Capture-The-Flag Badge

306 Completed
6 Exercises

Exercises

Easy
CVE-2015-3224
  • This exercise is a challenge written for Nullcon CTF in 2015
  • Completed by 1517 students
  • Takes < 1 Hr. on average
  • Rails
  • CWE-284

 

Easy
Werkzeug DEBUG
  • This challenge was written for Ruxcon CTF 2015 and cover the Debug mode of Werkzeug/Flask
  • Completed by 1511 students
  • Takes < 1 Hr. on average
  • Python

 

Medium
Padding Oracle
  • This exercise covers an attack against CBC mode. This attack can be used to decrypt data and re-encrypt arbitrary data
  • Completed by 791 students
  • Takes 1-2 Hrs. on average
  • PHP

 

Hard
Luhn
  • This challenge was written for Ruxcon CTF 2015. It's an SQL injection with a twist
  • Completed by 582 students
  • Takes 2-4 Hrs. on average
  • Python

 

Hard
Unickle
  • This challenge was written for Ruxcon CTF 2015. It's an SQL injection mixed with a remote code execution.
  • Completed by 639 students
  • Takes 1-2 Hrs. on average
  • Python

 

Hard
ECDSA
  • This exercise covers the exploitation of a weakness in the usage of ECDSA
  • Completed by 323 students
  • Takes 2-4 Hrs. on average
  • PHP/Apache/Mysql
  • crypto