Summary Analytics is an easy-difficulty Linux machine featuring a vulnerable Metabase instance. We leverage a pre-authentication RCE (CVE-2023-38646) to gain an initial foothold inside a Docker co...

Summary Querier is a medium-difficulty Windows machine centered on identifying and exploiting insecure file shares and database misconfigurations. The entry point involves retrieving a macro-enabl...

Summary Access is a straightforward Windows machine centered on identifying and connecting small leaks across multiple open services. The entry point involves anonymous FTP access to retrieve a ZI...

Summary Builder is a medium-difficulty Linux machine that features a Jenkins instance. The Jenkins instance is found to be vulnerable to the CVE-2024-23897 vulnerability that allows unauthenticate...