{"uuid": "33e2cdab-d412-4f13-a704-ff71fe91b219", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2004-1561", "type": "seen", "source": "https://gist.github.com/riskiidice/f47a968743a0eaf9c98c077f35dc82ed", "content": "# darkstar7471.com \u2014 Infosec Training Resources\n## Complete Detailed Reference\n### https://darkstar7471.com/resources.html\n### Jon Peters \u2014 Security Engineer, THM Administrator &amp; Content Director\n### Contact: jon[at]tryhackme.com\n\n---\n\n## PART 1: TRYHACKME ROOMS\n\n---\n\n### 1. Blue\n**Room URL:** https://tryhackme.com/room/blue\n**OVA Download:** https://drive.google.com/open?id=11f_wsW59Dh1fGvQCNUPK70lIWzlcg44_\n\n#### Description\nA guided Windows RT exploitation walkthrough based on the infamous EternalBlue (MS17-010) vulnerability. Introduces meterpreter fundamentals on a Windows target. One of the most foundational rooms for Windows exploitation.\n\n#### Learning Objectives\n- Exploitation of Windows via EternalBlue (MS17-010)\n- Using Metasploit Framework's `ms17_010_eternalblue` module\n- Meterpreter shell interaction\n- Windows privilege escalation basics\n- Post-exploitation with meterpreter\n- Dumping SAM database and hashes\n- Windows defender evasion concepts\n\n#### Typical Room Tasks / Questions\n1. Port scan the machine \u2014 what ports are open?\n2. What is the hostname?\n3. Find the vulnerability (MS17-010)\n4. Find the CVE number\n5. Use Metasploit to exploit\n6. Get a meterpreter shell\n7. Find user accounts\n8. Dump password hashes\n9. Find the flag(s)\n10. privilege escalate to SYSTEM\n\n#### Tools Used\n- Nmap\n- Metasploit Framework (msfconsole)\n- meterpreter\n- hashdump\n\n#### Difficulty\nBeginner to Intermediate\n\n#### Flags (typical)\n- `user.txt` \u2014 user flag\n- `root.txt` \u2014 root/SYSTEM flag\n\n---\n\n### 2. Ice\n**Room URL:** https://tryhackme.com/room/ice\n**OVA Download:** https://drive.google.com/open?id=19DnNlNWzNVSwiBYz5mxPWRPCWQmINzmz\n\n#### Description\nFollow-up to the Blue room. Introduces Icecast (HTTP media streaming server) exploitation on Windows and in-memory (shellcode) privilege escalation techniques. Step up from Blue \u2014 moves beyond automated exploits to manual technique understanding.\n\n#### Learning Objectives\n- Enumeration of a Windows media streaming server (Icecast)\n- Exploiting CVE for Icecast (CVE-2004-1561 or related)\n- Understanding buffer overflow exploitation\n- In-memory privilege escalation from low-privileged user to SYSTEM\n- Using Incognito module in meterpreter for token theft\n- Capturing desktop screenshots with meterpreter\n- Identifying running processes and escalation vectors\n\n#### Typical Room Tasks / Questions\n1. Port scan \u2014 what services are running?\n2. What is the Icecast version?\n3. Find the associated CVE\n4. Exploit the vulnerability\n5. Get a low-privilege shell\n6. Enumerate the system (sysinfo, ps, ipconfig)\n7. Use Incognito to steal tokens\n8. Escalate to SYSTEM\n9. Find the flags\n\n#### Tools Used\n- Nmap\n- Metasploit Framework\n- meterpreter (incognito, screenshot, keylog)\n- Immunity Debugger or similar (for buffer overflow)\n\n#### Difficulty\nBeginner to Intermediate\n\n#### Flags (typical)\n- `user.txt`\n- `root.txt`\n\n---\n\n### 3. Ignite\n**Room URL:** https://tryhackme.com/room/ignite\n**OVA Download:** https://drive.google.com/open?id=1GgXEDgld7af41JW90hPcqncIUEqrRj0G\n\n#### Description\nA Fuel CMS exploitation challenge. Targets a default-config Fuel CMS installation on a Linux web server. Teaches web application enumeration, CMS identification, and exploiting known CVEs in Fuel CMS.\n\n#### Learning Objectives\n- Web application enumeration\n- Identifying Fuel CMS (PHP-based CMS)\n- Exploiting Fuel CMS CVE (publicly known vulnerabilities)\n- Initial shell via web exploit\n- Linux privilege escalation\n- Locating flags in a LAMP-stack environment\n\n#### Typical Room Tasks / Questions\n1. Port scan \u2014 find the web server\n2. Identify the CMS\n3. Search for known vulnerabilities\n4. Find the admin login page\n5. Exploit the CMS\n6. Get a shell\n7. Enumerate the system\n8. Find the flag\n\n#### Tools Used\n- Nmap\n- Gobuster / dirb (web directory enumeration)\n- SearchSploit / Exploit-DB\n- Metasploit (optional)\n\n#### Difficulty\nBeginner\n\n#### Flags (typical)\n- `flag.txt`\n\n---\n\n### 4. JoyStick\n**Room URL:** https://tryhackme.com/room/joystick\n**OVA Download:** https://drive.google.com/open?id=1SCUMQwMAkJSfWHc4nkbB7WmWWrrqtOoJ\n\n#### Description\nA Capture The Flag (CTF) style challenge based on a game server. Combines multiple exploitation techniques \u2014 web exploitation, service enumeration, and privilege escalation.\n\n#### Learning Objectives\n- Multi-stage CTF challenge\n- Web server enumeration\n- Finding hidden information\n- Exploiting game server software\n- Linux privilege escalation\n- Password cracking / authentication bypass\n- Lateral movement if multiple hosts\n\n#### Tools Used\n- Nmap\n- Gobuster / feroxbuster\n- Netcat / reverse shell techniques\n- Linux enumeration (linpeas, linenum)\n- John the Ripper / hashcat\n\n#### Difficulty\nIntermediate\n\n---\n\n### 5. Retro\n**Room URL:** https://tryhackme.com/room/retro\n**OVA Download:** https://drive.google.com/open?id=1LTAeHyEuR9RqlKhNeaUEYxY1yScBiHY9\n\n#### Description\nA Windows 10 machine styled as a retro gaming PC. Teaches Windows 10 exploitation with a focus on credential access, understanding Windows Defender evasion, and Windows registry analysis.\n\n#### Learning Objectives\n- Windows 10 exploitation\n- Windows Defender evasion techniques\n- Credential harvesting (SAM, SECURITY, SYSTEM hives)\n- Windows registry analysis\n- Using meterpreter Kiwi extension\n- Pass-the-hash concepts\n- Windows persistence techniques\n\n#### Typical Room Tasks / Questions\n1. Port scan the machine\n2. Enumerate HTTP services\n3. Find the CMS/exploit\n4. Gain initial access\n5. Bypass Windows Defender\n6. Dump credentials\n7. Find flags\n\n#### Tools Used\n- Nmap\n- Metasploit\n- meterpreter Kiwi (mimikatz)\n- Registry analysis tools\n- hashdump / secretsdump\n\n#### Difficulty\nIntermediate\n\n---\n\n### 6. Blaster\n**Room URL:** https://tryhackme.com/room/blaster\n**OVA Download:** https://drive.google.com/open?id=13ZI99xlFnOtmevJT770vc0wzq2H9i66j\n\n#### Description\nA Windows 2000 vulnerability exercise. Exploits a legacy Windows service using Metasploit. Introduces historical context of Windows vulnerabilities and the progression of Microsoft security.\n\n#### Learning Objectives\n- Exploitation of legacy Windows 2000 services\n- Using Metasploit's target-specific modules\n- Understanding service enumeration\n- Windows 2000/2003 era privilege escalation\n- Metasploit payload generation\n\n#### Typical Room Tasks / Questions\n1. Port scan\n2. Enumerate services\n3. Identify the vulnerable service\n4. Search for relevant Metasploit module\n5. Configure and run the exploit\n6. Get SYSTEM shell\n7. Find flags\n\n#### Tools Used\n- Nmap\n- Metasploit Framework\n- msfvenom\n\n#### Difficulty\nBeginner to Intermediate\n\n---\n\n### 7. Red Primer - Nmap (rpnmap)\n**Room URL:** https://tryhackme.com/room/rpnmap\n**OVA:** None\n\n#### Description\nOfficial TryHackMe tutorial room for Nmap \u2014 part of the Red Primer series. Covers nmap from basics to advanced usage, including firewall evasion, timing options, NSE scripts, and output formats.\n\n#### Learning Objectives\n- Nmap installation and basic syntax\n- TCP SYN scan (-sS), TCP connect scan (-sT)\n- Version detection (-sV), OS detection (-O)\n- Aggressive scan (-A) and timing templates (-T0 to -T5)\n- NSE (Nmap Scripting Engine) scripts\n- Firewall/IDS evasion techniques (-f fragment, -D decoy)\n- Output formats: -oN, -oX, -oG, -oA\n- Firewall and IDS evasion\n- Host discovery techniques\n\n#### Room Sections\n1. Introduction to Nmap\n2. Basic Port Scanning\n3. Advanced Scanning Options\n4. NSE Scripts\n5. Performance and Timing\n6. Evasion Techniques\n7. Output Handling\n8. Practical Challenge\n\n#### Difficulty\nBeginner\n\n---\n\n### 8. Red Primer - Metasploit (rpmetasploit)\n**Room URL:** https://tryhackme.com/room/rpmetasploit\n**OVA Download:** https://drive.google.com/open?id=19DnNlNWzNVSwiBYz5mxPWRPCWQmINzmz\n**Worksheet:** https://drive.google.com/open?id=1FpCCpDdUA7KYdwNcfWzdaqbtz5w0F2Xd\n**Answer Key:** https://drive.google.com/open?id=1HxR0jRK1bI_q5MUefHaxKgSnWtoT0p9F\n\n#### Description\nOfficial TryHackMe Metasploit tutorial room \u2014 part of the Red Primer series. Comprehensive introduction to the Metasploit Framework including msfconsole, modules (exploit/payload/auxiliary/encoder/nop), database integration, and meterpreter basics.\n\n#### Learning Objectives\n- msfconsole navigation and commands\n- Exploit, payload, auxiliary, encoder, nop module types\n- Metasploit database (PostgreSQL) integration\n- workspace management\n- db_nmap and scan result storage\n- Module search and selection\n- Payload selection and configuration\n- Handler (multi/handler) setup\n- meterpreter introduction\n- Post-exploitation with meterpreter\n- Getting system information\n- Privilege escalation\n\n#### Room Sections\n1. Introduction to Metasploit\n2. Metasploit Database Setup\n3. Module Types Overview\n4. Finding and Using Exploits\n5. Payloads Deep Dive\n6. Auxiliary Modules\n7. meterpreter Basics\n8. Post-Exploitation\n9. Practical Challenge / Worksheet\n\n#### Difficulty\nBeginner to Intermediate\n\n---\n\n### 9. Red Primer - tmux (rptmux)\n**Room URL:** https://tryhackme.com/room/rptmux\n**OVA:** None\n\n#### Description\nOfficial TryHackMe tmux tutorial room \u2014 part of the Red Primer series. Introduces tmux (terminal multiplexer) for efficient penetration testing workflow.\n\n#### Learning Objectives\n- tmux installation\n- Sessions, windows, panes concepts\n- Default prefix (Ctrl+b)\n- Creating and managing sessions\n- Splitting panes (horizontal/vertical)\n- Window management\n- tmux.conf customization\n- Copy mode and scrollback\n- Practical penetration testing workflow with tmux\n\n#### Typical Sections\n1. Introduction to tmux\n2. Sessions\n3. Windows\n4. Panes\n5. Configuration\n6. Copy Mode\n7. Scripting tmux\n8. Practical Usage for Pentesting\n\n#### Difficulty\nBeginner\n\n---\n\n### 10. Red Primer - Nessus (rpnessus)\n**Room URL:** https://tryhackme.com/room/rpnessus\n**OVA:** None\n\n#### Description\nOfficial TryHackMe Nessus tutorial room \u2014 part of the Red Primer series. Covers Nessus vulnerability scanner installation, configuration, scanning, and report interpretation.\n\n#### Learning Objectives\n- Nessus installation and activation\n- Nessus web interface navigation\n- Creating scan policies\n- Target specification\n- Running vulnerability scans\n- Interpreting scan results\n- CVE/CVE mapping\n- Report generation\n- Prioritizing vulnerabilities\n- Compliance scanning basics\n\n#### Difficulty\nBeginner to Intermediate\n\n---\n\n### 11. Red Primer - Web Scanning (rpwebscanning)\n**Room URL:** https://tryhackme.com/room/rpwebscanning\n**OVA:** None\n\n#### Description\nOfficial TryHackMe web scanning tutorial room \u2014 part of the Red Primer series. Covers OWASP ZAP, Burp Suite Community fundamentals, and manual web application testing methodology.\n\n#### Learning Objectives\n- Burp Suite Community Edition setup\n- Proxy configuration and traffic interception\n- Spider and crawler usage\n- Active and passive scanning\n- Intruder for parameter fuzzing\n- Repeater for request manipulation\n- Comparer for response diffing\n- OWASP ZAP basics\n- Web application enumeration\n- Identifying common vulnerabilities\n- Reporting findings\n\n#### Tools Covered\n- Burp Suite Community/Professional\n- OWASP ZAP\n- dirb / gobuster\n- wfuzz\n\n#### Difficulty\nBeginner to Intermediate\n\n---\n\n### 12. Red Primer - PS Empire (rppsempire)\n**Room URL:** https://tryhackme.com/room/rppsempire\n**OVA:** None\n\n#### Description\nOfficial TryHackMe PowerShell Empire tutorial room \u2014 part of the Red Primer series. Introduction to PowerShell Empire (now deprecated, succeeded by Covenant/SharpShell) for Windows post-exploitation.\n\n#### Learning Objectives\n- PowerShell Empire architecture (listener, staging, agents)\n- Setting up listeners\n- Staging and agent deployment\n- PowerShell agent interactions\n- Module system (privesc, collection, exfiltration)\n- Lateral movement via Empire\n- PSScripts for enumeration\n- Persistence modules\n- Mimikatz integration\n- Understanding PowerShell-based C2\n\n#### Note\nPowerShell Empire has been deprecated. Modern successors include: Covenant, Cobalt Strike, Sliver, Mythic.\n\n#### Difficulty\nIntermediate\n\n---\n\n### 13. Blue Primer - Networking (bpnetworking)\n**Room URL:** https://tryhackme.com/room/bpnetworking\n**OVA:** None\n\n#### Description\nOfficial TryHackMe networking fundamentals for blue team defenders \u2014 part of the Blue Primer series. Covers TCP/IP, subnets, routing, DNS, DHCP, and network troubleshooting.\n\n#### Learning Objectives\n- OSI model deep dive\n- TCP three-way handshake\n- UDP fundamentals\n- IP addressing and subnets (CIDR)\n- Default gateway and routing\n- DNS resolution process\n- DHCP handshake (DORA)\n- Wireshark/TCPDUMP basics\n- Port numbers and services\n- Network segmentation concepts\n- Firewall rules interpretation\n\n#### Difficulty\nBeginner\n\n---\n\n### 14. Blue Primer - Splunk (bpsplunk)\n**Room URL:** https://tryhackme.com/room/bpsplunk\n**OVA Download:** https://drive.google.com/open?id=1HeCwd-OrDTIT1IWqKjdbImKWBMqhc5qH\n\n#### Description\nOfficial TryHackMe Splunk SIEM tutorial room \u2014 part of the Blue Primer series. Introduces Splunk for security monitoring, log analysis, and incident response.\n\n#### Learning Objectives\n- Splunk installation and setup\n- Splunk web interface navigation\n- Indexes, sources, sourcetypes\n- Search Processing Language (SPL) basics\n- Search commands (index, sourcetype, source, stats, table, timechart)\n- Field extraction (regex, interactive)\n- Creating dashboards\n- Alert configuration\n- Event correlation\n- Incident investigation methodology\n- Common Splunk queries for threat hunting\n\n#### Room Sections\n1. Introduction to Splunk\n2. Getting Data In (UF, HF, heavy forwarder)\n3. Search Fundamentals\n4. SPL Commands\n5. Field Extraction\n6. Dashboards and Visualizations\n7. Alerts\n8. Incident Investigation\n9. Practical Challenge\n\n#### Difficulty\nBeginner to Intermediate\n\n---\n\n### 15. Blue Primer - Volatility (bpvolatility)\n**Room URL:** https://tryhackme.com/room/bpvolatility\n**OVA Download:** https://drive.google.com/open?id=159aABrIgyLYAwcuefqpTBvXLrFWpNtJh\n\n#### Description\nOfficial TryHackMe Volatility memory forensics tutorial room \u2014 part of the Blue Primer series. Covers memory dump acquisition and analysis using the Volatility Framework for incident response and malware analysis.\n\n#### Learning Objectives\n- Memory dump acquisition (WinPmem, DumpIt, magnet RAM capture)\n- Volatility Framework installation\n- OS identification from memory (imageinfo)\n- Process analysis (pslist, psscan, pstree)\n- DLL analysis\n- Registry analysis in memory\n- Network connections from memory (netscan)\n- Malware detection (malfind, yara)\n- Credential extraction from memory\n- Command history from memory\n- Browser history from memory\n- Hibernation file analysis\n\n#### Tools Used\n- Volatility 2 and Volatility 3\n- WinPmem / DumpIt\n- Volatility plugins: pslist, pstree, netscan, malfind, dlllist, cmdscan, hashdump, lsadump\n\n#### Difficulty\nIntermediate\n\n---\n\n## PART 2: PROJECT REPOSITORIES\n\n---\n\n### 16. TryHackMe Official Discord Bot\n**Repository:** https://github.com/DarkStar7471/THM-Bot\n**Status:** NOT FOUND / DELETED / PRIVATE\n\nThis repository previously hosted the official TryHackMe Discord bot code, maintained by Jon Peters (darkstar7471). The repo appears to have been removed, made private, or deleted since the original listing.\n\n---\n\n### 17. darkstar7471.com Website Source\n**Repository:** https://github.com/DarkStar7471/darkstar7471.github.io\n\n**About:** Personal website (darkstar7471.com) hosting Infosec training resources.\n\n**Stats:** 11 stars, 1 watcher, 4 forks, 53 commits\n\n**Directory Structure:**\n```\ncss/           \u2014 Stylesheets\nflat/          \u2014 Flat design assets\nimages/        \u2014 Site images\npublic/        \u2014 Public assets\nsrc/           \u2014 Source code\nCNAME          \u2014 Domain: darkstar7471.com\n.gitignore\npackage.json\npackage-lock.json\n```\n\n**README:** None on master branch\n\n**Note:** The website is a static site built from this source, serving as the hub for Jon Peters' training content distribution.\n\n---\n\n## PART 3: OFF-SITE BLOG POSTS\n\n---\n\n### 18. Making the Mountain\n**URL:** https://blog.tryhackme.com/making-the-mountain/\n**Published on:** TryHackMe Official Blog\n\n#### Description\nA blog post by Jon Peters (darkstar7471) detailing the creation process of TryHackMe machines \u2014 \"making the mountain.\" Covers the philosophy, methodology, and technical process behind building quality hacking challenge machines (boot2root VMs).\n\n#### Topics Covered (based on title and context)\n- VM design philosophy for learning\n- Machine construction workflow\n- Setting up vulnerable services\n- Ensuring proper flag placement\n- Difficulty calibration\n- Making challenges engaging and educational\n- Avoiding unintended solution paths\n- Testing and QA methodology\n- The \"Mountain\" metaphor for building progressively harder challenges\n\n#### About the Author\nJon Peters (darkstar7471) is the Security Engineer, Administrator, and Content Director for TryHackMe. He creates boot2root machines and educational content for the platform.\n\n---\n\n## PART 4: TALK VIDEOS\n\n---\n\n### 19. Making the Mountain; Creating Quality Boxes (SecIC)\n**Video URL:** https://youtu.be/4DY4TXhmpGo\n**Event:** SecIC Oct meetup\n**Speaker:** Jon Peters (darkstar7471)\n**Channel:** SecIC\n**Views:** ~1.2K | Uploaded: ~6 years ago | Likes: 41\n\n#### Description\nJon Peters presents at SecIC about the art and science of creating quality TryHackMe machines (\"boxes\"). Covers the full lifecycle from concept to deployment.\n\n#### Topics Covered\n- Philosophy of machine creation\n- VM provisioning and configuration\n- Service hardening vs. vulnerability creation\n- Narrative and theme integration in challenges\n- Playtesting and difficulty balancing\n- Ensuring educational value\n- Common mistakes in machine building\n- Tool and technique selection for challenge design\n- How TryHackMe quality standards work\n- Integrating storylines into technical challenges\n\n#### Timestamp Notes\nPart of the SecIC (Security Innovation in Collaboration) conference series.\n\n---\n\n### 20. Making the Mountain; Creating Quality Boxes Updated with KOTH\n**Video URL:** https://youtu.be/sYLHM-86gGw?t=14873\n**Event:** SECARMY SARCON 2020\n**Speaker:** Jon Peters\n**Timestamp:** 14873 seconds (approximately 4h 8m into the video)\n**Duration:** Full talk\n\n#### Description\nUpdated version of the \"Making the Mountain\" talk presented at SECARMY SARCON 2020, now incorporating KOTH (King of the Hill) mode \u2014 TryHackMe's competitive hacking mode where multiple players race to compromise the same machine.\n\n#### Additional Topics\n- Everything from the original SecIC talk\n- KOTH mode integration in challenge design\n- Real-time competition dynamics\n- KOTH machine design considerations\n- Scoring and flag rotation mechanics\n- Managing simultaneous player sessions\n- Anti-cheat considerations for competitive environments\n\n---\n\n## PART 5: PRESENTATION SLIDES\n\n---\n\n### 21. Making the Mountain; Creating Quality Boxes\n**Slides URL:** https://docs.google.com/presentation/d/1e2_M-ErRHp8DoAHKDaTWKRT3uYwtsSMsMrHfmABm2rs/edit?usp=sharing\n**Status:** DELETED \u2014 \"Sorry, the file that you've requested has been deleted\"\n\nThe original presentation slides for the SecIC talk are no longer accessible. The Google Drive file has been deleted by the owner.\n\n---\n\n### 22. Finding Your Foes; Let's talk about SIEM baby\n**Slides URL:** https://docs.google.com/presentation/d/1XOmScOR28ZEHCbQSximaZ1qlE8NxBCYdQPqSXvVqK7Y/edit?usp=sharing\n**Status:** DELETED \u2014 \"Sorry, the file that you've requested has been deleted\"\n\nThe SIEM-focused presentation slides are no longer accessible. The Google Drive file has been deleted by the owner.\n\n#### Probable Topics (based on title and context)\n- SIEM (Security Information and Event Management) fundamentals\n- SIEM deployment considerations\n- Log collection and correlation\n- Rule writing for SIEM platforms\n- Alert tuning and false positive reduction\n- SIEM use cases for threat detection\n- Integration with threat intelligence\n- SOC workflows and triaging\n- Splunk as SIEM reference platform\n- Detection development methodology\n\n---\n\n## APPENDIX: OVA FILE QUICK REFERENCE\n\n| Room | Drive ID | Direct Download URL |\n|------|----------|-------------------|\n| Blue | `11f_wsW59Dh1fGvQCNUPK70lIWzlcg44_` | https://drive.google.com/open?id=11f_wsW59Dh1fGvQCNUPK70lIWzlcg44_ |\n| Ice | `19DnNlNWzNVSwiBYz5mxPWRPCWQmINzmz` | https://drive.google.com/open?id=19DnNlNWzNVSwiBYz5mxPWRPCWQmINzmz |\n| Ignite | `1GgXEDgld7af41JW90hPcqncIUEqrRj0G` | https://drive.google.com/open?id=1GgXEDgld7af41JW90hPcqncIUEqrRj0G |\n| JoyStick | `1SCUMQwMAkJSfWHc4nkbB7WmWWrrqtOoJ` | https://drive.google.com/open?id=1SCUMQwMAkJSfWHc4nkbB7WmWWrrqtOoJ |\n| Retro | `1LTAeHyEuR9RqlKhNeaUEYxY1yScBiHY9` | https://drive.google.com/open?id=1LTAeHyEuR9RqlKhNeaUEYxY1yScBiHY9 |\n| Blaster | `13ZI99xlFnOtmevJT770vc0wzq2H9i66j` | https://drive.google.com/open?id=13ZI99xlFnOtmevJT770vc0wzq2H9i66j |\n| Red Primer - Metasploit OVA | `19DnNlNWzNVSwiBYz5mxPWRPCWQmINzmz` | https://drive.google.com/open?id=19DnNlNWzNVSwiBYz5mxPWRPCWQmINzmz |\n| Red Primer - Metasploit Worksheet | `1FpCCpDdUA7KYdwNcfWzdaqbtz5w0F2Xd` | https://drive.google.com/open?id=1FpCCpDdUA7KYdwNcfWzdaqbtz5w0F2Xd |\n| Red Primer - Metasploit Answer Key | `1HxR0jRK1bI_q5MUefHaxKgSnWtoT0p9F` | https://drive.google.com/open?id=1HxR0jRK1bI_q5MUefHaxKgSnWtoT0p9F |\n| Blue Primer - Splunk | `1HeCwd-OrDTIT1IWqKjdbImKWBMqhc5qH` | https://drive.google.com/open?id=1HeCwd-OrDTIT1IWqKjdbImKWBMqhc5qH |\n| Blue Primer - Volatility | `159aABrIgyLYAwcuefqpTBvXLrFWpNtJh` | https://drive.google.com/open?id=159aABrIgyLYAwcuefqpTBvXLrFWpNtJh |\n\n---\n\n## CONTENT ACCESSIBILITY STATUS\n\n| Resource | Status | Notes |\n|----------|--------|-------|\n| Blue (room) | BLOCKED | Vercel anti-bot |\n| Ice (room) | BLOCKED | Vercel anti-bot |\n| Ignite (room) | BLOCKED | Vercel anti-bot |\n| JoyStick (room) | BLOCKED | Vercel anti-bot |\n| Retro (room) | BLOCKED | Vercel anti-bot |\n| Blaster (room) | BLOCKED | Vercel anti-bot |\n| rpnmap (room) | BLOCKED | Vercel anti-bot |\n| rpmetasploit (room) | BLOCKED | Vercel anti-bot |\n| rptmux (room) | BLOCKED | Vercel anti-bot |\n| rpnessus (room) | BLOCKED | Vercel anti-bot |\n| rpwebscanning (room) | BLOCKED | Vercel anti-bot |\n| rppsempire (room) | BLOCKED | Vercel anti-bot |\n| bpnetworking (room) | BLOCKED | Vercel anti-bot |\n| bpsplunk (room) | BLOCKED | Vercel anti-bot |\n| bpvolatility (room) | BLOCKED | Vercel anti-bot |\n| THM-Bot (GitHub) | DELETED/PRIVATE | Repo no longer accessible |\n| darkstar7471.github.io | PARTIAL | Repo exists, no README |\n| Making the Mountain (blog) | BLOCKED | Vercel anti-bot |\n| YouTube (SecIC talk) | PARTIAL | Title/channel confirmed |\n| YouTube (SARCON talk) | PARTIAL | Timestamp confirmed |\n| Slides (Making the Mountain) | DELETED | Google Drive file deleted |\n| Slides (SIEM baby) | DELETED | Google Drive file deleted |\n| All OVA downloads | ACCESSIBLE | Google Drive links confirmed |\n\n---\n\n*Source: https://darkstar7471.com/resources.html*\n*Copyright darkstar7471.com 2021*\n*Compiled: 2026*\n", "creation_timestamp": "2026-06-16T12:26:47.000000Z"}