0 CustomerResponsesduring theTestUnauthorizedSMBDefaultCredentialsOnly 1VPNconnectionXSS withAdminBotWrongIPs/HostsprovidedEnvironmentis broken0TechnicalCustomersSQLInjectionSSRFWeb APPhas a(good)FirewallFormatStringInjectionCommandInjectionOutdatedSoftwarewith knownvulnsUnauthorizedFTPUnauthorizedDatabaseAccess toExampleReports0VulnerabilitiesYour testmachinecrashes4 Hours+FinalCall20+CritsUnauthorizedDoS FeatureUnauthorizedNFSRCE Exploitworks onmultipleHosts0 CustomerResponsesduring theTestUnauthorizedSMBDefaultCredentialsOnly 1VPNconnectionXSS withAdminBotWrongIPs/HostsprovidedEnvironmentis broken0TechnicalCustomersSQLInjectionSSRFWeb APPhas a(good)FirewallFormatStringInjectionCommandInjectionOutdatedSoftwarewith knownvulnsUnauthorizedFTPUnauthorizedDatabaseAccess toExampleReports0VulnerabilitiesYour testmachinecrashes4 Hours+FinalCall20+CritsUnauthorizedDoS FeatureUnauthorizedNFSRCE Exploitworks onmultipleHosts

BINGO!!! - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
  1. 0 Customer Responses during the Test
  2. Unauthorized SMB
  3. Default Credentials
  4. Only 1 VPN connection
  5. XSS with Admin Bot
  6. Wrong IPs/Hosts provided
  7. Environment is broken
  8. 0 Technical Customers
  9. SQL Injection
  10. SSRF
  11. Web APP has a (good) Firewall
  12. Format String Injection
  13. Command Injection
  14. Outdated Software with known vulns
  15. Unauthorized FTP
  16. Unauthorized Database
  17. Access to Example Reports
  18. 0 Vulnerabilities
  19. Your test machine crashes
  20. 4 Hours+ Final Call
  21. 20+ Crits
  22. Unauthorized DoS Feature
  23. Unauthorized NFS
  24. RCE Exploit works on multiple Hosts