Missions
Pick a mission, read the briefing, root the box. Every run is unique — and earns a Sigil.
Start here — Flagship missions
New to the Arena? These three are the polished, hand-tuned path.
Ops Room: Lost Key
BeginnerBreak into a training host and capture your first proof. The gentlest way in.
Incident Response: The Miner
IntermediateInvestigate a live cryptominer and remove its persistence before it comes back.
DAEMON: HAL 9000
NightmareFace DAEMON, an adversarial system watching every command you type.
Red Team — Beginner
Attacker fundamentals.
Intel Gathering: Network Mapping
BeginnerMap an unknown network and build your first target profile.
Broken Permissions: Sudo Escape
BeginnerA too-generous sudo grant is all you need to reach root.
Careless Dev: Key Hunt
BeginnerA developer left an SSH key where anyone can read it. Find it. Use it.
Legacy FTP Drop
BeginnerAn old FTP server full of forgotten files. What did they leave behind?
Red Team — Intermediate
Sharper escalation paths.
Elevation: SUID Hunt
IntermediateYou have a shell. Now get root — the SUID bits tell a story.
Web Breach: Data Extraction
IntermediateThe web app is leaking. Extract the data before they patch it.
Container Breakout: Writable Passwd
IntermediateSloppy container permissions are your way out.
Timed Strike: Cron Injection
IntermediateA root cron job runs a world-writable script. Inject your payload and wait.
Blue Team — Incident Response
Defend, contain, recover.
Incident Response: The Web Shell
AdvancedThe WAF flagged suspicious PHP uploads. Find the shell. Trace the damage.
Incident Response: The Backdoor
AdvancedOutbound C2 traffic detected. An attacker left a backdoor. Hunt it down.
Incident Response: Ransomware
AdvancedFiles are encrypting right now. Contain it and recover before it spreads.
Advanced & DAEMON
The system fights back.
DAEMON: Meet the Operator
NightmareRoot a box that fights back. The operator knows you’re here.