Exercises
| Exercise | Avg. Time | Difficulty | Solved by | Tier | |
|---|---|---|---|---|---|
|
CVE-2023-4X25X
This challenge covers the review of a CVE in a Java codebase and its patch
|
< 1 Hr. |  |
183 | PRO |
|
Puzzle 04
Leverage SQL LIKE to gain access to sensitive information
|
2-4 Hr. | |
15 | PRO |
|
|
CVE-2023-5X38X
This challenge covers the review of a CVE in a Java codebase and its patch
|
< 1 Hr. | |
209 | PRO |
|
|
CVE-2024-2X31X
This challenge covers the review of a CVE in a Java codebase and its patch
|
< 1 Hr. | |
246 | PRO |
|
|
CVE-2024-X875X
This challenge covers the review of a CVE in a Java codebase and its patch
|
-- | |
227 | PRO |
|
CVE-2022-0415
Exploit CVE-2022-0415 to gain code execution in Gogs
|
2-4 Hr. | |
16 | PRO |
|
|
Java Code Review 08
This challenge covers the review of a simple codebase in Java
|
< 1 Hr. | |
204 | PRO |
|
|
Java Code Review 07
This challenge covers the review of a simple codebase in Java
|
< 1 Hr. | |
196 | PRO |
|
|
Java Code Review 09
This challenge covers the review of a simple codebase in Java
|
< 1 Hr. | |
173 | PRO |
|
|
Puzzle 01
Find the XSS by leveraging backreferences in a regular expression
|
< 1 Hr. | |
77 | PRO |
|
|
Puzzle 02
CSP
XSS
Leverage a PHP trick to bypass CSP
|
< 1 Hr. | |
48 | PRO |
|
API 14
This exercise covers how to exploit a leaked encrypted password with an API.
|
< 1 Hr. |  |
713 | PRO |
|
|
API 15
This exercise covers how to exploit a leaked encrypted password with an API.
|
< 1 Hr. | |
624 | PRO |
|
|
API 13
This exercise covers a complex filter bypass in API.
|
< 1 Hr. | |
686 | PRO |
|
|
Java Code Review 04
This challenge covers the review of a simple codebase in Java
|
< 1 Hr. | |
232 | PRO |
|
|
Java Code Review 05
This challenge covers the review of a simple codebase in Java
|
< 1 Hr. | |
235 | PRO |
|
|
Java Code Review 06
This challenge covers the review of a simple codebase in Java
|
< 1 Hr. | |
227 | PRO |
|
|
API 12
This exercise covers a common filter bypass in API.
|
< 1 Hr. | |
762 | PRO |
|
|
API 10
This exercise covers a common filter bypass in API.
|
< 1 Hr. | |
872 | PRO |
|
|
API 11
This exercise covers a common filter bypass in API.
|
< 1 Hr. | |
802 | PRO |
|
|
Java Code Review 02
This challenge covers the review of a simple codebase in Java
|
< 1 Hr. | |
284 | PRO |
|
|
Java Code Review 03
This challenge covers the review of a simple codebase in Java
|
< 1 Hr. | |
259 | PRO |
|
|
Java Code Review 01
This challenge covers the review of a simple codebase in Java
|
< 1 Hr. | |
285 | PRO |
|
|
CVE-2024-x730x
This challenge covers the review of a snippet of code written in Golang.
|
< 1 Hr. | |
131 | PRO |
|
|
CVE-2023-28XX9
This challenge covers the review of a CVE in a Golang codebase and its patch
|
1-2 Hr. | |
112 | PRO |
|
|
Python Code Review 07
This challenge covers the review of a simple codebase in Python
|
< 1 Hr. | |
149 | PRO |
|
|
JSON Web Token XV: CVE-2022-39227
JWT
This exercise covers the exploitation of polyglot token against python_jwt (CVE-2022-39227)
|
< 1 Hr. | |
41 | PRO |
|
|
Python Code Review 06
This challenge covers the review of a simple codebase in Python
|
-- | |
153 | PRO |
|
|
CVE-2023-5143X
This challenge covers the review of a CVE in a Java codebase and its patch
|
1-2 Hr. | |
271 | PRO |
|
|
CVE-2009-387X
This challenge covers the review of a CVE in a Java codebase and its patch
|
< 1 Hr. | |
310 | PRO |
Showing 151–180 of 734 exercises
Free Labs of the Month
