Media Badge

video icon
22 Videos
book icon
20 Exercises

The media badge is our set of exercises created to teach you how to abuse applications that allows you to upload or retrieve files in different formats: PDF, Images, Videos and use this behaviour to gain code execution or arbitrary file read

Exercises

Easy
media badge icon
SSRF in PDF generation
  • This exercise covers how you can read arbitrary files when an application generates pdfs from provided links
  • 1 video
  • Completed by 870 students
  • Takes < 1 Hr. on average

 

Coming soon
Easy
media badge icon
ODF XXE
  • This exercise covers the exploitation of an XXE in an ODF Parser
  • Takes -- on average

 

Coming soon
Medium
media badge icon
Latex: --shell-escape
  • This exercise covers how one can leverage latex when pdflatex is used with the --shell-escape option to gain command execution.
  • Takes -- on average
  • Ruby/Latex

 

Coming soon
Medium
media badge icon
CVE-2022-24720
  • This exercise covers how one can leverage image processing in ActiveStorage to gain command execution.
  • Takes -- on average
  • Ruby/Rails

 

Medium
media badge icon
CVE-2022-39224
  • This exercise covers the exploitation of CVE-2022-39224
  • 1 video
  • Completed by 91 students
  • Takes 2-4 Hrs. on average
  • Ruby
  • CWE-78

 

Medium
media badge icon
DOMPDF RCE
  • This exercise covers the exploitation of a vulnerability in the DOMPDF library
  • 2 videos
  • Completed by 144 students
  • Takes < 1 Hr. on average
  • PHP

 

Medium
media badge icon
XSL PHP II
  • This exercise covers the exploitation of a PHP application using XSL
  • 2 videos
  • Completed by 227 students
  • Takes < 1 Hr. on average
  • PHP
  • CWE-94

 

Medium
media badge icon
XSL PHP
  • This exercise covers the exploitation of a PHP application using XSL
  • 2 videos
  • Completed by 269 students
  • Takes < 1 Hr. on average
  • PHP
  • CWE-94,CWE-306

 

Medium
media badge icon
XSL PHP III
  • This exercise covers the exploitation of a PHP application using XSL
  • 2 videos
  • Completed by 165 students
  • Takes < 1 Hr. on average
  • PHP
  • CWE-94

 

Medium
media badge icon
XSL PHP IV
  • This exercise covers the exploitation of a PHP application using XSL
  • 2 videos
  • Completed by 141 students
  • Takes 2-4 Hrs. on average
  • PHP
  • CWE-94

 

Medium
media badge icon
CVE-2021-33564 Argument Injection in Ruby Dragonfly
  • This exercise covers how you can get arbitrary file read using CVE-2021-33564 against Refinery CMS
  • Completed by 138 students
  • Takes < 1 Hr. on average
  • CWE-88

 

Medium
media badge icon
DOMPDF RCE II
  • This exercise covers the exploitation of a vulnerability in the DOMPDF library
  • 3 videos
  • Completed by 67 students
  • Takes 2-4 Hrs. on average
  • PHP

 

Medium
media badge icon
CVE-2021-22204: Exiftool RCE II
  • This exercise covers how you can gain code execution when an application uses exiftool on user-controlled files
  • Completed by 76 students
  • Takes < 1 Hr. on average
  • CWE-94,CWE-74

 

Medium
media badge icon
XSL Java
  • This exercise covers the exploitation of a Java application using XSL
  • 2 videos
  • Completed by 114 students
  • Takes < 1 Hr. on average
  • Java

 

Medium
media badge icon
DOMPDF RCE III
  • This exercise covers the exploitation of a vulnerability in the DOMPDF library
  • 2 videos
  • Completed by 52 students
  • Takes 2-4 Hrs. on average
  • PHP

 

Medium
media badge icon
SSRF via FFMPEG
  • This exercise covers how you can read arbitrary files when an application uses ffmpeg to render videos from a video you provide
  • Completed by 239 students
  • Takes < 1 Hr. on average
  • Ruby/FFMpeg
  • CWE-918

 

Hard
media badge icon
CVE-2021-22204: Exiftool RCE
  • This exercise covers how you can gain code execution when an application uses exiftool on user-controlled files
  • 1 video
  • Completed by 172 students
  • Takes 1-2 Hrs. on average
  • CWE-74

 

Hard
media badge icon
XSL PHP V
  • This exercise covers the exploitation of a PHP application using XSL
  • 2 videos
  • Completed by 109 students
  • Takes < 1 Hr. on average
  • PHP
  • CWE-94

 

Hard
media badge icon
SSRF via FFMPEG II
  • This exercise covers how you can read arbitrary files when an application uses ffmpeg to render videos from a video you provide
  • Completed by 125 students
  • Takes < 1 Hr. on average
  • Ruby/FFMpeg
  • CWE-918

 

Hard
media badge icon
DOMPDF RCE IV
  • This exercise covers the automation of the exploitation of a vulnerability in the DOMPDF library
  • Completed by 24 students
  • Takes > 4 Hrs. on average
  • PHP