Profile Avatar PRO

vlad

Senior
Portugal Joined January 2026 Pro Member

Live Ranking

#52

Best: #49

Total Points

179

Total Earned

Labs Completed

22

22 User • 2 Root

Modules

29

Validated

First Bloods

0

First to Complete

Best Streak

5

Days

Achievements Certificates Activity

Skills Acquired

Technical skills practiced through completed labs

Local File InclusionFile Upload BypassPHP SecurityDirectory TraversalWeb Shell ExploitationPrivilege EscalationLog AnalysisJWTAlgorithm ConfusionRS256HS256Token ForgeryWeb SecurityToken AuthenticationCryptographyFTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem ExploitationIP SPOOFINGFTPPython PickleEnterprise DeserializationCorporate Backup SystemsDisaster Recovery ExploitationConfiguration Import AttacksEnterprise SecurityServer-Side Template InjectionJinja2Flask SecurityWeb Application TestingCode InjectionCommand InjectionShell CommandsSystem AdministrationHTTP Parameter ManipulationSecurity AssessmentUser-Agent Log PoisoningRemote Code ExecutionApache SecurityXXEXML SecurityFile DisclosureExternal EntityVulnerability AssessmentFile UploadBypass TechniquesPHPWeb ShellsInput ValidationSocial EngineeringPost ExploitationSQL InjectionAuthentication BypassDatabase SecurityBlind SQLiTime-based SQLiBoolean-based SQLiDatabase EnumerationLFILinuxCommand LineFile System NavigationHidden FilesgrepfindHTMLBrowser DevToolsClient-Side SecuritySource Code AnalysisLearning PathTELNETWEBWebAuthenticationNetworkingReconnaissanceWeb Services

Completed Modules

Educational modules successfully validated

HTTP Header Manipulation: IP Spoofing

3 modules
Remediate
1 pts Completed: Jan 07, 2026
Techniques for IP Spoofing in HTTP Headers
1 pts Completed: Jan 07, 2026
Manipulating Headers
1 pts Completed: Jan 07, 2026

Cybersecurity Tools Cheat Sheets: Quick Reference Commands and Techniques

10 modules
Hydra Cheat Sheet
1 pts Completed: Jan 08, 2026
Nikto Cheat Sheet
1 pts Completed: Jan 08, 2026
John the Ripper Cheat Sheet
1 pts Completed: Jan 08, 2026
SQLMap Cheat Sheet
1 pts Completed: Jan 08, 2026
Wireshark Cheat Sheet
1 pts Completed: Jan 12, 2026
Burp Suite Cheat Sheet
1 pts Completed: Jan 08, 2026
Gobuster Cheat Sheet
1 pts Completed: Jan 08, 2026
Nmap Cheat Sheet
1 pts Completed: Jan 08, 2026
Hashcat Cheat Sheet
1 pts Completed: Jan 12, 2026
Metasploit Cheat Sheet
1 pts Completed: Jan 08, 2026

Web Application Security: Exploitation and Defense

12 modules
Cross-Site Request Forgery
1 pts Completed: Jan 05, 2026
XML External Entity Injection
1 pts Completed: Jan 06, 2026
Server-Side Request Forgery
1 pts Completed: Jan 06, 2026
Local and Remote File Inclusion
1 pts Completed: Jan 06, 2026
Course Introduction
1 pts Completed: Jan 05, 2026
Server-Side Template Injection
1 pts Completed: Jan 06, 2026
Deserialization Attacks
1 pts Completed: Jan 07, 2026
File Upload Exploitation
1 pts Completed: Jan 06, 2026
Cross-Site Scripting
1 pts Completed: Jan 05, 2026
Authentication Bypass
1 pts Completed: Jan 06, 2026
SQL Injection
1 pts Completed: Jan 05, 2026
Command Injection
1 pts Completed: Jan 06, 2026

JWT Ethical Hacking: Token Takeover Tactics

4 modules
Introduction to JWT Tokens
1 pts Completed: Jan 07, 2026
Claims Manipulation and Time-Based Attacks
1 pts Completed: Jan 08, 2026
Secret Key Brute Forcing
1 pts Completed: Jan 08, 2026
Algorithm Confusion Exploits
1 pts Completed: Jan 08, 2026

Completed Labs & Challenges

Hands-on cybersecurity challenges successfully completed

FiPloit
Easy
20 points Jan 14, 2026 3h 15m
Local File InclusionFile Upload BypassPHP SecurityDirectory TraversalWeb Shell ExploitationPrivilege EscalationLog Analysis
JWT Algo Confusion
Challenge
5 points Jan 08, 2026 15m
JWTAlgorithm ConfusionRS256HS256Token ForgeryWeb Security
JWT Bypass
Challenge
5 points Jan 08, 2026 14m
JWTWeb SecurityToken AuthenticationCryptography
Anonymous 2
Easy
10 points Jan 07, 2026 21m
FTP ExploitationBackdoor DetectionNetwork ServicesRemote ShellSystem Exploitation
Spoof!
Easy
10 points Jan 07, 2026 14m
IP SPOOFING
Anonymous
Easy
10 points Jan 07, 2026 21m
FTP
Corporate Backup Deserializer
Challenge
5 points Jan 07, 2026 24m
Python PickleEnterprise DeserializationCorporate Backup SystemsDisaster Recovery ExploitationConfiguration Import AttacksEnterprise Security
Template Injection
Challenge
5 points Jan 06, 2026 15m
Server-Side Template InjectionJinja2Flask SecurityWeb Application TestingCode InjectionPrivilege Escalation
Shell Command Scanner
Challenge
5 points Jan 06, 2026 7m
Command InjectionWeb SecurityShell CommandsSystem AdministrationHTTP Parameter ManipulationSecurity Assessment
LFI Log Poison
Challenge
5 points Jan 06, 2026 23m
Local File InclusionUser-Agent Log PoisoningRemote Code ExecutionDirectory TraversalWeb SecurityApache SecuritySystem AdministrationLog Analysis
XXE Exposed
Challenge
5 points Jan 06, 2026 17m
XXEXML SecurityFile DisclosureExternal EntityWeb SecurityVulnerability Assessment
File Upload Bypass
Challenge
5 points Jan 06, 2026 15m
File UploadWeb SecurityBypass TechniquesPHPWeb ShellsInput ValidationSocial EngineeringPost Exploitation
Auth Bypass
Challenge
5 points Jan 06, 2026 10m
SQL InjectionAuthentication BypassWeb SecurityDatabase Security
SQL Injection
Challenge
5 points Jan 06, 2026 22m
SQL InjectionDatabase SecurityWeb SecurityBlind SQLiTime-based SQLiBoolean-based SQLiDatabase EnumerationVulnerability Assessment
Include me
Easy
10 points Jan 05, 2026 5m
PHPLFI
Linux Fundamentals Practice
Challenge
5 points Jan 05, 2026 8m
LinuxCommand LineFile System NavigationHidden Filesgrepfind
Secrets in Source 2
Very Easy
5 points Jan 05, 2026 10m
Web SecurityHTMLBrowser DevToolsClient-Side SecuritySource Code AnalysisLearning Path
Nmap Lab 102
Very Easy
10 points Jan 05, 2026 30m
TELNETLearning Path
Hack the Cookie
Very Easy
5 points Jan 05, 2026 22m
WEBLearning Path
Secrets in Source
Very Easy
5 points Jan 05, 2026 1m
HTMLLearning Path
Hack the Login
Very Easy
5 points Jan 05, 2026 1m
WebAuthenticationClient-Side SecurityLearning Path
Onboarding Lab: Access and Flags
Very Easy
5 points Jan 05, 2026 16m
NetworkingReconnaissanceCommand LineWeb ServicesLearning Path

Courses Progress

Your learning paths and modules

HTTP Header Manipulation: IP Spoofing
3 / 3 modules completed
100%
Web Application Security: Exploitation and Defense
12 / 12 modules completed
100%
Cybersecurity Tools Cheat Sheets: Quick Reference Commands and Techniques
10 / 10 modules completed
100%
JWT Ethical Hacking: Token Takeover Tactics
4 / 4 modules completed
100%
Join 5,000+ hackers learning cybersecurity with hands-on labs. Create Account