Skip to main content

VulnLab Machines & Chains

A collection of writeups for VulnLab machines and chains.

Chain (Easy) - Hybrid

Writeup for the Chain (Easy) - Hybrid machine, detailing the steps to achieve Domain Admin compro...

Chain (Easy) - Trusted

Writeup for the Chain (Easy) - Trusted machine, detailing the steps to achieve Domain Admin compr...

Chain (Medium) - Heron

Writeup for the Heron machine, a medium-difficulty Windows domain scenario involving assumed brea...

Machine (Easy) - Baby

Writeup for the Baby machine, an easy-level Windows challenge focused on LDAP enumeration and pri...

Machine (Easy) - Build

Writeup for the Build machine, an easy-level challenge focused on exploiting exposed services and...

Machine (Easy) - Data

Writeup for the Data machine, an easy Linux box focused on exploiting a Grafana vulnerability to ...

Machine (Easy) - Down

Writeup for the Down machine, an easy Linux challenge involving command injection and privilege e...

Machine (Easy) - Escape

Writeup for the Escape machine, an easy Windows challenge involving RDP password discovery and pr...

Machine (Easy) - Feedback

Writeup for the Feedback machine involves exploiting an Apache Tomcat server using a Log4j vulner...

Machine (Easy) - Forgotten

Writeup for the Forgotten machine, an easy Linux box focused on exploiting a misconfigured LimeSu...

Machine (Easy) - Lock

Writeup for the Lock machine, a Windows-based box involving exploitation of Gitea source control,...

Machine (Easy) - Manage

Writeup for the Manage machine, an easy-level Linux box focused on exploiting an unauthenticated ...

Machine (Easy) - Reset

Writeup for the Reset machine, an easy Linux box, focusing on exploiting Apache log injection to ...

Machine (Easy) - Retro

Writeup for the Retro machine, an easy-level Windows Active Directory environment created by r0BI...

Machine (Easy) - Retro2

Writeup for the Retro2 machine, an easy-level Windows Active Directory box by xct. The attack cha...

Machine (Easy) - Sync

Writeup for the Sync machine, an easy-level Linux box, involves exploiting services like FTP, HTT...

Machine (Medium) - Bamboo

Writeup for the Bamboo machine, a medium-difficulty Linux box which demonstrates how exposed infr...

Machine (Medium) - Baby2

Writeup for the Baby2 machine documents the process of compromising a Windows domain through enum...

Machine (Medium) - Breach

Writeup for the Breach machine, which involves exploiting writable SMB shares and weak NTLMv2 aut...

Machine (Medium) - Bruno

Writeup for the Bruno machine, a medium-difficulty Windows AD box by xct. The initial foothold is...

Machine (Medium) - Delegate

Writeup for the Delegate machine, a medium-difficulty Windows Active Directory box by geiseric. T...

Machine (Medium) - Job

Writeup for the Job machine, a Windows-based box involving malicious macro delivery via SMTP, rem...

Machine (Medium) - Media

Writeup for the Media machine, a medium-level Windows box, which involves stealing NTLM hashes th...

Machine (Medium) - Odori

Writeup for the Odori machine, a medium-difficulty Linux challenge involving BitLocker encryption...

Machine (Medium) - Phantom

Writeup for the Phantom machine, a medium-difficulty Windows Active Directory box by ar0x4. The p...

Machine (Medium) - Sendai

Writeup for the Sendai machine, a medium-difficulty Windows Server 2022 Domain Controller, focusi...

Machine (Medium) - Shibuya

Writeup for the Shibuya machine, a medium-difficulty Windows Active Directory challenge involving...

Machine (Medium) - Sweep

Writeup for the Sweep machine, a medium-difficulty Windows challenge focused on exploiting miscon...

Machine (Hard) - Redelegate

Writeup for the Redelegate machine, a challenging Windows-based Active Directory environment, foc...
Back to top