Ifrit simulates a real-world Active Directory environment where your goal is to operate under the radar. With 7 flags and 10 machines, this scenario challenges you to evade detection while exploiting AD systems, testing your ability to balance stealth and impact in complex environments.

You’ll gain the skills to:

This hands-on, 6-module path takes you from Android fundamentals through static, dynamic, and malware analysis. You’ll develop the knowledge and practical skills needed to identify vulnerabilities, mitigate risks, and perform forensic investigations on Android devices.

By completing the path, you’ll be able to:

The newly released Android Forensics module dives into Android forensics, equipping you with the techniques and tools needed to investigate compromised devices and recover critical data. From uncovering hidden artifacts to reconstructing user activity, you’ll build the expertise required for professional forensic investigations.

By the end of the module, you'll be able to:

We’ve just released a brand-new curated path designed to get you fully prepared for the Wanderer Professional Lab scenario. This path includes 9 machines and will guide you through essential techniques including:

Beyond scenario prep, this path is also ideal for intermediate red teamers looking to strengthen their enumeration, lateral movement, and attack chain building skills in a realistic, hands-on environment. By the end, you’ll have the well-rounded offensive toolkit needed to navigate Wanderer, and similar complex engagements, with confidence.

Two new exclusive releases are now live on Dedicated Labs, covering firewall exploitation, privilege escalation in Linux, and critical PAN-OS vulnerabilities!

Explore an Easy Linux machine showcasing two privilege escalation CVEs in openSUSE Leap 15.6. Move from unprivileged user to root by abusing PAM configuration and libblockdev through udisks, and learn how misconfigurations can lead to full system compromise.

Get hands-on with CVE-2024-9474 in Palo Alto Networks PAN-OS. Exploit a command injection in the management web interface to escalate to root privileges, reinforcing the need to secure and update network security appliances.

Step into the shoes of an attacker targeting a Palo Alto Networks PAN-OS firewall in Panos, our newest Exclusive Sherlock. In this scenario, multiple known CVEs are chained together to bypass authentication on the web-based management console and escalate to root-level access.

You’ll trace how the compromise unfolds, uncover the tactics that make firewall exploits so dangerous, and see firsthand why unpatched vulnerabilities on internet-facing systems pose such a critical risk. This Exclusive Sherlock challenges you to think like an adversary while reinforcing the importance of timely patching and proactive monitoring.

Two new CTF packs are now live, designed to build practical expertise in exploiting WordPress environments and mastering the OWASP Top 10 through realistic, hands-on scenarios.

This pack takes you from basic enumeration of versions, plugins, and themes to uncovering exposed backups and directory listings, brute-forcing weak credentials, and exploiting critical flaws like authentication bypass, SQL injection, and Server-Side Template Injection. Using tools such as WPScan, SQLMap, and Metasploit, participants will develop a strong foundation in WordPress exploitation and gain practical knowledge of common attack surfaces.

Dive into 10 story-driven challenges showcasing the most critical web application vulnerabilities seen in the wild. Practice everything from bypassing business logic checks and leaking environment files to chaining SQL injection and IDOR, abusing SSRF to compromise internal databases, and weaponizing file uploads for remote code execution. This pack is a must for anyone looking to strengthen their offensive web security skills against today’s most prevalent threats.

Part of the AI Red Teamer path, the Attacking AI – Application and System module examines security vulnerabilities across two critical layers of AI deployments: the application and the system.

You’ll learn how flaws in these components can compromise the overall security of an AI environment, then shift focus to the Model Context Protocol (MCP), its purpose, how it functions, and the risks it introduces when misconfigured or exploited by malicious servers.

You’ll gain the skills to:

Admins can now create multiple teams at once directly from the User Management page, making it easier than ever to:

Just select your users, choose Create Team from the bulk actions menu, and you’re ready to go.

Admins can now update which seats (licenses or spaces) a user has all from the User Management page, now allowing them to:

Just click the three-dot menu next to any user to add or remove seats and set custom expiration dates.