Pentesting Labs
Hack The Box
Generally more advanced boxes, however there are some easy boxes too.
ippsec.rocks is a searchable directory of hundreds of Hack The Box video walkthroughs.
Try Hack Me
Try Hack Me is a useful website for walkthroughs and instructional learning (which can be hard to come by in cybersecurity). You can view a full list of their ‘rooms’, but here are some of our favourites:
- Linux - Missed our session on Linux Basics? TryHackMe has you covered.
- Juice Shop! - You’ll have seen this one if you’ve been to pretty much any of our sessions :) It’s a great start for learning web application testing.
- Vulnversity - A great room for the basics of recon, Burp Suite, and more.
- Nmap - Learn the ropes of this crucial networking tool.
- Attacktive Directory - Learn some Active Directory enumeration tools and methodologies, step by step.
Immersive Labs
Immersive Labs is a collection of highly interactive labs, ranging from theory to guided tutorials of common tools - free for students!
Vulnhub
Vulnhub is a website full of Virtual Machine images, ready to be hacked! Specific boxes that we enjoyed are listed below, along with some cool Docker images we’ve used for exercises!
- Stack Overflows for Beginners
- Brooks’ Permissions Puzzle - run in a Docker Environment with “docker run –rm -it thelostlambda/perm-puzzle”
OverTheWire Wargames
The wargames are a collection of miniature challenges, mostly Linux based, and great for learning the basics
Hack This Site
Hack This Site is a site similar to Wargames with a series of missions, in a range of difficulties