Learn Penetration Testing with
Capture The Flags!
Here you’ll find common methods and things to look for when doing hacking CTF’s and penetration testing/security auditing challenges.
What are your plans?
Just starting out with IT-Security?
You decide how you want to learn. Find courses or just follow along with walkthroughs or guides, in order to improve your current hacking skills.
CTF Walkthroughs
Read along in our in-depth walkthroughs in order to learn how to finish Capture The Flag challenges. Learn the thinking process and what to do in order to “enumerate more”.
CTF Walkthroughs
WALKTHROUGHS
Find CTF Challenges
Popular sites to practice your penetration testing. Here you can find all the courses and challenges you’ll need to get better at penetration testing today!
Find CTF Challenges
CHALLENGES
Learn A Vulnerability
SQL Injection (SQLi)
Learn more about the dangers of SQL Injection and how to find it. The learn about common tools and tricks for enumeration and exploitation.
Read More
SQL Injection
Cross-Site Scripting
Discover tips and tricks for exploiting XSS. Here you can run code in a browser, or remotely on the server if you are lucky! Wow.
Read More
XSS
Command Execution
The most dangerous initial foot-hold may just be command execution! This is a vulnerability that allows you to get a so called “shell” which helps run commands as a user on the remote or local system. This is dangerous and here’s why
Read More
Commands
Click-Jacking
Learn all about clickjacking and how it can help you win a CTF.
Read More
Clickjacking
Cross-Site Request Forgery
CSRF or Cross-Site Request Forgery may not appear to be the most dangerous attack, but once you understand its power. It can help you penetrate a target you didn’t know you had potential control over.
Read more
CSRF
Privilege Escalation
The most important part besides getting in is privilege escalation. Becoming root. Admin. The ruler of the world. Here’s how to do it in many CTF challenges.
Read More
PrivEsc
Get started with CTF through one of these websites below!
In order to get good at hacking and penetration testing, you need skills. Below are a few very good sites to start learning about Pentesting, right now!
Challenges and CTF’s can be found there, and the walkthroughs and concepts on how to beat them can be found here!
Through hacking CTF I’ve learned more about penetration testing and I’m getting a deeper understanding of the concepts I need to beat the challenges I’m facing. Thank you so much!
– Don Walker
About Us
Co-Founder
I started getting interested in “hacking” when I was 8 years old. That was in 1998. Since then I’ve been learning about coding and computer security in various ways. But I didn’t pursue it professionally, and never have so far.
So what happened? I started out with “BackTrack” and “hackthissite.org” back in the day. The older I got the more I lost interest in it, because it was so hard to get started… I just couldn’t learn everything I thought I needed to know about hacking.
Eventually I found VulnHub, then HackTheBox, then TryHackMe… all were very good sources, but I still felt something was lacking. It was HARD to beat the challenges.
The more I played the CTF games, the more I learned about security and common ways to beat the challenges. Today I feel a lot more complete and can do various kinds of Remote Code Execution, LFI, SQLi, XSS attacks and even remote buffer overflows and meterpreter attacks.
The game has changed a lot for me personally since I started playing these CTF challenges, and I want to help accelerate your success as well!
