Cyberwarfarelabs

Published on
January 26, 2026
CWL - Compute Crack
cyberwarfarelabs cloud azure Command-Injection
The challenge is a webapp that has a Command Injection vulnerability, the goal is to exploit the vulnerability by making an internal request to the Azure instance and extract the access token to authenticate then retrieve the Azure Subscription ID which is the flag
Published on
January 24, 2026
CWL - EC2 Compromise
cyberwarfarelabs cloud SSRF awscli AWS
The challenge is a webapp that has a SSRF vulnerability, the goal of the challenge is to exploit the vulnerability to steal sensitive EC2 metadata, then use the IAM credentials to make an authenticated API call and retrive the Instance ID which is the flag

CWL - Compute Crack