Hack The Box

Is your workforce strategy ready for the AI era? We analyzed training insights from 702,226 cybersecurity professionals to see how cyber capabilities are shifting, from the rise of specialized AI security skills to the move beyond traditional red and blue team silos. The takeaway? Modern security teams are becoming more adaptive, collaborative, and structured in the way they build readiness. Swipe through the top highlights, then download the full 2026 Global Cybersecurity Workforce Intelligence Report to explore the data. Get the full report >>> https://t.co/MBZysVQyhg #HackTheBox #HTB #Cybersecurity #AI #CyberReadiness #CyberSecurityTraining #CyberResilience #InfoSec https://t.co/vpKsteL1UE

A new Sherlock is now live on Dedicated Labs. Step into ShadowMonarch, a hard Digital Forensics & Malware Analysis case where suspicious network activity from a core infrastructure server points to a sophisticated backdoor using Berkeley Packet Filter (BPF) for network stealth. Your mission: reverse engineer the malware, uncover how it hides, and extract every indicator of compromise. Created by mtzsec. Play ShadowMonarch now >>> https://t.co/FJ0EPii3ZB #HackTheBox #HTB #Sherlocks #DedicatedLabs #DigitalForensics #MalwareAnalysis #DFIR #Cybersecurity

CTF legends, hacker style, and bigger savings. Grab limited-edition HTB CTF swag or build your own bundle with your favorite pieces and unlock up to 50% off while the offers last. Rep the community. Gear up before they’re gone. Limited Edition CTF Swag: https://t.co/7zqM3kjmco Build Your Own Swag Bundle: https://t.co/WTx6sFrRAW #HackTheBox #HTB #CTF #CaptureTheFlag #Cybersecurity

What separates an average SOC from an elite, high-performing squad? Spoiler alert: It’s not how much they spend on training, it’s how they operationalize it. 🚀 Most security teams treat training like a checkbox. But elite blue teams treat continuous readiness as the literal foundation of their everyday workflows. In our latest blog, we break down the 5 weekly habits that high-performing teams use to stay sharp, validate capabilities, and dramatically drop their MTTR. Ready to take your team from passive training to elite, measurable performance? Check out the full breakdown to see how Academy, Sherlocks, Threat Range, and Enterprise Reporting make it happen >>> https://t.co/8QfZ0Tu3um #cybersecurity #blueteam #socteam #cyberresilience #infosec #hackthebox

Attending FS-ISAC EMEA Summit this coming week? Come meet us at Booth #15 We’re also hosting a speaking session: Myth, Truth, and Reality: Agentic AI in Cybersecurity for FS Speaker: Konstantinos Dolkas, Chief Technology Officer, Hack The Box Date: 16 June 2026 Time: 12:15 PM – 1:00 PM CET Agentic AI is emerging in financial sector security operations, but its real capabilities remain unclear. This session will draw on results from large-scale cybersecurity simulations to explore where AI performs well, where it struggles, and what questions financial services organizations should ask when evaluating AI security tools. #HackTheBox #FSISAC #FSISACEMEA #CyberSecurity #FinancialServices #AgenticAI #AIinCyberSecurity #CyberResilience #CyberSecurityTraining

🚨 Weekly Content Drop 🚨 This week’s drop brings fresh content across OSINT, threat hunting, Windows, and web. 🦊 KitsuneHook — New Sherlock Difficulty: Easy Creator: 0iQ Tech: Google Knowledge domains: Threat Intelligence, Threat Hunting, OSINT Investigate a multi-stage campaign targeting a Japan-based manufacturing subsidiary. What begins with SQL injection on an ERP system escalates into web shell deployment, advanced malware, MSP compromise, and suspected links to Winnti activity against Japanese manufacturing, materials, and energy sectors. Your mission: investigate the “RevivalStone” campaign, identify the threat actors, and dissect their toolchain. Also dropping this week: 🖥️ Checkpoint — New Machine Windows | 30 points | Releases 13 Jun 2026 🍽️ Bobby’s Bistro — New Challenge Easy | Web New week. New intelligence. New trails to follow. #HackTheBox #HTB #WeeklyContentDrop #Sherlock #ThreatIntelligence #ThreatHunting #OSINT #DFIR #Windows #WebSecurity #CyberSecurity

The king has fallen. The throne is empty. Who will claim the realm? Cyber Apocalypse 2026 is coming. Join Hack The Box’s largest community event of the year and take on five days of relentless cybersecurity challenges built to test real-world skills. Compete against thousands of hackers worldwide, connect with the community, showcase your skills to global organizations and recruiters, and fight for your share of a massive prize pool. Get more than 200 points and claim your certificate of attendance. For the glory. For the training. For the prizes. For the certification. Register now: https://t.co/Kj7DXYU1hE #HackTheBox #CyberApocalypse2026 #CTF #CyberSecurity #CyberSkills #InfoSec #CaptureTheFlag

What happens when attackers do not break in, but simply log in? Cash Credentials challenges teams to investigate a breach that starts with valid VPN access sold by an insider, then escalates into credential theft, sensitive data exfiltration, and BlackSuit ransomware deployment. Teams will need to prove they can: Triage alerts under pressure Investigate forensic evidence Identify the full business impact before recovery decisions begin Give your defenders repeatable, realistic reps against the behaviors that often hide in plain sight. You can schedule your next session in minutes and stress-test your team's true capabilities. Get started: https://t.co/qztZWvJPwE

Hack The Box and Semperis have formed a strategic technology alliance to help enterprises strengthen identity resilience in the AI era. As hybrid environments, AI-driven transformation, and operational complexity reshape enterprise security, identity has become one of the most critical layers for defenders to protect. Together, Hack The Box and Semperis will combine hands-on cyber readiness with deep hybrid identity-security expertise to help security teams prepare for and respond to identity-based threats across Active Directory, Entra ID, Okta, and Ping Security environments. The alliance will focus on joint training, cyber exercises, educational content, industry activations, and readiness programs that turn identity-risk insight into practical skills, stronger workflows, and more confident response. Read the full announcement: https://t.co/r8uOJcIwKC #HackTheBox #Semperis #IdentitySecurity #CyberResilience #CyberSecurity #ActiveDirectory #EntraID #Okta #CyberReadiness

What happens when a cyber decision cannot wait? Welcome to Pressure Zone, a new game-driven cybersecurity podcast from Hack The Box. Each episode places security leaders inside escalating, realistic risk scenarios where they must make decisions under pressure, explain the business impact, and defend their judgment as the situation evolves. First up: The Poison Pill. A $50 million acquisition is nearly complete. Then a final code review uncovers a hidden logic bomb buried inside the target company’s core database architecture. Host Christine Bartlett puts Hack The Box Founder and CEO Haris Pylarinos through a live decision game where growth, trust, disclosure, legal exposure, and hacker instinct collide. This is cybersecurity leadership under pressure. Listen to episode one now >>> https://t.co/GCam3ldDxW #HackTheBox #PressureZone #CyberSecurity #CyberLeadership #CISO #ExecutiveRisk #CyberResilience #RiskManagement

A Samba print job name should not be able to become a shell command. But with CVE-2026-4480, an unauthenticated attacker who can reach a guest printer share can achieve pre-auth command execution through Samba’s printing path. In our latest War Room blog, we break down what makes this vulnerability dangerous, how attackers can weaponize it through spoolss, what defenders should hunt for, and how to mitigate exposure. We also built it into Abducted, a new Medium Linux CVE Machine on HTB Labs, so you can explore the vulnerability hands-on. Read the full analysis: https://t.co/DmRJbElGNw #HackTheBox #CVE #CVE20264480 #Samba #LinuxSecurity #RCE #CyberSecurity #ThreatHunting #VulnerabilityResearch

Your email gateway filters are great, right up until they fail. 📨 When a targeted phishing lure slips through, the clock starts ticking. Join us live on June 24 at 3PM UTC for Ep. 2 of our Blue Team series, where HTB engineers David F. and Marko Gordic will solve the "A Call from the Museum" challenge on screen. They will be breaking down the incident by walking through raw header triage and payload extraction step by step. Can't make it live? Register to get the recording sent to your inbox! Reserve your spot: https://t.co/UxuLK1LeuU

🚨 Weekly Content Drop 🚨 This week’s drop brings fresh content across threat hunting, digital forensics, Linux, and hardware. 🔎 Kraken — New Sherlock Difficulty: Medium Creator: M4shl3 Tech: FTK Imager, Windows, CyberChef, MFTECmd.exe Knowledge domains: Threat Hunting, Digital Forensics Investigate AD1 triage output using FTK to uncover artifacts and persistence left by a threat actor using the machine to pivot to an internal workstation. Also dropping this week: 🔌 Connected — New Machine Linux | 20 points | Releases 6 Jun 2026 ☕ Espresso — New Challenge Very Easy | Hardware New week. New evidence. New paths to uncover. #HackTheBox #HTB #WeeklyContentDrop #Sherlock #ThreatHunting #DigitalForensics #DFIR #WindowsForensics #Linux #Hardware #CyberSecurity

Security testing can’t stay periodic when enterprise environments are moving continuously. In a new InfoWorld opinion article, Dimitris Bougioukas, SVP, IT Security Training Services at Hack The Box, explores how modern security teams can operationalize continuous purple teaming to keep pace with automated deployment cycles, AI-driven threats, and fast-changing attack techniques. The article breaks down how organizations can bring red and blue team tactics directly into security operations workflows through: • Automated attack scenario simulation • Lab-based validation embedded into operational workflows • Detection telemetry aligned with resilience and readiness KPIs • Integration with SIEM, SOAR, infrastructure-as-code, and existing toolchains • Controlled environments for testing AI red teaming tactics and defensive AI tooling As release velocity increases, continuous purple teaming helps security teams collaborate in real time, validate controls continuously, and build a feedback-driven culture without slowing the business down. Read the full article: https://t.co/OLE88i2mNc #HackTheBox #PurpleTeaming #CyberSecurity #ContinuousSecurity #DetectionEngineering #RedTeam #BlueTeam #AIinCyberSecurity #CyberResilience

🚨 ICYMI - Last week's Content Drop🚨 Last week’s drop brings fresh content across digital forensics, Linux, and crypto. 🔎 CAMouflage — New Sherlock Difficulty: Easy Creator: M4shl3 Tech: Windows, Wireshark Knowledge domain: Digital Forensics Investigate a cracked application infection chain by parsing MFT and USN Journal artifacts, reconstructing execution timelines through Prefetch analysis, deobfuscating a dropped batch script, and tracing an AutoIt-based StealC v2 loader’s C2 communication. Also dropped: 💻 DevHub — New Machine Linux | 30 points | Releases 30 May 2026 🔐 Surprise Factor — New Challenge Hard | Crypto New week. New evidence. New paths to uncover. #HackTheBox #HTB #WeeklyContentDrop #Sherlock #DigitalForensics #Wireshark #WindowsForensics #Linux #Crypto #CyberSecurity

🏖️ Doing our part to keep our local communities clean. On May 14th, the HTB crew hit Floisvos Beach in Athens for a team cleanup. The final tally: ✨ 680 liters of waste cleared from the coast. ♻️ 100 liters of recyclables properly sorted. Swipe left to see our volunteers in action! 📸

The results are in! 💻 Big congratulations to the winners of our latest giveaway: 🏆 supermeisty 🏆 l33tb0ySlim 🏆 L1nuxKid (Check your inbox/DMs for details on how to claim your prize!) We are happy you've showcased your stories with us and look forward to seeing more XP journeys on the road ahead. Didn't win this time around? Keep your eyes peeled for more great opportunities with HTB coming very soon. 🟢👁️

Credential theft remains one of the most common ways attackers move deeper into an environment. The new Credential Access Tradecraft Analysis module is now available on HTB Academy and HTB Enterprise, helping learners understand how credential access techniques are executed, detected, and investigated in real-world scenarios. Tier: 4 Difficulty: Hard Category: Defensive Built for defenders looking to strengthen their ability to analyze attacker tradecraft, spot credential access activity, and improve detection and response skills. Start learning: https://t.co/c5sxBz9SZN #HackTheBox #HTBAcademy #HTBEnterprise #CyberSecurityTraining #BlueTeam #SOC #ThreatHunting #IncidentResponse #CredentialAccess