I'm working on a project and I came across an Android phone in debug mode.  In order to play around with the exploitation frameworks, I downloaded Android4: 1 from Vulnhub to understand what I was dealing with in an outside environment.  There are a number of frameworks but the two that I came across were Ghost and Phonesploit.  Both work similarly but I prefer the latter.

Kicking off with an Nmap scan:

The description for this one states:  "Nice and easy VM ;)"

This is a beginner friendly box and it can be conquered in a few short steps.  There's a website that can help, GTFOBins.  If you're not familiar with this site, it will help you escalate privileges with misconfigured binaries. 

Another machine from the HackMyVM.eu site. This could be the fewest amount of images of any write-up.  A simple box but it ties a few things together making it kind of interesting. 

We kick off with Nmap: