FormatStringInjectionUnauthorizedFTPAccess toExampleReportsWeb APPhas a(good)FirewallEnvironmentis broken20+CritsOnly 1VPNconnection0VulnerabilitiesSSRFUnauthorizedNFSYour testmachinecrashes0TechnicalCustomersRCE Exploitworks onmultipleHostsXSS withAdminBotOutdatedSoftwarewith knownvulnsUnauthorizedDoS FeatureWrongIPs/Hostsprovided0 CustomerResponsesduring theTestUnauthorizedSMB4 Hours+FinalCallCommandInjectionSQLInjectionDefaultCredentialsUnauthorizedDatabaseFormatStringInjectionUnauthorizedFTPAccess toExampleReportsWeb APPhas a(good)FirewallEnvironmentis broken20+CritsOnly 1VPNconnection0VulnerabilitiesSSRFUnauthorizedNFSYour testmachinecrashes0TechnicalCustomersRCE Exploitworks onmultipleHostsXSS withAdminBotOutdatedSoftwarewith knownvulnsUnauthorizedDoS FeatureWrongIPs/Hostsprovided0 CustomerResponsesduring theTestUnauthorizedSMB4 Hours+FinalCallCommandInjectionSQLInjectionDefaultCredentialsUnauthorizedDatabase

BINGO!!! - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
  1. Format String Injection
  2. Unauthorized FTP
  3. Access to Example Reports
  4. Web APP has a (good) Firewall
  5. Environment is broken
  6. 20+ Crits
  7. Only 1 VPN connection
  8. 0 Vulnerabilities
  9. SSRF
  10. Unauthorized NFS
  11. Your test machine crashes
  12. 0 Technical Customers
  13. RCE Exploit works on multiple Hosts
  14. XSS with Admin Bot
  15. Outdated Software with known vulns
  16. Unauthorized DoS Feature
  17. Wrong IPs/Hosts provided
  18. 0 Customer Responses during the Test
  19. Unauthorized SMB
  20. 4 Hours+ Final Call
  21. Command Injection
  22. SQL Injection
  23. Default Credentials
  24. Unauthorized Database