Level 1: Domain controller, 225 / 850 (26%)
26.470588235294% complete
Level 2: W10-PC3, 325 / 1,050 (31%)
30.952380952381% complete
Level 3: W10-PC5, 0 / 1,150 (0%)
Total: 550 / 3,050 (18%)
| Challenge |
Solved |
Points |
|
05. The attackers are quite sassy ... but sloppy too. Can you locate the password for one of this accounts?
(Level 2: W10-PC3)
|
#34,
2 years, 11 months after release (2023-11-10 12:47:31)
|
100 |
|
04. This machine is listening in a really odd port for an endpoint. Which one?
(Level 2: W10-PC3)
|
#38,
2 years, 11 months after release (2023-11-10 12:38:46)
|
50 |
|
03. What is the external IP used by the attackers?
(Level 2: W10-PC3)
|
#38,
2 years, 11 months after release (2023-11-10 12:25:57)
|
50 |
|
02. This malicious execution is used to launch another known threat. At what UTC time?
(Level 2: W10-PC3)
|
#28,
2 years, 11 months after release (2023-11-10 12:11:42)
|
75 |
|
01. Which execution pinpoints the first lateral movement on this machine?
(Level 2: W10-PC3)
|
#33,
2 years, 11 months after release (2023-11-10 12:07:24)
|
50 |
|
03. At what time can you see a logon type 10 user login on the domain controller?
(Level 1: Domain controller)
|
#49,
2 years, 11 months after release (2023-11-10 09:04:41)
|
50 |
|
02. At which time can the second malicious GPO be considered as loaded and ready to be applied?
(Level 1: Domain controller)
|
#41,
2 years, 11 months after release (2023-11-10 08:40:11)
|
100 |
|
01- What is the name of the first anomalous GPO?
(Level 1: Domain controller)
|
#33,
9 months after release (2023-11-10 08:36:39)
|
75 |
