This badge is a mashup of challenges created by PentesterLab for the previous Ruxcon and Nullcon CTF. Little details are given on how to solve them as part of the course
- Rails
- Completed by 367 students
CVE-2015-3224
This exercise is a challenge written for Nullcon CTF in 2015
- Python
- Completed by 384 students
Werkzeug DEBUG
This challenge was written for Ruxcon CTF 2015 and cover the Debug mode of Werkzeug/Flask
- PHP
- Completed by 250 students
Padding Oracle
This exercise covers an attack against CBC mode. This attack can be used to decrypt data and re-encrypt arbitrary data
- Python
- Completed by 180 students
Luhn
This challenge was written for Ruxcon CTF 2015. It's an SQL injection with a twist
- Python
- Completed by 224 students
Unickle
This challenge was written for Ruxcon CTF 2015. It's an SQL injection mixed with a remote code execution.
- PHP/Apache/Mysql
- Completed by 116 students
ECDSA
This exercise covers the exploitation of a weakness in the usage of ECDSA