Lazy admins are a hacker’s best friend. This room includes using the SweetRice exploit, peering into an unsecured MySQL backup, and a priv esc tactic of rewriting a script file.

You have been contracted by UltraTech. It’s a grey-box kind of assessment. The only information you have is the company's name and their server's IP address.

In this room, we will compromise a Joomla CMS account via SQL Injection, practice cracking hashes and escalate your privileges by taking advantage of yum with sudo privileges.

In this room, we will give an introduction to some common linux privilege escalation techniques such as SUID/GUID files, /etc/passwd file, and crontabs

In this room, we will give an introduction to shells, what they are, sending and receiving (reverse/bind) shells when exploiting target machines.