Home

AoC2025 Day 12 – Phishing – Phishmas Greetings

created by: tryhackme, rePl4stic, s1moesz “Since McSkidy’s disappearance, TBFC’s defences have weakened, and now the Email Protection Platform is down. With filters offline, the staff must triage every suspicious message manually.The SOC Team suspects Malhare’s Eggsploit Bunnies have sent phishing messages to TBFC’s…

AoC2205 Room 11 – XSS = Merry XSSMas

created by: tryhackme, melmols, elgorft2360 “After last year’s automation and tech modernization, Santa’s workshop got a new makeover. McSkidy has a secure message portal where you can contact her directly with any questions or concerns. However, lately, the logs…

Wireshark Traffic Analysis

by: tryhackme, Gensane, krotovolb “In the previous two rooms, we have covered how to use Wireshark and do packet-level searches. Now, it is time to investigate and correlate the packet-level information to see the big picture in the network…

AoC2025 – Day 13 YARA Rules – YARA mean one!

by: tryhackme, is a great walkthrough video; he also gives a shoutout to regex 101: , something that helped me in this room, and I bookmarked as well for future use cases! “When McSkidy went missing, there was…

AoC2025 Room 9 – Passwords – A Cracking Christmas

by: tryhackme, SecurityNomad, l000g1c “With time between Easter and Christmas being destabilised, the once-quiet systems of The Best Festival Company began showing traces of encrypted data buried deep within their servers. Sir Carrotbane, stumbled upon a series of locked PDF and…

AoC2025 Room 8 – Prompt Injection – Sched-yule conflict

by: tryhackme, h4ash3m00, rePL4stic “Sir BreachBlocker III has corrupted the Christmas Calendar AI agent in Wareville. Instead of showing the Christmas event, the calendar shows Easter, confusing the people in Wareville.It seems that without McSkidy, the only way to restore order…

Aoc2025 Room 7 – Network Discovery – Scan-ta Clause

by: Tryhackme, DrGonz0, TactfulTurtle “Christmas preparations are delayed – HopSec has breached our QA environment and locked us out! Without it, the TBFC projects can’t be tested, and our entire SOC-mas pipeline is frozen. To make things worse, the server…

AoC2025 Room 6 – Malware Analysis – Egg-xecutable

by: tryhackme, cmnatic, SecurityNomad “The town of Wareville remains quiet in the middle of the night. While the residents of Wareville are nicely tucked up in bed, blissfully unaware, the SOC team at The Best Festival Company (TBFC) remain alert, poised and ready…

AoC2025 Room 5 – IDOR – Santa’s Little IDOR

Advent video led by David Ackerman if needed: by: tryhackme, am03bam4n, tgreenMWR, Gensane, krotovolb “The elves of Wareville are on high alert since McSkidy went missing. Recently, the support team has been receiving many calls from parents who…

AoC2025 Room 4 AI IN Security – old sAInt nick

created by: tryhackme, cmnatic “The lights glimmer and servers hum blissfully at The Best Festival Company (TBFC), melting the snow surrounding the data center. TBFC has continued its pursuit of AI excellence. After the past two years, they realized that Van…