Professional Labs offer interactive, hands-on experience with complex scenarios that simulate a real-world red team engagement. Professional Labs are comprised of encapsulated networks of Boxes that utilize various operating systems, security configurations, and exploit paths to provide the perfect opportunity to level up your red-team skills.

This is a very different experience from pentesting individual Boxes. When working on a Professional Lab, you'll have to scan entire subnets, pivot between hosts, and think about how different nodes on the network relate to one another.

Lab Overview

Each Professional Lab has an Overview that contains all of the information you may want to know before starting the lab. At the top of the Overview, you can view how many Boxes and Flags the lab contains, its difficulty rating, and which Penetration Tester Level it is considered to be.

Further down on the page, you'll find a description of the lab's premise, an explanation of its target audience, as well as some details about what type of skills you'll learn and technologies you'll interact with.

The Lab page also includes an Introduction that covers much of the same material in the Overview tab.

Initial Entry

Since Professional Labs are comprised of entire networks, as opposed to a single Box, they specify an entry point for your initial enumeration. Typically, this entry point is an entire subnet.

Most often, the first action you should take when starting a Professional Lab is to perform a scan on this subnet to see what hosts you can find.

You can find this at the top of the same page that contains the lab overview.

Alternatively, you can figure out which subnet you to begin scanning by viewing your routing table after connecting to the VPN. The destination subnet that corresponds with your VPN connections gateway is the subnet you initially have access to.

If you aren't sure how to get connected to your Professional Lab's network, be sure to read the following article:

Click the button below to learn how to connect to your Professional Lab:

Tracking Progress

As you submit flags, your progress in the lab will increase. In the flag list provided on the Lab page, each flag will be marked as owned as you submit it.

While the flag order indicates the normal progression through the lab, it's not necessary for you to follow this exact sequence. Depending on the path you take, you may find yourself occasionally submitting flags out of order.

Different flags have different quantities of Points associated with them- some flags are worth more than others. The amount of Points you have determines your position within the lab's Leaderboard.

Assuming your Admin has enabled this feature, you will be able to view how many Points each user has in the Members panel on the right.

Lab Writeup and Box List

Depending on your lab's settings, you may be able to view a writeup that documents each step of completing the lab. This document is confidential and should not be shared.

If available, you can view the lab's writeup by clicking on the Expand button in the top right of the Lab page.

Scrolling down in this side panel, you also find a list of each Box present in the Professional Lab, as well as an icon representing the operating system each Box uses.

Did this answer your question?