Advent of Cyber 2025 - 24 Days of Cybersecurity Challenges

🎄 24 Days, 24 Challenges, One Goal

What a journey! Successfully completed Advent of Cyber 2025 by TryHackMe - 24 consecutive days of cybersecurity challenges throughout December. Each day brought new techniques, tools, and lessons in the ever-evolving world of cyber security.

🏆 Certificate of Achievement

Official Certificate of Completion from TryHackMe

Certificate Details:

• Event: Advent of Cyber 2025
• Issued by: TryHackMe
• Completion Date: December 25, 2025
• Signed by: Ashu Savani (CTO) & Ben Spring (CEO)
• Certificate ID: THM-NVA6Z26QIU
• Achievement: Completed all 24 cyber security challenges

🎯 What is Advent of Cyber?

Advent of Cyber is TryHackMe’s annual December event - a festive twist on cybersecurity learning. Like an advent calendar, a new challenge unlocks each day from December 1st to 24th.

Event Format

Daily Challenges:

• One new challenge released every day
• Covers different cybersecurity domains
• Beginner-friendly with guided walkthroughs
• Real-world scenarios wrapped in festive themes
• Progressive difficulty throughout the month

Learning Approach:

• Hands-on, practical exercises
• Step-by-step guidance
• Interactive virtual machines
• Video walkthroughs available
• Community support and discussions

📚 Challenge Categories Covered

Throughout the 24 days, the event covered a comprehensive range of cybersecurity topics:

Web Security

• SQL Injection - Database exploitation techniques
• XSS (Cross-Site Scripting) - Client-side attacks
• IDOR (Insecure Direct Object References) - Access control flaws
• Authentication Bypass - Breaking login mechanisms
• API Security - Testing web services

Network Security

• Port Scanning - Network reconnaissance
• Traffic Analysis - Packet inspection
• Network Protocols - Understanding communications
• Firewall Evasion - Bypassing network defenses
• VPN Security - Secure tunnel analysis

System Security

• Linux Privilege Escalation - Getting root access
• Windows Security - Understanding Windows defenses
• File System Analysis - Finding hidden data
• Log Analysis - Investigating system events
• Configuration Auditing - Security misconfigurations

Digital Forensics

• Disk Forensics - Analyzing file systems
• Memory Forensics - RAM analysis
• Network Forensics - Packet capture analysis
• Timeline Analysis - Reconstructing events
• Evidence Collection - Proper handling procedures

OSINT (Open Source Intelligence)

• Social Media Investigation - Finding digital footprints
• Search Engine Techniques - Advanced Google-fu
• Domain Research - DNS and WHOIS analysis
• Image Analysis - Metadata extraction
• Geolocation - Finding physical locations

Malware Analysis

• Static Analysis - Examining without execution
• Dynamic Analysis - Observing behavior
• Reverse Engineering - Understanding code
• Indicators of Compromise - Identifying threats
• Sandboxing - Safe execution environments

💡 Key Learnings

Technical Skills Gained

Tool Proficiency:

• Nmap - Network scanning and enumeration
• Burp Suite - Web application testing
• Wireshark - Network traffic analysis
• SQLMap - Automated SQL injection
• Metasploit - Exploitation framework
• John the Ripper - Password cracking
• Volatility - Memory forensics
• Autopsy - Disk forensics

Methodologies:

• Systematic approach to security testing
• Proper reconnaissance techniques
• Exploitation workflow
• Post-exploitation procedures
• Evidence documentation
• Responsible disclosure practices

Soft Skills Developed

Persistence: Some challenges required multiple attempts and different approaches. Learning to not give up when stuck is crucial in cybersecurity.

Research Skills: Not every answer was immediately obvious. Developing the ability to research effectively, read documentation, and find solutions independently.

Attention to Detail: Cybersecurity often hinges on spotting the one thing that’s out of place. The challenges trained this critical observation skill.

Problem-Solving: Each challenge presented unique problems requiring creative solutions. Learning to think outside the box while staying methodical.

🎓 Daily Challenge Experience

The Routine

Morning:

• Check TryHackMe for new challenge release
• Read through the scenario and objectives
• Plan approach before diving in

Execution:

• Spin up the target machine
• Follow methodology systematically
• Document findings and steps
• Solve the challenge
• Submit flags

Reflection:

• Review what was learned
• Note down new techniques
• Share experiences with community
• Prepare for next day

Memorable Challenges

Day 7: The Log Mystery A forensics challenge analyzing system logs to identify a security breach. Required careful attention to timestamps and event correlation.

Day 12: API Exploitation Breaking into a REST API through authentication flaws and parameter tampering. Great lesson in API security testing.

Day 18: Memory Forensics Using Volatility to analyze a memory dump and extract artifacts. First deep dive into memory analysis.

Day 24: Final Challenge The grand finale combining multiple techniques learned throughout the month. Satisfying to apply everything in one comprehensive scenario.

📊 Personal Statistics

Consistency

✅ 24/24 challenges completed ✅ Zero days missed ✅ Completed before deadline each day

Time Investment

• Average per challenge: 1-2 hours
• Total time invested: ~40 hours
• Learning outside challenges: ~10 hours

Progress Tracking

• Started: December 1, 2025
• Finished: December 24, 2025
• Completion rate: 100%

🌟 Why This Event Matters

Structured Learning Path

Unlike random CTF challenges, Advent of Cyber provides a curated learning path. Each challenge builds on previous knowledge while introducing new concepts.

Accessibility

The event is designed for all skill levels:

• Beginners get comprehensive guidance
• Intermediate learners get practice
• Advanced users get interesting scenarios
• Everyone learns something new

Community Engagement

Thousands participate simultaneously:

• Shared learning experiences
• Community support and hints
• Discussion forums active
• Social media engagement
• Networking opportunities

Career Development

Completing Advent of Cyber demonstrates:

• Commitment - Consistency over 24 days
• Tenacity - Completing all challenges
• Continuous Learning - Dedication to improvement
• Practical Skills - Hands-on experience

🎁 Beyond the Certificate

What I’m Taking Forward

Mindset:

• Approach problems systematically
• Don’t fear failure - it’s part of learning
• Research is a critical skill
• Documentation is essential
• Community makes learning better

Technical Foundation: The challenges provided hands-on experience with tools and techniques used daily in cybersecurity careers. This practical knowledge is invaluable.

Confidence: Successfully completing 24 diverse challenges builds confidence in approaching new security problems. Each solved challenge reinforces that complex problems can be broken down and solved.

🚀 Next Steps

Immediate Actions

• Review weak areas - Revisit challenging topics
• Practice more - Continue with TryHackMe rooms
• Apply knowledge - Use learned skills in projects
• Share learnings - Help others in the community

Future Goals

• Complete more advanced TryHackMe paths
• Participate in live CTF competitions
• Pursue security certifications
• Contribute to security tools and projects
• Keep the learning momentum going

🙏 Acknowledgments

TryHackMe Team: Thank you for creating such an engaging, educational event. The quality of challenges and learning resources is exceptional.

Ashu Savani & Ben Spring: Appreciation for your leadership in making cybersecurity education accessible and fun.

TryHackMe Community: Thanks to fellow participants for the discussions, hints (when stuck), and shared enthusiasm throughout December.

Content Creators: To everyone who wrote walkthroughs, recorded videos, and shared solutions - you make learning easier for everyone.

💭 Final Thoughts

“Proven understanding of cyber security fundamentals. Has shown consistency, tenacity & continuous learning.”

These words on the certificate perfectly capture what Advent of Cyber is about. It’s not just about completing challenges - it’s about developing the mindset and discipline essential in cybersecurity.

24 days. 24 challenges. Countless lessons learned.

Advent of Cyber 2025 wasn’t just about earning a certificate. It was about:

• Building daily habits of learning
• Pushing through difficult problems
• Expanding technical knowledge
• Joining a global community of learners
• Proving to myself that consistency yields results

The best part? This is just the beginning. The foundation built during these 24 days opens doors to more advanced topics and challenges ahead.

🔗 Resources

TryHackMe Platform:

• Website: tryhackme.com
• Advent of Cyber: Annual December event
• Learning Paths: Structured progression
• Community: Active Discord and forums

Certificate Verification:

• Certificate ID: THM-NVA6Z26QIU
• Issued: December 25, 2025
• Verifiable on TryHackMe platform

My TryHackMe Profile:

• Connect and see progress
• Share learning experiences
• Collaborate on challenges

---

Event: Advent of Cyber 2025
Platform: TryHackMe
Duration: December 1-24, 2025
Challenges Completed: 24/24
Achievement: Certificate of Completion
Key Learning: Consistency + Practice = Progress

#AdventOfCyber #TryHackMe #AoC2025 #Cybersecurity #CTF #ContinuousLearning #InfoSec #PracticalSecurity #24DayChallenge