Introduction
Capture The Flag (CTF) rooms offer an exciting and interactive way to learn cybersecurity skills and test your hacking abilities. In this article, we will explore 360 free CTF rooms available on TryHackMe, a popular platform for cybersecurity enthusiasts and beginners alike. These rooms provide hands-on challenges and real-world scenarios that can help you enhance your knowledge and practical experience in the field of cybersecurity. Let’s delve into the world of CTF rooms and discover the diverse range of challenges they have to offer.
Entry-Level Rooms
Entry-level rooms provide an excellent starting point for newcomers to the platform. These 9 rooms offer opportunities to get familiar with the platform, learn basic terminology, and grasp fundamental cybersecurity concepts.
- Hello
- How to Use TryHackMe
- Getting Started
- Welcome
- Tutorial
- OpenVPN
- Beginner Path Intro
- Starting Out in CyberSec
- Intro to Research
Foundational Rooms
Foundational rooms are designed to teach essential knowledge in areas such as Linux, networking, security principles, and physical security. With 16 rooms in this category, they provide valuable content for those taking their first steps into the world of cybersecurity.
- Linux 2
- Linux Modules
- Linux Fundamentals Part 1
- Linux Fundamentals Part 2
- Linux Fundamentals Part 3
- Basic Pentesting (JT)
- Pentesting Fundamentals
- Principles of Security
- CC Pentesting
- Hacker Methodology
- Physical Security Intro
- Linux Strength Training
- Cat Regex
- OpenVAS
- BTM: Ispionage
- ISO 27001
- UltraTech:1
Discovery Rooms
Discovery rooms focus on passive and active discovery methods. In these 9 rooms, you can learn how to explore target systems, detect open services, and gather information, essential skills for any cybersecurity enthusiast.
- Passive Recon
- Active Recon
- Content Discovery
- OSINT (Open Source Intelligence)
- Shodan
- Google Dorking
- Searchlight OSINT
- Web OSINT
- Sakura
Scripting Rooms
Scripting rooms cater to those interested in languages like Python, Bash, JavaScript, and YARA. With 8 rooms in this category, you can enhance your programming skills, making you more effective in the world of cybersecurity.
- Python Basics
- Python Playground
- Intro to POC Scripting
- Peakhill
- JavaScript Basics
- Bash Scripting
- Rust
- YARA
Networking Rooms
Networking rooms are a great resource for understanding the fundamentals of networks and exploring protocols like TCP/IP, DNS, HTTP, etc. With 7 rooms available, you can gain insights into network security.
- Intro to Networking
- What is Networking?
- BP Networking
- Intro to LAN
- HTTP in Detail
- DNS in Detail
- RFirmware
Tooling Rooms
The tooling category introduces users to widely used tools and programs in cybersecurity. In these 19 rooms, you can learn about Nmap, Metasploit, Burp Suite, and many other security tools, becoming well-equipped for your cybersecurity journey.
- Metasploit Introduction
- RP: Metasploit
- RP: Tmux
- Tmux Remux
- Hydra
- RP: Sublist3r
- Toolbox Vim
- Learn OWASP ZAP
- Phishing with HiddenEye
- RustScan
- RP: Nessus Redux
- Nmap 01
- Further Nmap
- Tshark
- FFuF
- Burp Suite Basics
- Burp Suite Repeater
Crypto & Hashes Rooms
Crypto & Hashes rooms provide an opportunity to delve into cryptography and hash algorithms, solving cryptographic challenges. With 6 rooms in this category, you can sharpen your encryption skills.
- Cryptography for Dummies
- Crack the Hash
- Crack the Hash Level 2
- Password Security
- Agent Sudo CTF
- Brute It
Web Rooms
Web rooms focus on web application security and vulnerabilities. In these 18 rooms, you can explore popular web vulnerabilities like SQL injection, Cross-Site Scripting (XSS), LFI/RFI, and more, improving your web security skills.
- Web Fundamentals
- Web AppSec 101
- Vulnerabilities 101
- Walking Through an Application
- OWASP Top 10
- OWASP Juice Shop
- RP: Web Scanning
- OWASP Mutillidae II
- WebGoat
- DVWA
- VulnNet: 1
- Juicy Details
- Vulnversity
- Injection
- LFI Basics
- Inclusion
- SQLi Lab
- Learn Server-Side Template Injection (SSTI)
- SQL Injection – LM
Android Room
The Android hacking room is tailored for those who want to learn about mobile security and discover vulnerabilities in Android applications.
Forensics Rooms
Forensics rooms are for those interested in learning how to collect and analyze digital evidence. With 5 rooms available, you can develop your incident response capabilities.
WiFi Hacking Room
The WiFi hacking room is designed to explore vulnerabilities in wireless networks and learn how to crack WiFi passwords, enhancing your WiFi security testing skills.
Reverse Engineering Rooms
Reverse Engineering rooms are ideal for those who want to understand how software works and analyze applications. With 10 rooms in this category, you can develop reverse engineering skills by dissecting and analyzing programs.
- Intro to x86-64
- Win64 Assembly
- Reverse Engineering
- Reverse Files
- JVM Reverse Engineering
- ccradare
- ccghidra2
- Aster
- Classic Passwd
- Reloaded
Malware Analysis Rooms
Malware analysis rooms focus on understanding how malware operates and dissecting malicious code. With 8 rooms available, you can gain insights into malware analysis techniques.
- History of Malware
- MalMal: Introductory Malware Analysis
- Basic Malware RE
- MalResearching
- MMA: Malware Hunting with Osquery
- C2Carnage
- DunkleMateriePtXc9
Steganography Rooms
Steganography rooms concentrate on discovering and solving hidden messages within media files, such as images and audio. With 6 rooms in this category, you can hone your skills in finding secret messages.
Privilege Escalation Rooms
Privilege escalation rooms aim to elevate the privileges of low-level users on systems. With 7 rooms available, you can practice privilege escalation techniques.
- Linux Privilege Escalation
- Linux Privilege Escalation
- Linux Privilege Escalation Arena
- Windows 10 Privilege Escalation
- Windows Privilege Escalation Arena
- Linux Agency
Windows Rooms
Windows rooms provide an opportunity to learn about Windows operating systems and explore vulnerabilities in Windows systems. With 10 rooms in this category, you can conduct security tests on Windows platforms.
- Windows Fundamentals 1xbx
- Windows Fundamentals 2x0x
- Windows Fundamentals 3xzx
- Investigating Windows
- Investigating Windows 2
- Investigating Windows 3
- Blueprint
- VulnNet: Active Directory
- Anthem
- Blue
Active Directory Rooms
Active Directory rooms are designed for testing security in enterprise networks and Active Directory structures. With 5 rooms available, you can gain valuable insights into Active Directory security.
PCAP Analysis Rooms
PCAP analysis rooms are for those interested in analyzing network traffic and understanding attacks. With 4 rooms in this category, you can develop your network traffic analysis skills.
Buffer Overflow Rooms
Buffer overflow rooms are perfect for those interested in understanding memory overflows in programs and exploiting such vulnerabilities. With 4 rooms available, you can gain hands-on experience with this critical cybersecurity vulnerability.
Easy CTF Rooms
Easy CTF rooms are tailored for both organizers and participants competitions. With 58 rooms in this category, you can test your cybersecurity skills through CTF challenges.
- OverlayFS
- GamingServer
- Psychobreak
- CowboyHacker
- CTF
- r00t-me
- AttackerKB
- Picklerick
- C4ptur3Th3Fl4g
- BSidesGT Library
- BSidesGT Thompson
- EasyCTF
- LazyAdmin
- BSidesGT Anonforce
- Ignite
- WgelCTF
- Kenobi
- BSidesGT Dav
- NinjaSkills
- Ice
- Lian_Yu
- The Cod Caper
- Blaster
- EncryptionCrypto101
- Brooklyn Nine Nine
- Year of the Rabbit
- Jack of All Trades
- Madness
- KothfoodCTF
- EasyPeasyCTF
- Tony The Tiger
- CTF Collection Vol.1
- Smaggrotto
- Couch
- Source
- Overpass
- Pokemon
- Bolt
- Overpass2Hacked
- Kiba
- Poster
- Chocolate Factory
- Startup
- Chillhack
- Coldbox Easy
- Glitch
- All-In-One MJ
- Archangel
- CyborgT8
- Lunizz CTF
- Badbyte
- TeamCW
- VulnNet Node
- VulnNet Internal
- Atlas
- VulnNet Roasted
- CatPictures
- Mustacchio
Medium CTF Rooms
Medium CTF rooms present more challenging content for those seeking to test their skills further in CTF competitions. With 73 rooms available, you can tackle complex cybersecurity problems and enhance your expertise.
- Road
- Mr. Robot
- GoldenEye
- StuxCTF
- BoilerCTF2
- JokerCTF
- Biohazard
- Breakit
- Willow
- Marketplace
- Nax
- Mindgames
- Anonymous
- Blog
- Wonderland
- 0day
- BSidesGT Develpy
- CTF Collection Vol.2
- CMess
- DejaVu
- HackerNote
- Dogcat
- ConvertMyVideo
- KoTH Hackers
- Revenge
- Harder
- HaskHell
- UndiscoveredUP
- Breakout The Cage 1
- The Impossible Challenge
- LookingGlass
- Recovery
- Relevant
- Ghizer CTF
- Mnemonic
- WWBuddy
- The Blob Blog
- Cooctus Adventures
- CTF One Piece 65
- ToC2
- NerdHerd
- Kubernetes Chall TDi 2020
- The Server from Hell
- Jacob The Boss
- UnbakedPie
- BookStoreOC
- Overpass3 Hosting
- Battery
- Madeyes Castle
- Enpass
- Sustah
- SomeSINT
- TokyoGhoul666
- Watcher
- Broker
- Inferno
- VulnNetDotPy
- Wekorra
- PylonZF
- The Great Escape
- SafeZone
- Nahamstore
- SweetTooth Inc.
- CMSPIT
- SuperSpamr
- That’s The Ticket
- Debug
- Redstone One Carat
- ColdVVars
- Metamorphosis
- SQHell
- Fortress
- CyberCrafted
Hard CTF Rooms
Hard CTF rooms are designed for experienced cybersecurity professionals and individuals seeking highly challenging CTF competitions. With 37 rooms in this category, you can test your skills against difficult tasks.
- M4TR1X – Exit Denied
- Motunui
- Spring
- Brainpan
- Borderlands
- HC0N – Christmas CTF
- Daily Bugle
- Retro
- Jeff
- RaceTrack Bank
- Dave’s Blog
- Cherry Blossom
- CCT2019
- IronCorp
- CarpeDiem1
- RA
- YOTF
- For Business Reasons
- Anonymous Playground
- Misguided Ghosts
- Theseus
- Internal
- Year of the Dog
- In a Cave
- Year of the Owl
- Year of the Pig
- Envizon
- GameBuzz
- FusionCorp
- CroccCrew
- Uranium
- Year of the Jellyfish
- Rocket
- Squid Game Room
- Enterprize
- Adana
- VulnNetDotJar
Special Events
Special events consist of rooms created for specific time frames and focus on special topics. These rooms offer content curated for special events.
- Hacker of the Hill
- 25 Days of Christmas
- Learn Cyber in 25 Days
- Advent of Cyber 2
- Advent of Cyber 3
- CyberWeek 2021
- Tickets1
- Tickets2
Miscellaneous Rooms
Miscellaneous rooms include a variety of content that does not fit into other categories. With 33 rooms available, you can explore a wide range of cybersecurity topics and broaden your knowledge.
- Solar
- Django
- Git Happens
- Meltdown Explained
- BPSplunk
- Linux Backdoors
- The Find Command
- Jupyter 101
- Geolocating Images
- Tor for Beginners
- TomGhost
- DLL Hijacking
- IoT Intro
- Attacking ICS 1
- Attacking ICS 2
- Printer Hacking 101
- DNS Manipulation
- Flask
- MITRE
- Magician
- JPG Chat
- Sudo Vulnerabilities: Sudoedit
- CVE-2021-41773
- Binary Heaven
- Git & Crumpets
- Polkit
- Hipflask
- Bypass Disable Functions
- WordPress CVE-2021-29447
- Linux Function Hooking
- Revil Corp
- Sudo Vulnerabilities: Buffer Overflow
- Sudo Vulnerabilities: Bypass
TryHackMe’s collection of 350 free rooms provides an excellent opportunity to learn and develop your cybersecurity skills. Categorizing these rooms makes it easier for users to find content tailored to their interests. Whether you are a beginner or an experienced professional, TryHackMe offers valuable resources to advance your cybersecurity journey.