Penetration Testing, Security Code Review and Web App Security Exercises

Free PRO CVE Easy Medium Hard XSS Code Review API SSRF HTTP RECON CSRF SQLi

Exercise	Avg. Time	Solved by	Tier
CVE-2008-1x3x This challenge covers the review of a CVE and its patch	< 1 Hr.	1027	PRO
CVE-2021-40438 This challenge covers how to trigger a Server-Side Request Forgery by leveraging CVE-2021-40438	< 1 Hr.	353	PRO
CVE-2021-41773 This challenge covers how to read arbitrary files by leveraging CVE-2021-41773	< 1 Hr.	572	PRO
CVE-2021-41773 II This challenge covers how to gain code execution by leveraging CVE-2021-41773	1-2 Hr.	218	PRO
CVE-2006-4xxx This challenge covers the review of a CVE and its patch	< 1 Hr.	793	PRO
CVE-2006-4xxx_ii This challenge covers the review of a CVE and its patch	< 1 Hr.	679	PRO
CVE-2021-37xxx This challenge covers the review of a CVE and its patch	< 1 Hr.	763	PRO
CVE-2020-17xx7 This challenge covers the review of a CVE and its patch	< 1 Hr.	1261	PRO
CVE-2020-9x9x This challenge covers the review of a CVE and its patch	< 1 Hr.	988	PRO
CVE-2020-17xx8 This challenge covers the review of a CVE and its patch	< 1 Hr.	759	PRO
CVE-2021-22204: Exiftool RCE This exercise covers how you can gain code execution when an application uses exiftool on user-controlled files	1-2 Hr.	181	PRO
CVE-2020-11xxx This challenge covers the review of a CVE and its patch	< 1 Hr.	778	PRO
CVE-2020-14343: PyYAML unsafe loader This exercise covers how you can gain code execution when an application use a vulnerable version of PyYAML and relies on load()	< 1 Hr.	343	PRO
CVE-2020-7115: Aruba Clearpass RCE This exercise covers a remote command execution issue on Aruba Clearpass RCE	< 1 Hr.	225	PRO
CVE-2020-8163: Rails local name RCE This exercise details the exploitation of CVE-2020-8163 to gain code execution	1-2 Hr.	231	PRO
Apache Pluto RCE This exercise covers how to gain code execution on Apache Pluto 3.0.0 due to a flaw in the authorization logic	< 1 Hr.	561	PRO
CVE-2019-5418 This exercise details the exploitation of CVE-2019-5418 to get code execution	1-2 Hr.	519	PRO
cve-2019-5420 II This exercise details the exploitation of CVE-2019-5420 to gain code execution	1-2 Hr.	578	PRO
CVE-2019-5420 This exercise details the exploitation of CVE-2019-5420 to forge a session as another user	2-4 Hr.	931	PRO
Gogs RCE II This exercise covers how to get code execution against the Git self hosted tool: Gogs.	< 1 Hr.	616	PRO
Gogs RCE This exercise covers how to get code execution against the Git self hosted tool: Gogs.	1-2 Hr.	689	PRO
CVE-2018-10933: LibSSH auth bypass This exercise covers how to bypass authentication on an SSH server based on libssh to gain a shell on the affected system	--	0	FREE
CVE-2018-11235: Git Submodule RCE This exercise details the exploitation of a vulnerability in Git Sub module that can be used to get command execution	2-4 Hr.	532	PRO
CVE-2016-5386: HTTPoxy/Golang HTTProxy namespace conflict This exercise covers the exploitation of HTTPoxy against an old version of Golang	< 1 Hr.	949	PRO
CVE-2018-6574: go get RCE This exercise covers a remote command execution in Golang's go get command.	< 1 Hr.	914	PRO
CVE-2018-0114 JWT This exercise details the exploitation of a vulnerability in Cisco's node-jose, a JavaScript library created to manage JWT	2-4 Hr.	1918	PRO
CVE-2016-10033: PHPMailer RCE This exercise covers a remote code execution vulnerability in PHPMailer	< 1 Hr.	3828	PRO
CVE-2016-2098 This exercise covers a remote code execution vulnerability in Ruby-on-Rails when using render on user-supplied data	< 1 Hr.	3739	PRO
CVE-2014-4511: Gitlist RCE This exercise explains how you can exploit a vulnerability published in 2014 in Gitlist.	< 1 Hr.	15	FREE
CVE-2015-3224 This exercise is a challenge written for Nullcon CTF in 2015	< 1 Hr.	1643	PRO

‹ 1 … 3 4 5 6 7 ›

Showing 151–180 of 188 exercises