Red Team
Build real attack chains on live target machines. From web to Active Directory, from privesc to C2 — every step aligned to MITRE ATT&CK.
Start attackingWhat's covered
Six offensive domains, hundreds of hands-on labs — from your first SQLi to full domain compromise.
Web Attacks
SQLi, XSS, SSRF, SSTI, file upload, auth bypass and real CVE scenarios.
Active Directory
Realistic AD kill-chains: Kerberos, NTLM, privilege escalation and lateral movement.
Privilege Escalation
Linux & Windows privesc: sudo/suid, cron, capabilities, registry and services.
Network & Protocols
Nmap, tunnelling, protocol abuse, WiFi (WPA2) and password cracking.
Exploit & C2
Exploit development, Metasploit, Cobalt Strike / Sliver tradecraft and post-exploitation.
CTF
Competition-style capture-the-flag missions to test speed and creativity.
Master the full attack lifecycle
Every challenge maps to a MITRE ATT&CK tactic — so progress is measurable, not just felt.
Reconnaissance
TA0043
Initial Access
TA0001
Privilege Escalation
TA0004
Lateral Movement
TA0008
Exfiltration
TA0010
Live attacker box, zero setup
Spin up a live lab
One click provisions a dedicated, isolated environment — no local VMs, no setup.
Attack from the browser
RDP/SSH straight into a Kali attacker box pointed at real target machines.
Capture flags & level up
Submit flags, earn points and watch your ATT&CK coverage grow in real time.
Mapped to MITRE ATT&CK
Each lab is tagged with the tactics and techniques it exercises and linked to real APT campaigns — so individuals and teams can see exactly which parts of the matrix they've covered.
Career paths
Guided tracks that take you from fundamentals to job-ready offensive skills.
Penetration Tester
End-to-end offensive tradecraft: web, network, AD and reporting.
Bug Bounty Hunter
Web-app focused recon, exploitation and creative chaining.
Web App Pentester
Deep OWASP-style application security against real targets.
Why CyberExam for Red Teams?
- Browser-based live labs — RDP/SSH from an attacker box to the target
- Measurable progress with MITRE ATT&CK technique mapping
- Content associated with real APT campaigns
- Pentester / Bug Hunter / Web App Pentester career paths
- Assign tasks, track progress and report for the whole team
