HackTheCore

Offensive Research Platform // Online

Break the surface. Read the core.

Independent offensive-security platform for research, pentesting, web exploitation, internal operations, cloud abuse, API pressure, mobile assessment, identity and SSO attack paths, privilege escalation, wireless tradecraft, AI attack-surface assessment, reverse engineering, cyber-physical security and specialist operator workflow.

Open Research Open Knowledge
coverage

web // network // privesc // wireless // ai // reverse // cyber-physical

method

research briefs // public links // cert context // native structure

preserve

knowledge // exam // radar // signature // simplex relay

ops@hackthecore:~$ platform --status

offensive research surface online

ops@hackthecore:~$ cat domains.conf

research=active

web=active

network=active

privesc=online

relay=simplex

ops@hackthecore:~$ nmap -sC -sV -Pn target.internal

surfaces, routes and weak assumptions under observation

ops@hackthecore:~$ tail -f /var/log/ops.log

ops@hackthecore:~$

visitor // 01START FROM THE TARGET

Use the platform by attack surface. Go straight to web, internal, escalation, AI or cyber-physical work without walking through a course timeline.

visitor // 02WORK FROM PRESSURE POINTS

Every route is built to help you isolate trust boundaries, weak assumptions, reachable control paths and practical follow-on questions.

visitor // 03STAY IN OPERATOR MODE

The public surface stays low-noise, reference-heavy and direct, while contact remains deliberate through the SimpleX relay.

Primary surfaces // Choose your route

What are you trying to break, validate or map?

Pick the surface that matches your target. Each route is designed to move you from a live question into usable offensive context, references and next-step material.

Domain // 01

Research

Frame the job, shape the evidence, set the rules and move with a clear engagement model.

Open Research

Domain // 02

Pentest

Use the pentest portal when you want the broadest operational hub across the platform.

Open Pentest

Domain // 03

Network

Internal footholds, credential pressure, lateral movement, AD logic and operator movement.

Open Network

Domain // 04

Web

Application trust boundaries, browser-side pressure and classic web exploitation routes.

Open Web

Domain // 05

API

REST, GraphQL, JWT, OAuth/OIDC, object abuse and API fuzzing as a dedicated surface.

Open API

Domain // 06

Cloud

AWS, Azure, GCP, Kubernetes, identities, CI/CD trust and cloud control-plane abuse.

Open Cloud

Domain // 07

Mobile

Android and iOS testing, instrumentation, pinning bypass, storage and mobile reversing.

Open Mobile

Domain // 08

Identity

Entra, Okta, SSO, tenant drift, token abuse, federation and conditional-access pressure.

Open Identity

Domain // 09

PrivEsc

Host-level escalation logic across Linux, Windows and macOS.

Open PrivEsc

Domain // 10

Tradecraft

Payload staging, OPSEC, EDR pressure, client-side chains and C2-aware custom tooling.

Open Tradecraft

Domain // 11

Supply Chain

Git, CI/CD, runners, signing, SBOM, package trust and build-system attack paths.

Open Supply Chain

Domain // 12

OT / ICS

Industrial protocols, PLC/HMI trust, segmentation failures and process-level risk.

Open OT / ICS

Domain // 13

AI Security

Prompt injection, jailbreaks, retrieval abuse, tool misuse and offensive AI operations.

Open AI

Domain // 14

Drone / Robotics

Autopilots, MAVLink, ROS, telemetry abuse, companion computers and control-plane trust.

Open Cyber-Physical

Domain // 15

Knowledge

Searchable glossary and indexed terminology when you need definitions without losing momentum.

Open Knowledge

Domain // 16

Exam

Practice mode with direct feedback, explanations and score tracking.

Open Exam

Orientation // Operator-first

Start from the target, not from the platform.

If you already know the pressure point — cloud identity, an API contract, a mobile client, an internal foothold, a Kubernetes cluster, an agentic AI workflow or an industrial control network — the site should get you to the right attack language fast. This section exists to help the visitor choose the shortest route from problem to useful context.

  • Use the domain that matches the real target, not the label on the certificate.
  • Move from hub pages into deeper briefs when you need workflow, references or reporting language.
  • Treat the site as an operator console: quick entry, clear routes, low noise and strong cross-links.
  • Keep Knowledge and Exam as anchors while the rest of the platform stays mission-oriented.

Start // Pick your pressure point

What are you actually looking at right now?

Is the target a browser-backed app or portal?Open Web and work from input, auth, session and client-side trust.Are the APIs doing more than the web client reveals?Open API and map object access, claims, scopes and backend contracts.Did the environment land you in cloud control planes?Open Cloud for identities, service roles, pipelines and Kubernetes drift.Do you need to instrument a mobile client?Open Mobile for APK/IPA analysis, Frida, pinning and runtime trust.Is the weak point really identity and SSO?Open Identity for tokens, consent, federation and tenant design.Did you gain a foothold and need to move?Open Network for AD, pivoting, C2 and internal operator flow.Are you trying to turn a foothold into the box?Open PrivEsc for Linux, Windows and macOS escalation logic.Do you need stealthier operator tradecraft?Open Tradecraft for staging, OPSEC, evasion and client-side chains.Is the real weakness upstream in the build path?Open Supply Chain for runners, packages, signing and release trust.Is the environment industrial or cyber-physical?Open OT / ICS or Drone / Robotics depending on whether the target is plant-side or field autonomy.Are you pressure-testing AI systems or agents?Open AI for prompt injection, retrieval abuse, tools and model-facing control.Need to shape scope, evidence or reporting first?Open Research and build the engagement from the outside in.