This badge is a mashup of challenges created by PentesterLab for the previous Ruxcon and Nullcon CTF. Little details are given on how to solve them as part of the course

  • Rails
  • Completed by 257 students

CVE-2015-3224

  • Difficulty:

This exercise is a challenge written for Nullcon CTF in 2015

  • Python
  • Completed by 252 students

Werkzeug DEBUG

  • Difficulty:

This challenge was written for Ruxcon CTF 2015 and cover the Debug mode of Werkzeug/Flask

  • PHP
  • Completed by 166 students

Padding Oracle

  • Difficulty:

This exercise covers an attack against CBC mode. This attack can be used to decrypt data and re-encrypt arbitrary data

  • Python
  • Completed by 123 students

Luhn

  • Difficulty:

This challenge was written for Ruxcon CTF 2015. It's an SQL injection with a twist

  • Python
  • Completed by 155 students

Unickle

  • Difficulty:

This challenge was written for Ruxcon CTF 2015. It's an SQL injection mixed with a remote code execution.

  • PHP/Apache/Mysql
  • Completed by 93 students

ECDSA

  • Difficulty:

This exercise covers the exploitation of a weakness in the usage of ECDSA