Phantom
The full post-foothold discipline — privesc, credential harvest, persistence, defense evasion, lateral movement, container escape, Kubernetes, cloud pivot, exfil, and cleanup.
Briefing
Ghost ended at “you got a shell.” Phantom starts there and does not stop until the operation is complete. This is the complete chain a real operator runs against a real compromised environment in 2026.
Who this is for: operatives who have finished Ghost or can do equivalent work on a fresh Linux box without thinking. Phantom assumes you live in a shell — it will not teach you how to move a file or read a log. It teaches what happens after the initial foothold and does not soften the 2026 reality: modern kernel protections, container runtimes, Kubernetes RBAC, cloud IAM, and the specific CVEs that still matter this year.
Five acts, one operation
Phantom is structured as a single escalating operation. Each act builds on the last. By graduation you will have executed the full attack lifecycle.
- I. Escalation (0–9) — Ten levels covering every real-world privilege escalation vector: SUID/GTFOBins, sudo misconfigurations, library hijacking, capabilities, writable sensitive files, cron and systemd abuse, polkit CVEs, ptrace injection, and kernel exploits.
- II. Harvest & Persist (10–15) — Six levels on credential harvesting (memory dumps, SSH keys, tokens, config files), persistence mechanisms (SSH, cron, systemd, PAM backdoors), defense evasion (auditd bypass, LOLBins, fileless execution), and anti-forensics (log wipe, timestomping).
- III. Lateral Movement (16–19) — Four levels on SSH tunneling, ligolo-ng, internal network reconnaissance, credential spraying, and a full three-machine pivot chain.
- IV. Container & Cloud (20–26) — Seven levels on container detection, Docker socket and privileged escapes, Leaky Vessels CVE-2024, exposed Docker API, Kubernetes pod escape, cluster takeover via service account abuse, and cloud IAM pivot through IMDS.
- V. Operations (27–31) — Five levels on custom tooling, data exfiltration (DNS/HTTPS/ICMP), network traffic interception, multi-host cleanup, and a time-limited graduation mission across the full attack chain.
What Phantom makes of you
Thirty-one public levels plus one hidden graduation. After Phantom you can:
- Walk onto any Linux host with an unprivileged shell and identify every realistic escalation path in under ten minutes.
- Exploit SUID binaries, sudo rules, capabilities, writable files, cron jobs, and kernel CVEs — the full privesc arsenal.
- Harvest credentials from memory, history files, config files, environment variables, SSH keys, and service tokens.
- Install persistence that survives reboots and detection — SSH keys, cron, systemd, PAM backdoors.
- Operate invisibly: bypass auditd, use LOLBins, execute fileless payloads, and clean every log artifact.
- Pivot through multi-segment networks using SSH tunnels, ligolo-ng, and covert channels.
- Detect that you are inside a container, identify the runtime, and escape through five distinct techniques.
- Escape a Kubernetes pod, reach the API server with curl and a service account token, and take over the cluster.
- Harvest cloud credentials from IMDS and pivot into cloud infrastructure.
- Write custom reverse shells, adapt public exploits, and build simple C2 callbacks.
- Exfiltrate data through DNS tunneling, HTTPS, and ICMP — the channels that bypass every firewall.
- Clean up a multi-host operation leaving zero forensic artifacts.
SSH Access
Main track (L0–L12, L16–L29). Entry userphantom0, password phantom0.ssh [email protected] -p 2223Ephemeral ports (L13–L15, L30, optional L9)
- L13 (Deep Roots):
- port 2224
- L14 (Shadow Mode):
- port 2225
- L15 (Clean Slate):
- port 2226
- L30 (Clean Exit):
- port 2227
- L9 (Stack Day, optional):
- port 2228
L13 / L14 / L15 / L30 each spawn a fresh ephemeral container on their own port — one connect per box, disappears on disconnect. Land on the expected port once you reach that level.
L9 is currently optional — your L8 flag unlocks phantom10 directly on the mono chain, so you can skip it and keep going. To do L9 anyway, it lives as an ephemeral phantom-deep instance on port 2228 (same mission, same flag, same points). Plan: four Lock 1-4 prep levels will land before L9 first, then it returns to the canonical chain.
Levels
| # | Level | Points | Operatives | First Blood | Status |
|---|---|---|---|---|---|
| Act I — Escalation | |||||
| 0 | Recon Gateway | 300 | 130 | — | |
| 1 | SUID Hunter | 320 | 115 | — | |
| 2 | Sudo Games | 340 | 112 | — | |
| 3 | Inheritance | 360 | 99 | — | |
| 4 | Misplaced Power | 380 | 96 | — | |
| 5 | File Authority | 400 | 93 | — | |
| 6 | Scheduled Sins | 420 | 84 | — | |
| 7 | Local Authority | 460 | 83 | — | |
| 8 | Live Injection | 500 | 80 | — | |
| 9 | Stack Day (optional · ephemeral) | 600 | 12 | — | |
| Act II — Harvest & Persist | |||||
| 10 | The Harvest | 500 | 55 | — | |
| 11 | Token Hunter | 540 | 54 | — | |
| 12 | Ghost Install | 580 | 52 | — | |
| 13 | Deep Roots | 620 | 46 | — | |
| 14 | Shadow Mode | 700 | 44 | — | |
| 15 | Clean Slate | 750 | 44 | — | |
| Act III — Lateral Movement | |||||
| 16 | The Tunnel | 700 | 40 | — | |
| 17 | Internal Hunt | 750 | 31 | — | |
| 18 | Credential Spray | 800 | 28 | — | |
| 19 | Chain Reaction | 900 | 27 | — | |
| Act IV — Container & Cloud | |||||
| 20 | Am I Contained? | 800 | 27 | — | |
| 21 | The Breakout | 860 | 26 | — | |
| 22 | Leaky Vessels | 920 | 26 | — | |
| 23 | Docker API | 960 | 26 | — | |
| 24 | Pod Games | 1000 | 26 | — | |
| 25 | Cluster Takeover | 1100 | 25 | — | |
| 26 | Cloud Reach | 1200 | 25 | — | |
| Act V — Operations | |||||
| 27 | Toolsmith | 1000 | 25 | — | |
| 28 | The Heist | 1100 | 25 | — | |
| 29 | Wire Tap | 1100 | 25 | — | |
| 30 | Clean Exit | 1200 | 25 | — | |