This badge is a mashup of challenges created by PentesterLab for the previous Ruxcon and Nullcon CTF. Little details are given on how to solve them as part of the course

  • Rails
  • Completed by 351 students

CVE-2015-3224

  • Difficulty:

This exercise is a challenge written for Nullcon CTF in 2015

  • Python
  • Completed by 365 students

Werkzeug DEBUG

  • Difficulty:

This challenge was written for Ruxcon CTF 2015 and cover the Debug mode of Werkzeug/Flask

  • PHP
  • Completed by 237 students

Padding Oracle

  • Difficulty:

This exercise covers an attack against CBC mode. This attack can be used to decrypt data and re-encrypt arbitrary data

  • Python
  • Completed by 174 students

Luhn

  • Difficulty:

This challenge was written for Ruxcon CTF 2015. It's an SQL injection with a twist

  • Python
  • Completed by 218 students

Unickle

  • Difficulty:

This challenge was written for Ruxcon CTF 2015. It's an SQL injection mixed with a remote code execution.

  • PHP/Apache/Mysql
  • Completed by 111 students

ECDSA

  • Difficulty:

This exercise covers the exploitation of a weakness in the usage of ECDSA