Cyber Security University

Learn how to connect to a virtual private network using OpenVPN.

Learn how to use a TryHackMe room to start your upskilling in cyber security.

A brief introduction to research skills for pentesting.

Embark on the journey of learning the fundamentals of Linux. Learn to run some of the first essential commands on an interactive terminal.

Embark on the journey of learning the fundamentals of Linux. Learn to run some of the first essential commands on an interactive terminal.

Embark on the journey of learning the fundamentals of Linux. Learn to run some of the first essential commands on an interactive terminal.

Fundamentals of penetration testing.

Principles of security.

Intro to red team engagements.

An in-depth walkthrough covering pentest methodology against a vulnerable server.

A free course with 41 hands-on labs to practice and master the most commonly used Linux commands.

Explaining how Search Engines work and leveraging them into finding hidden content!

Intro to Open Source Intelligence.

Learn about Shodan.io and how to use it for device enumeration.

Learn to use tmux, one of the most powerful multi-tasking tools on linux.

Get experience with Nmap, Curl and Netcat for network communications.

Learn the basics of automated web scanning.

Learn how to find subdomains with different techniques.

An introduction to the main components of the Metasploit Framework.

Learn about and use Hydra, a fast network logon cracker, to bruteforce and obtain a website's credentials.

Practice your Linux Privilege Escalation skills on an intentionally misconfigured Debian VM with multiple ways to get root! SSH is available.

Learn about the basics of a red engagement, the main components and stakeholders involved, and how red teaming differs from other cyber security engagements.

Learn how to use DNS, advanced searching, Recon-ng, and Maltego to collect information about your target.

Learn and practice the basics of network scanning using Nmap.

Learn about active recon, web app attacks and privilege escalation.

Deploy & hack into a Windows machine, leveraging common misconfigurations issues.

Beginner level CTF.

A space cowboy-themed boot to root machine.

Cracking hash challenges.

You found a secret server located under the deep sea. Your task is to hack inside the server and reveal the truth.

A guided room taking you through infiltrating and exploiting a Linux system.

Deploy & hack into a Windows machine, exploiting a very poorly secured media server.

Easy linux machine to practice your skills.

This is a machine that allows you to practice web app hacking and privilege escalation.

Learn common ways to bypass User Account Control (UAC) in Windows hosts.

Learn about and exploit each of the OWASP Top 10 vulnerabilities; the 10 most critical web security risks.

A beginner-level LFI challenge.

Walkthrough of OS Command Injection. Demonstrate OS Command Injection and explain how to prevent it on your servers.

This room uses the OWASP juice shop vulnerable web application to learn how to identify and exploit common web application vulnerabilities.

What happens when some broke CompSci students make a password manager.

Can you hack into the Year of the Rabbit box without falling down a hole.

Boot2root machine for FIT and bsides Guatemala CTF.

Boot-to-root originally designed for Securi-Tay 2020.

Bolt themed machine to root into.

Introduction to x64 Assembly on Windows.

This room teaches the basics of ghidra.

This room teaches the basics of radare2.

This room focuses on teaching the basics of assembly through reverse engineering.

Room for beginner Reverse Engineering CTF players.

Reverse engineering router firmware.

Introduction to popular pwn tools framework.

Interactive lab for exploiting and remediating Pwnkit (CVE-2021-4034) in the Polkit package.

A tutorial room exploring CVE-2019-14287 in the Unix Sudo Program. Room One in the SudoVulns Series.

A tutorial room exploring CVE-2019-18634 in the Unix Sudo Program. Room Two in the SudoVulns Series.

Students will learn how to escalate privileges using a very vulnerable Windows 7 VM.

Students will learn how to escalate privileges using a very vulnerable Linux VM.

Students will learn how to escalate privileges using a very vulnerable Windows 7 VM.

Metasploit Framework to get a foothold.

A new start-up has a few security issues with its web server.

Walkthrough on exploiting a Linux machine. Enumerate Samba for shares, manipulate a vulnerable version of proftpd and escalate your privileges with path variable manipulation.

Another beginner-level CTF challenge.

Rick and Morty themed LFI challenge.

Intro to Digital Forensics.

Intro to Windows.

Intro to nessus scan.

Intro to Mitre attack framework.

Introduction to SIEM.

Intro to yara for malware analysis.

Intro to openvas.

Intro to honeypots.

Intro to memory analysis with volatility.

Learn how to use Redline to perform memory analysis and scan for IOCs on an endpoint.

Use Autopsy to investigate artifacts from a disk image.

Investigating Windows.

A popular juice shop has been breached! Analyze the logs to see what had happened.

Apply your analytical skills to analyze the malicious network traffic using Wireshark.

Squid game-themed CTF.

Part of the Blue Primer series, learn how to use Splunk to search through massive amounts of information.

Splunk analysis vol 2.

Splunk analysis vol 3.

An Exchange server was compromised with ransomware. Use Splunk to investigate how the attackers compromised the server.

Join Cyborg Security's expert threat hunters as they dive into the interesting MITRE ATT&CK Tactic of Execution (TA0002).

Join Cyborg Security's expert threat hunters as they dive into the interesting MITRE ATT&CK Tactic of Credential Access (TA0006).

Join Cyborg Security's team of threat hunting instructors for a fun and hands-on-keyboard threat hunting workshop covering the topic of adversarial persistence (TA0003).

Join Cyborg Security's expert threat hunters as they dive into the interesting MITRE ATT&CK Tactic of Defense Evasion (TA0005).

Introduction to Cyber Threat Intelligence.

Explore different OSINT tools used to conduct security threat assessments and investigations.

Beginner file analysis challenge.

Beginner image analysis challenge.

Beginner packet analysis challenge.

Beginner packet analysis challenge.

Beginner packet analysis challenge.

Beginner packet analysis challenge.

Beginner decoding analysis challenge.

Medium level forensics challenge.

Medium level forensics challenge.

Medium level forensics challenge.

Medium level Threat Intel challenge.

Medium level cryptography challenge.

Medium level disk forensics challenge.

Medium level disk forensics challenge.

Medium level disk forensics challenge.

Medium level disk forensics challenge.

Medium level disk forensics challenge.

Medium level memory forensics challenge.

Medium level disk forensics challenge.

Intro to malware history.

Intro to malware.

Intro to malware RE.

Intro to Windows RE.

Introduction to x64 Assembly on Windows.

Learn Reverse Engineering for Java Virtual Machine bytecode.

Reversing PDF malware.

Aimed at absolute beginners and teaches the basics of remote server access.

Teaches the basics of serverside web-security.

Learn the basics of post-exploitation and maintaining access with mimikatz, bloodhound, powerview and msfvenom.

An obsecure boot to root machine.

I made a website where you can look at pictures of dogs and/or cats! Exploit a PHP application via LFI and break out of a docker container.

Practice stack-based buffer overflows.

Help Cage bring back his acting career and investigate the nefarious going on of his agent.

A beginner-level security challenge.

Exploiting Kubernetes by leveraging a Grafana LFI vulnerability.

Escaping docker container.

Explore CVE-2021-44228, a vulnerability in log4j affecting almost all software under the sun.

Interactive lab for exploiting Spring4Shell (CVE-2022-22965) in the Java Spring Framework.

Learn about the latest industry threats. Get hands-on experience identifying, exploiting, and mitigating critical vulnerabilities.

Learn about 99% of Corporate networks that run off of AD.

Breaking out of the retro-themed box.

Hack into this Windows machine and escalate your privileges to Administrator.

Exploit a Windows machine in this beginner-level challenge.

Penetration Testing Challenge.

You have found WindCorp's internal network and their Domain Controller. Pwn the network.

Legacy challenges from the US Navy Cyber Competition Team 2019 Assessment sponsored by US TENTH Fleet.

The first installment of the SuitGuy series of very hard challenges.

Get access to Iron Corp's system.

Recover your client's encrypted files before the ransomware timer runs out.

Compromise a perimeter host and pivot through this network.

Hack into Jeff's web server.

Owl-themed boot to root machine.

Want to become part of Anonymous? They have a challenge for you.

Enterprise-themed network to hack into.

It's time for another heist.

Use python to pwn this room.