Mission
This challenge is reconnaissance, not exploitation. You have an unprivileged shell on a hardened Linux host. To solve the challenge, read /flag. The flag will only be readable once you understand everything this machine will tell you about your own privileges.
Starting toolkit (you may need more)
idgroupssudogetcapfindcatlsWhy this matters in 2026
Every real post-exploitation engagement starts with the same five minutes of enumeration. Operators who skip this step miss the one misconfiguration that would have ended the whole job.
Mitigation era: 2026-04 · rotation policy: levels may be refreshed as CVEs are patched out of distro defaults.
How to reach this level
Use the password for phantom0 that you captured on the previous level, then:
ssh phantom0@phantom.breachlab.org -p 2223
Level 0 is the entry point. Starting password: phantom0.
SSH endpoint is being provisioned. Follow @BreachLab for launch announcement.
Log in to submit flags and track progress.