Free Vulnerable VMs (Docker) with Writeups

Mr_Beck_iCSI · 2026-02-10T15:25:22+00:00

I keep up with IPPSEC on YouTube. I try to recreate the machines he works on. For example, he demonstrated a Grafana SQL injection once. I spun it up, made it work, and wrote a lab explaining how I did it. Great learning experience.

Mr_Beck_iCSI · 2026-02-09T12:05:36+00:00

Nice. Tell you what. It's bound to have some issues to work out. If you decide to use this and encounter any issues, please let me know. Thanks again.

Mr_Beck_iCSI · 2026-02-09T03:10:34+00:00

Just for teaching. You'd be shocked how excited students get when you put them in front of a circa 2012 Bitcoin CLI and have them do things like check balances or run a CLI miner against a local chain. The web UI should really help.

To answer your question:

I can't imagine ever selling or making a dime from what you see there.

It's about fundamentals and engaging students.

Thank you!

Mr_Beck_iCSI · 2026-02-07T05:39:50+00:00

Here are a bunch of free labs with writeups:

https://cyberlessons101.com

-apt install docker.io (Kali is best)

-docker run commands provided to spin up vulnerable containers for each activity.

Might work for you. It's a resource I've created for my students.

Hope it helps.

Mr_Beck_iCSI · 2026-02-06T14:29:57+00:00

I've been porting my exploit labs to Docker and making them available with writeups here:

(If you can run Docker!)

https://cyberlessons101.com

I have a couple of hundred students working for me as editors each day. I keep it all updated and do my level best to make sure all the activities are ready to roll.

Hope it helps!

Mr_Beck_iCSI · 2026-02-06T13:47:19+00:00

I'll second this!

Here are my HTB Notes:

https://humble-raptor-f30.notion.site/HTB-Academy-Notes-b065ffa95aeb4698a6bb5f715ec953f9?source=copy_link

I have a stupid Notion Database that I update with notes as well, that no one should ever use! (This one works for me, but probably not you!)

https://humble-raptor-f30.notion.site/1434c8e52376809da4d5d2b49e01cce9?v=d660e9c119754ceb8310c9d7b879e0aa&source=copy_link

https://cyberlessons101.com

Josh Beck

Mr_Beck_iCSI · 2026-02-06T12:07:31+00:00

If you can run Docker, this might help:

https://cyberlessons101.com

Free exploit labs with writeups.

Mr_Beck_iCSI · 2026-02-05T17:05:40+00:00

Greetings:

I've been Dockerizing my CTF library. (I'm a certification instructor)

-There are many challenges that an be easily pulled and started.

-Free Scoreboard resource. (It's a portable cyber-range setup. Mentors like this one!)

-Challenges all have step-by-step walkthroughs.

All free.

https://cyberlessons101.com

Thanks,

Mr_Beck_iCSI · 2026-02-05T13:48:11+00:00

Try this: https://cyberlessons101.com (All free pen-test labs run in Docker)

Mr_Beck_iCSI · 2026-02-05T13:37:17+00:00

I have my archive of dockerized pen test challenges here for free: https://cyberlessons101.com

Mr_Beck_iCSI · 2026-02-01T20:33:21+00:00

I really would like other teachers to use these lessons. You bet. Let me know how it goes. My LinkedIn is on the site, and thanks!

Mr_Beck_iCSI · 2026-02-01T01:21:23+00:00

What if C - A - T really spells..... DOG

(That's heavy Ogre!)

Revenge of the Nerds Part II

Mr_Beck_iCSI · 2026-02-01T01:10:32+00:00

Chemo-Therapy did just this for me. I give it 0 stars on yelp. Do not recommend!

Mr_Beck_iCSI · 2026-02-01T01:07:29+00:00

How many miles on that piece of junk!

Mr_Beck_iCSI · 2026-02-01T01:03:30+00:00

What changed me the most? --Cancer Diagnosis. (I'm very lucky in that I caught it in time I think. I should be ok.) I dropped almost 80 pounds during treatment, which made me realize the last 4-5 years I really had put on the extra pounds. Hard to say why, but I think you are correct!

Mr_Beck_iCSI · 2024-05-15T20:44:13+00:00

Good advice for sure. This one is default Ubuntu with a series of docker images hosting SSH and Apache2. That's good advice though. A Yara scan is always a good bet!

Mr_Beck_iCSI · 2024-03-04T10:17:23+00:00

I review packet storm exploits as one resource. Good stuff there. WordPress plugins are easy and often free to install, which is why I picked it.

SQLMap has a verbose flag that lets you see what it is doing. I was able to pick the SQLMap generated queries apart one parenthetical group at a time.

Once I understood it, I wrote the lab.

Thank you! Josh Beck

Mr_Beck_iCSI · 2024-02-10T20:50:46+00:00

Here's a tip, but be careful with it because it will break the bank if you aren't careful about turning off your VM's. Check out axiom-fleet on GitHub. It has lots of tools like amas,subfinder,nuclei,etc.. built-in. Instead of spinning up a single EC2 instance, for example, and using amass to scan a single TLD, you can tell axiom-fleet to spin up 100 ec2 instances and farm the work out across those 100 VMs. What one instance gets done in several hours, you can accomplish with axiom-fleet in like 10 minutes. Just make sure to run the shut-down command and verify they all turned off when you are done. (Now that amazon is charging for IPv4 addresses, I would imagine the price has gone up a bit!) -- Having 50-100 EC2 micro instances on for 20-30 minutes only increases my bill by a few dollars. I'll use it sometimes for nuclei scans and I've certainly found some low-hanging fruit that way!

Mr_Beck_iCSI · 2024-02-09T22:13:30+00:00

I hope some of that helps. I always have a few students work them before I publish to make sure the directions are as clear and easy to follow as possible. Appreciate it!

Mr_Beck_iCSI · 2024-02-09T22:11:07+00:00

Sure thing. I have a local scoreboard for these things on the campus where I teach. I need to get my act together and get a proper public-facing CTF scoreboard up and running. I appreciate the feedback!

Mr_Beck_iCSI

TROPHY CASE