HackingHub
@hackinghub.bsky.social
Educating the next generation of ethical hackers @ https://hackinghub.io
Want to learn how NahamSec scored a massive $50,000 payout by exploiting a Blind XSS?
Check out the full walkthrough and the lab at the link below 👇
https://app.hackinghub.io/hubs/megabites
Check out the full walkthrough and the lab at the link below 👇
https://app.hackinghub.io/hubs/megabites
November 10, 2025 at 9:03 PM
Want to learn how NahamSec scored a massive $50,000 payout by exploiting a Blind XSS?
Check out the full walkthrough and the lab at the link below 👇
https://app.hackinghub.io/hubs/megabites
Check out the full walkthrough and the lab at the link below 👇
https://app.hackinghub.io/hubs/megabites
Want to level up your virtual host scanning, asset & content discovery basics?
Make sure to check out this lab 👇
https://app.hackinghub.io/hubs/heaps-of-virtual-data
Make sure to check out this lab 👇
https://app.hackinghub.io/hubs/heaps-of-virtual-data
November 9, 2025 at 10:02 PM
Want to level up your virtual host scanning, asset & content discovery basics?
Make sure to check out this lab 👇
https://app.hackinghub.io/hubs/heaps-of-virtual-data
Make sure to check out this lab 👇
https://app.hackinghub.io/hubs/heaps-of-virtual-data
Want to hack a WordPress plugin? Look for vulnerability patterns in similar plugins👇
November 9, 2025 at 12:32 AM
Want to hack a WordPress plugin? Look for vulnerability patterns in similar plugins👇
An easy IDOR that leaks tons of user information, but can you figure out how the usernames are created?
@nahamsec.bsky.social guides you through this "Ghost API" Hub.
Check it out here 👉 https://app.hackinghub.io/hubs/ghost-api
@nahamsec.bsky.social guides you through this "Ghost API" Hub.
Check it out here 👉 https://app.hackinghub.io/hubs/ghost-api
November 6, 2025 at 7:03 PM
An easy IDOR that leaks tons of user information, but can you figure out how the usernames are created?
@nahamsec.bsky.social guides you through this "Ghost API" Hub.
Check it out here 👉 https://app.hackinghub.io/hubs/ghost-api
@nahamsec.bsky.social guides you through this "Ghost API" Hub.
Check it out here 👉 https://app.hackinghub.io/hubs/ghost-api
Want to learn a way to find those hard-hitting critical vulnerabilities?
🐛 CVE-2025-29927 is a vulnerability in Next.JS that can lead to a complete authorization bypass.
Watch the video below to get a quick peek and then try the lab yourself 👇
https://app.hackinghub.io/hubs/cve-2025-29927
🐛 CVE-2025-29927 is a vulnerability in Next.JS that can lead to a complete authorization bypass.
Watch the video below to get a quick peek and then try the lab yourself 👇
https://app.hackinghub.io/hubs/cve-2025-29927
November 5, 2025 at 3:05 PM
Want to learn a way to find those hard-hitting critical vulnerabilities?
🐛 CVE-2025-29927 is a vulnerability in Next.JS that can lead to a complete authorization bypass.
Watch the video below to get a quick peek and then try the lab yourself 👇
https://app.hackinghub.io/hubs/cve-2025-29927
🐛 CVE-2025-29927 is a vulnerability in Next.JS that can lead to a complete authorization bypass.
Watch the video below to get a quick peek and then try the lab yourself 👇
https://app.hackinghub.io/hubs/cve-2025-29927
Struggling with finding hidden assets? Watch this short clip and then test your knowledge in one of our labs!
Link to the full walkthrough video and lab 👇
https://app.hackinghub.io/hubs/heaps-of-virtual-data
Link to the full walkthrough video and lab 👇
https://app.hackinghub.io/hubs/heaps-of-virtual-data
November 3, 2025 at 9:03 PM
Struggling with finding hidden assets? Watch this short clip and then test your knowledge in one of our labs!
Link to the full walkthrough video and lab 👇
https://app.hackinghub.io/hubs/heaps-of-virtual-data
Link to the full walkthrough video and lab 👇
https://app.hackinghub.io/hubs/heaps-of-virtual-data
Did you know you can get a Linux box with the essential hacking tools and wordlists within seconds without even leaving HackingHub?
Watch the video below and test it out yourself 👇
Watch the video below and test it out yourself 👇
November 2, 2025 at 1:02 PM
Did you know you can get a Linux box with the essential hacking tools and wordlists within seconds without even leaving HackingHub?
Watch the video below and test it out yourself 👇
Watch the video below and test it out yourself 👇
Listen to these Tomcat hacking tips and put them to the test right away in our BlueWings lab!
Watch the full video and access the lab here 👇
https://app.hackinghub.io/hubs/bluewings
Watch the full video and access the lab here 👇
https://app.hackinghub.io/hubs/bluewings
November 2, 2025 at 12:03 AM
Listen to these Tomcat hacking tips and put them to the test right away in our BlueWings lab!
Watch the full video and access the lab here 👇
https://app.hackinghub.io/hubs/bluewings
Watch the full video and access the lab here 👇
https://app.hackinghub.io/hubs/bluewings
Think you have what it takes to leverage an RCE and extract data even with strict firewall rules in place?
Find the lab and the full video here 👇
https://app.hackinghub.io/hubs/interactive-rce
Find the lab and the full video here 👇
https://app.hackinghub.io/hubs/interactive-rce
October 30, 2025 at 10:03 PM
Think you have what it takes to leverage an RCE and extract data even with strict firewall rules in place?
Find the lab and the full video here 👇
https://app.hackinghub.io/hubs/interactive-rce
Find the lab and the full video here 👇
https://app.hackinghub.io/hubs/interactive-rce
How much do you know about WebSockets?
Find out by hacking this chat application made by @insider.phd👇
https://app.hackinghub.io/hubs/nahamcon-25-insiderphd-websocket
Find out by hacking this chat application made by @insider.phd👇
https://app.hackinghub.io/hubs/nahamcon-25-insiderphd-websocket
October 29, 2025 at 5:05 PM
How much do you know about WebSockets?
Find out by hacking this chat application made by @insider.phd👇
https://app.hackinghub.io/hubs/nahamcon-25-insiderphd-websocket
Find out by hacking this chat application made by @insider.phd👇
https://app.hackinghub.io/hubs/nahamcon-25-insiderphd-websocket
Find out how a new hacker struck gold with this Remote Code Execution vulnerability, earning $5,000 from Netflix
Detailed walkthrough and lab is available at 👇
https://app.hackinghub.io/hubs/RemoteBinge
Detailed walkthrough and lab is available at 👇
https://app.hackinghub.io/hubs/RemoteBinge
October 28, 2025 at 5:04 PM
Find out how a new hacker struck gold with this Remote Code Execution vulnerability, earning $5,000 from Netflix
Detailed walkthrough and lab is available at 👇
https://app.hackinghub.io/hubs/RemoteBinge
Detailed walkthrough and lab is available at 👇
https://app.hackinghub.io/hubs/RemoteBinge
Missed NahamCon 2025 CTF, but up for a challenge?
Hack this cute little toy website and many others in the NahamCon 2025 CTF module 👇
https://app.hackinghub.io/hubs/nahamcon-2025-ctf
Hack this cute little toy website and many others in the NahamCon 2025 CTF module 👇
https://app.hackinghub.io/hubs/nahamcon-2025-ctf
October 27, 2025 at 11:02 PM
Missed NahamCon 2025 CTF, but up for a challenge?
Hack this cute little toy website and many others in the NahamCon 2025 CTF module 👇
https://app.hackinghub.io/hubs/nahamcon-2025-ctf
Hack this cute little toy website and many others in the NahamCon 2025 CTF module 👇
https://app.hackinghub.io/hubs/nahamcon-2025-ctf
Take your knowledge about recon to the next level by completing the 'Path to RCE' hub, based on a real-world RCE vulnerability that was awarded a $40,000 bounty!
Watch the full walkthrough video and access the lab at:
https://app.hackinghub.io/hubs/path-to-rce
Watch the full walkthrough video and access the lab at:
https://app.hackinghub.io/hubs/path-to-rce
October 26, 2025 at 5:02 PM
Take your knowledge about recon to the next level by completing the 'Path to RCE' hub, based on a real-world RCE vulnerability that was awarded a $40,000 bounty!
Watch the full walkthrough video and access the lab at:
https://app.hackinghub.io/hubs/path-to-rce
Watch the full walkthrough video and access the lab at:
https://app.hackinghub.io/hubs/path-to-rce
Check out this great methodology tip by @jhaddix.bsky.social on what to do when you encounter a CMS.
Find the full walkthrough video and the lab below 👇
https://app.hackinghub.io/hubs/prison-hack
Find the full walkthrough video and the lab below 👇
https://app.hackinghub.io/hubs/prison-hack
October 25, 2025 at 5:02 PM
Check out this great methodology tip by @jhaddix.bsky.social on what to do when you encounter a CMS.
Find the full walkthrough video and the lab below 👇
https://app.hackinghub.io/hubs/prison-hack
Find the full walkthrough video and the lab below 👇
https://app.hackinghub.io/hubs/prison-hack
Stop searching the hard way! Regular expressions (Regex) are an awesome tool for tracking down information and identifying patterns.
Learn how to wield this power for hacking and technology in our "Regex for Hackers" course: https://app.hackinghub.io/course/regex-for-hackers/purchase
Learn how to wield this power for hacking and technology in our "Regex for Hackers" course: https://app.hackinghub.io/course/regex-for-hackers/purchase
October 23, 2025 at 5:03 PM
Stop searching the hard way! Regular expressions (Regex) are an awesome tool for tracking down information and identifying patterns.
Learn how to wield this power for hacking and technology in our "Regex for Hackers" course: https://app.hackinghub.io/course/regex-for-hackers/purchase
Learn how to wield this power for hacking and technology in our "Regex for Hackers" course: https://app.hackinghub.io/course/regex-for-hackers/purchase
How are you using the most important part of hacking (Recon)?
Comment below👇
Comment below👇
October 22, 2025 at 5:03 PM
How are you using the most important part of hacking (Recon)?
Comment below👇
Comment below👇
In Nov 2024, researchers used minimal data (name, email, or plate) to access engine controls, door locks, location tracking, and PII on Subaru STARLINK vehicles.
Master this high-impact exploit chain in our new CypherDrive lab!
Get started: https://app.hackinghub.io/hubs/cypherdrive
Master this high-impact exploit chain in our new CypherDrive lab!
Get started: https://app.hackinghub.io/hubs/cypherdrive
October 18, 2025 at 10:02 PM
In Nov 2024, researchers used minimal data (name, email, or plate) to access engine controls, door locks, location tracking, and PII on Subaru STARLINK vehicles.
Master this high-impact exploit chain in our new CypherDrive lab!
Get started: https://app.hackinghub.io/hubs/cypherdrive
Master this high-impact exploit chain in our new CypherDrive lab!
Get started: https://app.hackinghub.io/hubs/cypherdrive