# NINJA HACKER ACADEMY
- NINJA HACKER ACADEMY (NHA) is written as a training challenge where GOAD was written as a lab with a maximum of vulns.
- You should find your way in to get domain admin on the 2 domains (academy.ninja.lan and ninja.hack)
- Starting point is on srv01 : 192.168.58.21
- Flags are disposed on each machine, try to grab all. Be careful all the machines are up to date with defender enabled.
- Some exploits needs to modify path so this lab is not very multi-players compliant (unless you do it as a team ;))
- Obviously do not cheat by looking at the passwords and flags in the recipe files, the lab must start without user to full compromise.
- Install :
```bash
./goad.sh -t install -l NHA -p virtualbox -m docker
```
- Once install finish disable vagrant user to avoid using it :
```bash
./goad.sh -t disablevagrant -l NHA -p virtualbox -m docker
```
- Now do a reboot of all the machine to avoid unintended secrets stored :
```bash
./goad.sh -t stop -l NHA -p virtualbox -m docker
./goad.sh -t start -l NHA -p virtualbox -m docker
```
And you are ready to play ! :)
- If you need to re-enable vagrant
```bash
./goad.sh -t enablevagrant -l NHA -p virtualbox -m docker
```
- If you want to create a write up of the chall, no problem, have fun. Please ping me on X (@M4yFly) or Discord, i will be happy to read it :)
Hint: No bruteforce, if not in rockyou do not waste your time and your cpu/gpu cycle.