumerationNetwork Reconnaissance
WP Ultimate
Hard
WP
Compromised 2
Hard
Advanced ReconnaissanceAndroid Reverse EngineeringSCADA ExploitationCVE ExploitationAuthentication BypassPrivilege Escalation
FiPloit
Easy
Local File InclusionFile Upload BypassPHP SecurityDirectory TraversalWeb Shell ExploitationPrivilege EscalationLog Analysis
Memory Forensics
Challenge
Memory ForensicsBinary AnalysisDigital ForensicsPattern RecognitionIncident ResponseTool UsageData RecoveryROT13 Encoding
Matsudo
Medium
SSHBrute ForcePrivilege EscalationLinuxSudoNetwork ReconnaissancePenetration Testing
AlVault
Medium
WEB
Traversed
Medium
GIT
Compromised 1
Medium
Apache TomcatWeb Application SecurityWAR DeploymentDefault CredentialsPrivilege EscalationLinuxSudoWeb Shells
Beyond Echo
Medium
PHPRCE
Cronpocalypse
Easy
SSH
Anonymous 2
Easy
FTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem Exploitation
Include me
Easy
PHPLFI
Anonymous
Easy
FTP
Secrets in Source
Very Easy
HTMLLearning Path
Onboarding Lab: Access and Flags
Very Easy
NetworkingReconnaissanceCommand LineWeb ServicesLearning Path
Nmap Lab 102
Very Easy
TELNETLearning Path
Hack the Login
Very Easy
WebAuthenticationClient-Side SecurityLearning Path
Hack the Cookie
Very Easy
WEBLearning Path
Spoof!
Easy
IP SPOOFING
Courses Progress
Your learning paths and modules