Penetration Testing, Security Code Review and Web App Security Exercises

Free PRO CVE Easy Medium Hard XSS Code Review API SSRF HTTP RECON CSRF SQLi

Exercise	Avg. Time	Solved by	Tier
CVE-2008-1x3x This challenge covers the review of a CVE and its patch	< 1 Hr.	1025	PRO
CVE-2021-40438 This challenge covers how to trigger a Server-Side Request Forgery by leveraging CVE-2021-40438	< 1 Hr.	352	PRO
CVE-2021-41773 This challenge covers how to read arbitrary files by leveraging CVE-2021-41773	< 1 Hr.	571	PRO
CVE-2021-41773 II This challenge covers how to gain code execution by leveraging CVE-2021-41773	1-2 Hr.	217	PRO
CVE-2006-4xxx This challenge covers the review of a CVE and its patch	< 1 Hr.	790	PRO
CVE-2006-4xxx_ii This challenge covers the review of a CVE and its patch	< 1 Hr.	676	PRO
CVE-2021-37xxx This challenge covers the review of a CVE and its patch	< 1 Hr.	756	PRO
CVE-2020-17xx7 This challenge covers the review of a CVE and its patch	< 1 Hr.	1257	PRO
CVE-2020-9x9x This challenge covers the review of a CVE and its patch	< 1 Hr.	983	PRO
CVE-2020-17xx8 This challenge covers the review of a CVE and its patch	< 1 Hr.	755	PRO
CVE-2021-22204: Exiftool RCE This exercise covers how you can gain code execution when an application uses exiftool on user-controlled files	1-2 Hr.	181	PRO
CVE-2020-11xxx This challenge covers the review of a CVE and its patch	< 1 Hr.	775	PRO
CVE-2020-14343: PyYAML unsafe loader This exercise covers how you can gain code execution when an application use a vulnerable version of PyYAML and relies on load()	< 1 Hr.	341	PRO
CVE-2020-7115: Aruba Clearpass RCE This exercise covers a remote command execution issue on Aruba Clearpass RCE	< 1 Hr.	223	PRO
CVE-2020-8163: Rails local name RCE This exercise details the exploitation of CVE-2020-8163 to gain code execution	1-2 Hr.	230	PRO
Apache Pluto RCE This exercise covers how to gain code execution on Apache Pluto 3.0.0 due to a flaw in the authorization logic	< 1 Hr.	561	PRO
CVE-2019-5418 This exercise details the exploitation of CVE-2019-5418 to get code execution	1-2 Hr.	518	PRO
cve-2019-5420 II This exercise details the exploitation of CVE-2019-5420 to gain code execution	1-2 Hr.	577	PRO
CVE-2019-5420 This exercise details the exploitation of CVE-2019-5420 to forge a session as another user	2-4 Hr.	930	PRO
Gogs RCE II This exercise covers how to get code execution against the Git self hosted tool: Gogs.	< 1 Hr.	616	PRO
Gogs RCE This exercise covers how to get code execution against the Git self hosted tool: Gogs.	1-2 Hr.	689	PRO
CVE-2018-10933: LibSSH auth bypass This exercise covers how to bypass authentication on an SSH server based on libssh to gain a shell on the affected system	--	0	FREE
CVE-2018-11235: Git Submodule RCE This exercise details the exploitation of a vulnerability in Git Sub module that can be used to get command execution	2-4 Hr.	531	PRO
CVE-2016-5386: HTTPoxy/Golang HTTProxy namespace conflict This exercise covers the exploitation of HTTPoxy against an old version of Golang	< 1 Hr.	948	PRO
CVE-2018-6574: go get RCE This exercise covers a remote command execution in Golang's go get command.	< 1 Hr.	914	PRO
CVE-2018-0114 JWT This exercise details the exploitation of a vulnerability in Cisco's node-jose, a JavaScript library created to manage JWT	2-4 Hr.	1918	PRO
CVE-2016-10033: PHPMailer RCE This exercise covers a remote code execution vulnerability in PHPMailer	< 1 Hr.	3823	PRO
CVE-2016-2098 This exercise covers a remote code execution vulnerability in Ruby-on-Rails when using render on user-supplied data	< 1 Hr.	3736	PRO
CVE-2014-4511: Gitlist RCE This exercise explains how you can exploit a vulnerability published in 2014 in Gitlist.	< 1 Hr.	15	FREE
CVE-2015-3224 This exercise is a challenge written for Nullcon CTF in 2015	< 1 Hr.	1641	PRO

‹ 1 … 3 4 5 6 7 ›

Showing 151–180 of 188 exercises