SSRF XSS with Admin Bot Unauthorized DoS Feature Web APP has a (good) Firewall SQL Injection 0 Vulnerabilities Default Credentials Command Injection 20+ Crits 0 Customer Responses during the Test Format String Injection Unauthorized FTP RCE Exploit works on multiple Hosts Your test machine crashes Only 1 VPN connection 0 Technical Customers Unauthorized NFS Unauthorized Database 4 Hours+ Final Call Outdated Software with known vulns Environment is broken Unauthorized SMB Wrong IPs/Hosts provided Access to Example Reports SSRF XSS with Admin Bot Unauthorized DoS Feature Web APP has a (good) Firewall SQL Injection 0 Vulnerabilities Default Credentials Command Injection 20+ Crits 0 Customer Responses during the Test Format String Injection Unauthorized FTP RCE Exploit works on multiple Hosts Your test machine crashes Only 1 VPN connection 0 Technical Customers Unauthorized NFS Unauthorized Database 4 Hours+ Final Call Outdated Software with known vulns Environment is broken Unauthorized SMB Wrong IPs/Hosts provided Access to Example Reports
(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.
SSRF
XSS with Admin Bot
Unauthorized
DoS Feature
Web APP has a (good) Firewall
SQL Injection
0 Vulnerabilities
Default Credentials
Command Injection
20+ Crits
0 Customer Responses during the Test
Format String Injection
Unauthorized FTP
RCE Exploit works on multiple Hosts
Your test machine crashes
Only 1 VPN connection
0 Technical Customers
Unauthorized NFS
Unauthorized Database
4 Hours+ Final Call
Outdated Software with known vulns
Environment is broken
Unauthorized SMB
Wrong IPs/Hosts provided
Access to Example Reports