Cyber security

NINJA HACKER ACADEMY – Unveiling The Ultimate Cybersecurity Training Challenge

In the world of cybersecurity, where the battle between hackers and defenders rages on, there exists a clandestine training ground known as NINJA HACKER ACADEMY (NHA).

This unique platform is more than just a conventional training program; it’s a challenging and immersive experience that tests the skills of aspiring cybersecurity experts.

In this article, we will delve into the intriguing world of NINJA HACKER ACADEMY, where participants must navigate through a labyrinth of vulnerabilities and obstacles to emerge as masters of the digital realm.

  • NINJA HACKER ACADEMY (NHA) is written as a training challenge where GOAD was written as a lab with a maximum of vulns.
  • You should find your way in to get domain admin on the 2 domains (academy.ninja.lan and ninja.hack)
  • Starting point is on srv01 : 192.168.58.21
  • Flags are disposed on each machine, try to grab all. Be careful all the machines are up to date with defender enabled.
  • Some exploits needs to modify path so this lab is not very multi-players compliant (unless you do it as a team ;))
  • Obviously do not cheat by looking at the passwords and flags in the recipe files, the lab must start without user to full compromise.
  • Install :
./goad.sh -t install -l NHA -p virtualbox -m docker
  • Once install finish disable vagrant user to avoid using it :
./goad.sh -t disablevagrant -l NHA -p virtualbox -m docker
  • If you need to re-enable vagrant
./goad.sh -t enablevagrant -l NHA -p virtualbox -m docker
Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Recent Posts

ROADTools: The Modern Azure AD Exploration Framework

ROADTools is a powerful framework designed for exploring and interacting with Microsoft Azure Active Directory…

1 day ago

How to Enumerate Microsoft 365 Groups Using PowerShell and Python

Microsoft 365 Groups (also known as M365 Groups or Unified Groups) are at the heart…

1 day ago

SeamlessPass: Using Kerberos Tickets to Access Microsoft 365

SeamlessPass is a specialized tool designed to leverage on-premises Active Directory Kerberos tickets to obtain…

2 days ago

PPLBlade: Advanced Memory Dumping and Obfuscation Tool

PPLBlade is a powerful Protected Process Dumper designed to capture memory from target processes, hide…

2 days ago

HikPwn : Simple Scanner For Hikvision Devices With Basic Vulnerability Scanning

HikPwn: Comprehensive Guide to Scanning Hikvision Devices for Vulnerabilities If you’re searching for an efficient…

3 days ago

Comments in Bash Scripts

What Are Bash Comments? Comments in Bash scripts, are notes in your code that the…

1 week ago