Training Rooms

Your SIEM just lit up. Triage auth.log, spot the brute-force, identify the successful pivot, and confirm lateral movement.

Your first mission: get comfortable with the CyberInsti terminal, find the hidden welcome flag, and unlock your operator badge.

A misconfigured login page and a leaky search box. Abuse SQLi to bypass auth, then fire a stored XSS to capture the admin session.

Low-priv shell on a box. Enumerate, find the misconfiguration, abuse it, and read /root/.root_flag.

You've been dropped onto a staging box with a stale nmap report. Identify the attack surface and pivot.

Navigate a Linux system under pressure. Parse logs, read config files, and exfiltrate a flag from a locked-down /var directory.

A new sample just hit the sandbox. Static-triage it: pull strings, identify the C2, and determine persistence.

Full-chain engagement. Recon the perimeter, land the foothold, pivot, dump creds, and own the domain controller.