Modules & Paths are the heart and soul of HTB Academy. They are the two primary categories of learning content on the platform.
Modules are like courses; they contain content confined to a specific subject, such as Linux Privilege Escalation or Windows Fundamentals. Each of these is its own discrete unit and has a certain cost of Cubes associated with it.
Each Module contains Sections. These are akin to chapters or individual lessons. They each cover a discrete part of the Module's subject matter. For example, Linux Fundamentals has Sections for User Management, Package Management, Navigation, and many more. In addition, some Sections are interactive and may contain assessment questions or a target system for you to test out what you've learned.
Paths are groupings of Modules that are all related to each other. The goal of a Path is to guide you through a specific set of Modules to master some particular subject. For example, the path Active Directory Enumeration contains Modules that cover various topics related to Active Directory.
Enrolling in Paths and Modules
The first step in your educational journey with Academy is to enroll in a Path or start working on Modules directly. There are scores of Modules to choose from, so take a look around and see what interests you!
To learn more about navigating Academy, filtering Modules, and how the Cube System works, check our article introducing the Academy platform.
Click the button below to learn how to filter Modules:
If you aren't sure what Module to start with, the Introduction to Academy and Learning Process Module's are a great place to start.
Unlocking a Module
Once you've picked a Module, you'll need to unlock it to begin working. Unlocking a Module will cost some amount of Cubes. The amount of Cubes required to unlock a module is shown at the bottom of the Module preview tile.
The amount needed will also be displayed when you attempt to unlock the Module.
Completing a Module also awards some Cubes back to you. For the Tier 0 Modules, the amount awarded back to you for completing the module is the same as the cost, making these completely free.
You can also see the number of Cubes you receive for completing a Module in the preview tile.
If you are unfamiliar with the Cube System, please see the Introduction to Academy article linked in the previous section of this article.
Once the Module is unlocked, you'll be able to begin working on it.
Enrolling in a Path
Unsure of what Module to start with? That's okay! Instead, you could enroll in a Path for a guided experience. Enrolling in a Path is just as simple as unlocking a Module.
Navigate to the Paths page, and select the Path you are interested in. Once you've located it, click the Enroll button.
Once you've enrolled, your chosen path will be displayed on your dashboard under the Currently Enrolled Path section. From here, you will be able to see the individual Modules that make up the Path and start or continue working on it.
To continue your progress on your Path, press the Continue button on your dashboard.
If for some reason, you decide you are no longer interested in working on the Path you've selected, you can enroll in a different Path. You will be automatically unenrolled from your current Path.
Module Structure
It's important to understand how the Modules on HTB Academy are structured. Each Module is broken up into Sections. These Sections are equivalent to one lesson in the topic covered by the Module.
You can view all of the Sections in a Module in the Table of Contents on the right side of the Module's content.
Some Sections have a Cube before their name. This signifies that the Section is Interactive.
An interactive Section may have a practical component, where you interact with a target system or Pwnbox instance. It may also have assessment questions for you to answer. We will talk a bit more about this Interactive Sections portion of this article.
The Cheat Sheet
Above the Table of Contents, you'll find a button called Cheat Sheet. This Cheat Sheet serves as a reference for commands related to the subject matter. This may contain both commands actually used in the Module, as well as related commands you may simply find useful.
The Cheat Sheet can also be accessed from a second button in the Questions portion of Interactive Sections.
Progressing through a Module
Each Section of a Module contains reading material that serves as a lesson on the given topic. You'll want to be sure to read this material carefully, taking the time to make sure you understand it, and doing your own research when necessary.
Once you've completed all the content a Section has to offer, you can mark it as complete and move to the next one by pressing the Mark Complete & Next button at the bottom of the page.
After marking a Section as complete, a green checkmark will appear next to it in the Table of Contents. This makes it easy to keep track of what content you've already finished.
Interactive Sections and Target Systems
Interactive Sections are the practical portion of Academy Modules. This is where you take the knowledge you've gathered from the reading material and actually apply it.
Sometimes this means you answer an assessment question on the material you've just read. Other times it means you use the Pwnbox instance provided to you under My Workstation to run some commands. Most times, it means you are given the IP address of a target, which you'll then either connect to or attack.
Many Interactive Sections will require you to spawn a Target System. These are systems that have been configured to be enumerated or attacked as part of a lesson. They come in two flavors: Docker Targets and VM Targets.
Docker Targets
As the name would suggest, Docker Targets are target systems that make use of Docker. Once spawned, they will take the form of IP:PORT
, such as 157.245.40.149
:30655
. The scope of Docker Targets is limited to the specified port, so there is no reason to perform any enumeration beyond that port. They are also accessible over the internet, meaning a VPN connection is not required.
VM Targets
For cases where a Docker image can't be used, such as Modules that use a Windows target or an Active Directory environment, a VM Target will be spawned. These target systems will provide an IP address, such as 10.129.89.137
. You will often be provided with a set of credentials and a method of connecting to the target, such as SSH to 10.129.89.137 with user "htb-student" and password "HTB_@cademy_stdnt!"
.
If you aren't provided with credentials and a login method such as SSH, RDP, or WinRM, it's safe to assume you are meant to attack the target unauthenticated.
Spawning Target Systems
In order to spawn a target system, scroll down to the bottom of the page to the Questions section and click on the link that says Click here to spawn the target system!
If for some reason, you believe there is an issue with your target system, you can always reset it by clicking on the reset icon next to the IP address.
Submitting Answers
Most Interactive Sections will have some assessment questions for you to answer. Once you believe you know the correct answer, type it into the textbox and press the Submit button.
If you are having trouble figuring out the right answer, some assessment questions have a Hint button you press for a nudge in the right direction. This is located immediately to the right of the Submit button.
Module Solutions
If you have an active yearly subscription to HTB Academy you can enable the solutions for the sections from your settings page:
This will allow you to use the Show Solution button that will provide step-by-step explanations on how to solve the question.
You can always disable the solutions from the settings page if you wish to.