Exercises

This exercise covers the exploitation of a weakness in the usage of ECDSA

This challenge was written for Ruxcon CTF 2015 and cover the Debug mode of Werkzeug/Flask

This exercise covers an attack against CBC mode. This attack can be used to decrypt data and re-encrypt arbitrary data

This challenge was written for Ruxcon CTF 2015. It's an SQL injection mixed with a remote code execution.

This exercise is a challenge written for Nullcon CTF in 2015

This challenge was written for Ruxcon CTF 2015. It's an SQL injection with a twist

This exercise will guide you through the process of scoring on an exercise to get it marked as completed

This exercise will guide through the process of scoring an exercise to mark it as completed

This exercise will guide through the process of scoring an exercise to mark it as completed. Finding the key is just a little bit harder than the previous exercise.

This exercise will guide through the process of scoring an exercise to mark it as completed. However, this time, you will run commands on the underlying operating system. You will need to run the score command with your UUID.

This exercise covers the exploitation of a code execution in Ruby-on-Rails using XML and YAML.

This exercise covers the exploitation of an issue with some implementations of JWT

This exercise covers the exploitation of an Xstream vulnerability in Jenkins

This exercise covers the exploitation of a call to readObject in a Spring application

This exercise covers the exploitation of an application using XMLDecoder

This exercise covers how to intercept an HTTPs connection

This exercise covers how to intercept an HTTPs connection

This exercise covers how to intercept an HTTPs connection with hostname verification.

This exercise covers how to intercept an HTTPs connection.

This exercise covers how to intercept an HTTP connection.

This exercise covers how to get code execution when a Struts application is running in devMode

This exercise covers the exploitation of a signature weakness in a JWT library.

This exercise covers Cross-Origin Resource Sharing and how it can be used to bypass CSRF protection if it's misconfigured

This exercise covers the exploitation of PHP type confusion to bypass a signature and the exploitation of unserialize.

This exercise covers the exploitation of Python's pickle when used to deserialize untrusted data

This exercise covers the exploitation of XML entities in the Play framework

This exercise covers the exploitation of a Bash vulnerability through a CGI.

This exercise covers the exploitation of a session injection in the Play framework. This issue can be used to tamper with the content of the session while bypassing the signing mechanism

This exercise covers the exploitation of CVE-2007-1860. This vulnerability allows an attacker to gain access to inaccessible pages using crafted requests. This is a common trick that a lot of testers miss.

This exercise explains how to exploit a Cross-Site Scripting vulnerability to obtain an administrator's cookies, and how you can use their session to gain access to the administration panel, and find a SQL injection to gain code execution