Switch to lite version Switch to dark theme

320 challenges are currently available


RingZer0 Team provide you couple of tools that can help you. See available tools.
Means challenge completed.
Point to write-up that worth to be reading.
Earn RingZer0Gold for each of your write-up.

You have the opportunity to submit a write up for every challenge you successfully complete. Every time your write up is approved your earn RingZer0Gold. It's possible for you to exchange this gold for hints. The main goal of this initiative is to stimulate people to submit write up and share how they solved a challenge with other people. When you finish a challenge, you have the ability to view all published write up for the challenge. This way you can learn many ways to solve a unique challenge.

Sandboxes Status

Challenges
SysAdmin Part 1 sandbox is Up Secure Mail sandbox is Up
Looking for god in your life? sandbox is Up XSS Challenge 1 sandbox is Up
Captcha I sandbox is Up Propaganda mail sandbox is Up
Basics of Linux x64 shellcoding sandbox is Up Level1 Pwnage Linux Level Up sandbox is Up
Level1 Pwnage Linux x86_64 sandbox is Up Virtual World sandbox is Down
Hot Single Mom sandbox is Up Bash Jail 1 sandbox is Up

Challenges


Coding Challenges (17)

Challenges descriptions Points Validation Author
Hash me please 2 2449 Mr.Un1k0d3r
Ask your grandpa! 2 920 Mr.Un1k0d3r's Dad
Hash me reloaded 3 1371 Mr.Un1k0d3r
I hate mathematics 3 1476 Mr.Un1k0d3r
Ask your grandpa again! 4 301 Mr.Un1k0d3r's Dad
Hash breaker 4 1121 Mr.Un1k0d3r
I saw a little elf 4 403 Mr.Un1k0d3r
Hash breaker reloaded 5 655 Mr.Un1k0d3r
Execute me if you can 5 340 Mr.Un1k0d3r
Read me if you can 6 348 Mr.Un1k0d3r
Hash breaker reloaded again 6 219 Mr.Un1k0d3r
Ascii Art 6 527 Mr.Un1k0d3r
Execute me if you can again 6 168 Mr.Un1k0d3r
Xor me if you can 6 336 Mr.Un1k0d3r
Number game 7 248 Mr.Un1k0d3r remade by theindian
Classic Sudoku 7 212 Mr.Un1k0d3r remade by dread_knight
Find the right word 7 265 Mr.Un1k0d3r

Cryptography (32)

Challenges descriptions Points Validation Author
Some martian message 1 5145 Mr.Un1k0d3r
You're Drunk! 1 1068 Mr.Un1k0d3r
File recovery 1 2450 Mr.Un1k0d3r
Public key recovery 2 1207 Mr.Un1k0d3r
Fashion Victim 2 398 GoSec CTF 2014
Martian message part 2 2 2238 Mr.Un1k0d3r
Can you understand this sentence? 3 552 Mr.Un1k0d3r
Let's Play Scrabble! 3 23 Madness
I Lost my password 3 945 Mr.Un1k0d3r
Martian message part 3 3 842 Mr.Un1k0d3r
Hangovers and more: Bacon 3 431 SynneR
Crypto Leak 4 38 NSEC 2018 (Towel)
Crypto Object 4 157 GoSec CTF 2014
Crypto over the network 4 105 Mr.Un1k0d3r
Encrypted Zip 4 456 Mr.Un1k0d3r
Let's Play Scrabble! Part 2 5 9 Madness
Jabber 5 4 Madness
Is it a secure string? 5 216 Cedrick Chaput
Free Flag Encrypter 5 14 Towel
Pattern is the key 6 38 Mr.Un1k0d3r
TotalSecure Message Encrypter 6 76 Towel
Welcome to the asylum 6 50 GoSec CTF 2014
Homemade craptography #2 7 4 holyvier(ft. large software company)
Jabber Part 2 7 4 Madness
Crypto is not good as you think 8 149 Mr.Un1k0d3r
Mars Log 8 6 NSEC 2018 (Towel)
Homemade Craptography 8 6 NSEC 2018 (Holyvier)
Spies 9 28 CS Games 2016 (HoLyVieR)
Rusty RSA message signing service 9 10 b0n0n & An0n
TotalSecure Message Encrypter V2 10 17 Towel
Polly Wants a Cracker 10 2 Madness
Unicorn As A Service 11 7 Towel

Exotic Data Storage (4)

Challenges descriptions Points Validation Author
Just another login form 2 1341 Mr.Un1k0d3r
DON'T login as admin 2 21 mbergeron
I forgot my password 3 21 mbergeron
Inspiration 6 26 NSEC 2019 (becojo)

Forensics (28)

Challenges descriptions Points Validation Author
Who I am part 2 1 367 Mr.Un1k0d3r
I made a dd of Agent Smith usb key 1 2595 Cedrick Chaput
I love cat 2 357 Mr.Un1k0d3r
Dr. Pouce 2 1932 Cedrick Chaput
Attention Dinosaure Survive 2 1055 PRL
The good, the bad and the ugly 2 63 Mr.Un1k0d3r
1 / 3 Do not waste the environment 2 816 PRL
Hide my ass in my home! 2 1248 Cedrick Chaput
Hey Chuck where is the flag? 2 1226 Mr.Un1k0d3r
Meat Loaf 2 200 Ekse
Who I am? 2 769 Mr.Un1k0d3r
The words flew but writing remains 3 133 Martin Dube
2 / 3 Did you see my desktop? 3 699 PRL
Are you Twisted Insane? 3 24 Cedrick Feat Mr.Un1k0d3r
Someone steal my flag! 3 313 Mr.Un1k0d3r
802.1X Part 1 4 50 NSEC 2015
3 / 3 Suspicious account password? 4 573 PRL
Poor internet connection 4 345 Cedrick Chaput
Agent Smith reloaded 4 216 Cedrick Chaput
R.I.P MsPaint 4 85 Misker
We got breached 5 173 Mr.Un1k0d3r
Someone steal my flag again 5 99 GoSec CTF 2014
Ping pong 5 74 SynneR
Spy my girl 5 162 Cedrick Chaput
We got breached again 6 130 Mr.Un1k0d3r
Russian Crypto Roulette 6 61 SynneR
Really Depressed Protocol 7 67 SynneR
802.1X Part 2 8 37 NSEC 2015

Jail Escaping (21)

Challenges descriptions Points Validation Author
Bash Jail 1 1 1769 Mr.Un1k0d3r
Bash Jail 2 2 1139 Mr.Un1k0d3r
Bash Jail 3 3 646 Mr.Un1k0d3r
Bash Jail 4 4 350 Mr.Un1k0d3r
Bash Jail 5 6 149 Mr.Un1k0d3r
Bash Jail 6 8 17 Garigouster
Bash Jail 7 12 13 Garigouster
C Jail 1 1 284 Mr.Un1k0d3r
C Jail 2 2 189 Mr.Un1k0d3r
C Jail 3 3 156 Mr.Un1k0d3r
C Jail 4 5 15 Garigouster
C Jail 5 7 10 Garigouster
C Jail 6 14 5 Garigouster
PHP Jail 1 1 457 Mr.Un1k0d3r
PHP Jail 2 2 298 Mr.Un1k0d3r
PHP Jail 3 3 201 Mr.Un1k0d3r
PHP Jail 4 4 151 Mr.Un1k0d3r
PHP Jail 5 6 122 Mr.Un1k0d3r
PyJail 1 3 182 Martin Dube
PyJail 2 5 100 Martin Dube
PyJail 3 6 34 Martin Dube

JavaScript (10)

Challenges descriptions Points Validation Author
Client side validation is bad! 1 5864 Mr.Un1k0d3r
Hashing is more secure 1 5103 Mr.Un1k0d3r
Then obfuscation is more secure 1 3846 Mr.Un1k0d3r
Most Secure Crypto Algo 2 1313 Mr.Un1k0d3r
Valid key required 2 765 Francois Lajeunesse
Why not? 2 3123 Mr.Un1k0d3r
Why not be more secure? 5 474 Mr.Un1k0d3r
WTF Lol! 6 223 HoLyVieR
Interstellar PhoneBook 6 29 NSEC 2018 (Holyvier)
Beauty and the beast 7 32 Mr.Un1k0d3r

Malware Analysis (17)

Challenges descriptions Points Validation Author
APT 1337 4 30 NSEC 2017 (Mr.Un1k0d3r)
Capture 1 Part 1 1 517 Mr.Un1k0d3r
Capture 1 Part 2 1 172 Mr.Un1k0d3r
Capture 1 Part 3 1 196 Mr.Un1k0d3r
Capture 1 Part 4 2 19 Mr.Un1k0d3r
Capture 1 Part 5 3 46 Mr.Un1k0d3r
Capture 1 Part 6 3 129 Mr.Un1k0d3r
Capture 1 Part 7 3 25 Mr.Un1k0d3r
Capture 2 Part 1 1 50 Mr.Un1k0d3r
Capture 2 Part 2 1 88 Mr.Un1k0d3r
Capture 2 Part 3 1 89 Mr.Un1k0d3r
Capture 2 Part 4 3 88 Mr.Un1k0d3r
Capture 2 Part 5 4 33 Mr.Un1k0d3r
Capture 2 Part 6 7 14 Mr.Un1k0d3r
Just Another MBR Ransomware 8 15 Towel
RAO democracy 4 44 NSEC 2017 (Mr.Un1k0d3r)
WebShell of Hell 5 7 An0n

Pwnage Linux (19)

Challenges descriptions Points Validation Author
Level1 Pwnage Linux Level Up 1 542 P-Y Feat Martin Dube
Level2 Pwnage Linux Level Up 2 345 P-Y Feat Martin Dube
Remote Auth 2 96 NSEC 2015
Level3 Pwnage Linux Level Up 3 251 P-Y Feat Martin Dube
Level1 Pwnage Linux x86_64 3 176 Mr.Un1k0d3r
Level2 Pwnage Linux x86_64 4 60 Mr.Un1k0d3r
Sometime there is no buffer overflow 4 70 Mr.Un1k0d3r
Can you get the service password 4 110 Mr.Un1k0d3r
Level4 Pwnage Linux Level Up 5 119 Mr.Un1k0d3r
Friendly race 5 21 Garigouster
RPCFTW! 6 26 NSEC 2015
Jack the heaper 6 18 uaf.io
Level3 Pwnage Linux x86_64 7 56 Mr.Un1k0d3r
Level4 Pwnage Linux x86_64 7 33 Mr.Un1k0d3r
Just another useless service 8 34 NSEC 2015
Take over the Virtual World 8 26 NSEC 2015
Base64 As A Service 8 26 Guilt
Base64 As A Service Reloaded 9 21 Guilt
Delivery As A Service 10 14 NSEC 2016

Reverse Engineering (52)

Challenges descriptions Points Validation Author
Time to learn x86 ASM & gdb 2 1795 Mr.Un1k0d3r
Can you see through the star 2 1071 Mr.Un1k0d3r
See No Evil - Part 1 2 46 alxbl
Crack Me 1 3 694 Mr.Un1k0d3r
Heap allocator 3 221 NSEC 2015
Intro To Sparc 3 133 Ian-Kyle Wagner
Kernel introduction 3 216 Mr.Un1k0d3r
See No Evil - Part 2 3 35 alxbl
See No Evil - Part 3 3 35 alxbl
Introduction to MIPS 3 280 Mr.Un1k0d3r
Windows x86 reversing is cool 3 623 Mr.Un1k0d3r
I never forget the Nintendo 64 3 561 Mr.Un1k0d3r
Power to the people 4 46 NSEC 2015
Altera? 4 48 NSEC 2016
ASM Lovers 4 77 NSEC 2016
See No Evil - Part 5 4 23 alxbl
Old School 4 53 Towel
I love tea! 4 5 nic-lovin
See No Evil - Part 4 4 26 alxbl
Let's take a detour 4 71 Floesen
Windows API for the win 4 292 Mr.Un1k0d3r
Wrong byte! 4 244 Mr.Un1k0d3r
Introduction to ARM 4 316 Mr.Un1k0d3r
Virtual World 5 53 NSEC 2015
Phenix Golgoth 5 40 Hackfest 2016
WASM Part 1 5 48 NSEC 2018 (Isra17)
RingZer0 Authenticator 5 213 Ekse
Back to our roots 5 96 Mr.Un1k0d3r
Can I speak with the kernel? 5 55 Zerosum0x0
The MI7 password prompt 5 45 NSEC 2018 (Mr.Un1k0d3r)
Smart enough? 5 97 NSEC 2015
Pwndr3 Authenticator 5 48 Pwndr3
I Think I forgot to take out the garbage! 6 18 Mr.Un1k0d3r
Need a client 6 71 Mr.Un1k0d3r
Flag stealer 6 64 Ekse
Update Manager 6 50 Ekse
The supreme bash 7 19 NSEC 2017 (Mr.Un1k0d3r)
SOS Lib 7 22 Mr.Un1k0d3r
Buggy Bunny 7 10 Garigouster
Armed and ready 7 11 NSEC 2015
Rebate As A Service 8 36 NSEC 2016
You're not welcome 8 47 Towel
WASM Part 2 8 8 NSEC 2018 (Isra17)
License to kill 8 0 Mr.Un1k0d3r
The Matrix 9 10 Towel
Trolling the troll 10 30 Mr.Un1k0d3r
Keygen time again 10 29 GoSec CTF 2014
The unknown challenge 11 15 Mr.Un1k0d3r
WASM Part 3 12 6 NSEC 2018 (Isra17)
You're not welcome again! 12 19 Towel
The oracle 13 17 Towel
Mars Reloaded 18 8 NSEC 2018 (Towel)

Shellcoding (7)

Challenges descriptions Points Validation Author
Basics of Linux x64 shellcoding 2 464 Mr.Un1k0d3r
Linux x64 shellcoding level 2 4 236 Mr.Un1k0d3r
Linux x64 shellcoding level 3 6 181 Mr.Un1k0d3r
Linux x64 shellcoding level 4 8 144 Mr.Un1k0d3r
Linux x64 shellcoding level 5 10 99 Mr.Un1k0d3r
Linux x64 shellcoding level 6 12 83 Mr.Un1k0d3r
Linux x64 shellcoding level 7 14 44 Mr.Un1k0d3r

SQL Injection (32)

Challenges descriptions Points Validation Author
Most basic SQLi pattern. 1 7343 Mr.Un1k0d3r
Random Login Form 2 1287 Mr.Un1k0d3r
Po po po po postgresql 2 1432 Mr.Un1k0d3r
Login portal 1 2 2712 Mr.Un1k0d3r
ACL rulezzz the world. 2 3782 Mart
Login portal 2 3 449 Mr.Un1k0d3r
Don't mess with Noemie; she hates admin! 3 642 Mr.Un1k0d3r
0 Day Store 3 109 NSEC 2015
What's the definition of NULL 3 571 Mr.Un1k0d3r
Don't Stumble in the Process 4 40 mbergeron
Brain Teaser 1 4 17 Sideni
Quote of the day 4 523 Mr.Un1k0d3r
No more hacking for me! 4 253 Mr.Un1k0d3r
Thinking outside the box is the key 4 451 Mr.Un1k0d3r
Quote of the day reloaded 5 203 Mr.Un1k0d3r
When it's lite it's not necessarily easy 6 184 Mr.Un1k0d3r
Login portal 3 6 210 Mr.Un1k0d3r
Hot Single Mom 6 141 GoSec CTF 2014
Internet As A Service 7 80 Mr.Un1k0d3r
Size DOES matter 7 125 Mr.Un1k0d3r
Brain Teaser 2 7 11 Sideni
/etc/passwd 7 128 Mr.Un1k0d3r
Groups of hacker 7 145 Mr.Un1k0d3r
Login portal 4 7 129 Mr.Un1k0d3r
Login portal 5 8 68 Mr.Un1k0d3r
The useless search tool 8 111 Mr.Un1k0d3r
stackoverflow.com lied to me... again 9 67 Corb3nik
Doctor Who ? 9 7 Sideni
Login portal 6 10 56 Mr.Un1k0d3r
SQHell 11 13 Sideni feat. mbergeron
Don't Stumble in the Process Reloaded 12 8 mbergeron
!Mysql + Brain fart 13 30 Mr.Un1k0d3r

Steganography (25)

Challenges descriptions Points Validation Author
You're lost? Use the map 1 1328 Mr.Un1k0d3r
Victor you're hidding me something 1 1980 Cedrick Chaput
SigID Level 1 1 802 Guenael
Pixel Everywhere 2 100 Mr.Un1k0d3r
I'm Goronyo Babad Nigerian prince 2 374 Mr.Un1k0d3r
The vestige of dial-up Internet 2 72 Uid0
Missing Pieces 2 624 Cedrick Chaput
Brainsick 2 694 Mr.Un1k0d3r
Hidden In Plain Sight 2 507 NSEC 2015
The Sloth 2 91 Misker
Victor reloaded 2 827 Cedrick Chaput
A ghost sound 2 680 Cedrick Chaput
Look inside the house 2 749 Mr.Un1k0d3r
Crazy Cat Lady 3 50 Madness
Love Letter 3 159 Towel
5 beautiful colors 3 33 PublicName
Can you see through the matrix! 3 127 Mr.Un1k0d3r
Your old friend Orloge Simard 3 491 Cedrick Chaput
Not just 64 4 11 Madness
Stay Classy! 4 17 Sideni
Can you see through the matrix reloaded! 4 26 Towel
Even the Odds 4 10 alxbl
Walk the line! 5 124 Cedrick Chaput
Stop the violence 5 15 jusb3
SigID Level 2 6 11 Guenael

SysAdmin Linux (8)

Challenges descriptions Points Validation Author
SysAdmin Part 1 1 1952 Cedrick Chaput
SysAdmin Part 2 1 1388 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 3 1 833 Mr.Un1k0d3r
SysAdmin Part 4 2 838 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 5 2 495 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 6 3 473 Cedrick Chaput
SysAdmin Part 7 4 380 Cedrick Chaput
SysAdmin Part 8 4 452 Cedrick Feat Mr.Un1k0d3r

The NC8 Reverse Engineering Track (6)

Challenges descriptions Points Validation Author
NC8 MAINFRAME MANAGEMENT INTERFACE Part 1 7 38 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 1 3 23 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 2 7 22 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 3 10 21 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 3 5 16 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 4 15 14 NSEC 2018 (isra17)

Web Warning (42)

Challenges descriptions Points Validation Author
Area 51 1 2143 Mr.Un1k0d3r
Words mean something? 1 2298 Mr.Un1k0d3r
Headache 1 2923 Mr.Un1k0d3r
Hacking skill are optional 1 88 Breached Company
Big Brother is watching 1 3238 Mr.Un1k0d3r
Looking for password file 1 3247 Mr.Un1k0d3r
XSS Challenge 1 2 268 Mr.Un1k0d3r
Admin Portal 2 990 Mr.Un1k0d3r
Password reset 2 785 Mr.Un1k0d3r
XSS Challenge 2 2 288 Mr.Un1k0d3r
PHP Fairy 2 606 nic-Lovin
Unreadable captcha 2 313 SynneR
Malicious upload 2 440 Mr.Un1k0d3r
Security thru obscurity! 2 836 Mr.Un1k0d3r
Captcha I 2 450 SynneR
PHP feature or 0day? 3 327 Mr.Un1k0d3r
JWT pitfall 1 3 25 Mr.Un1k0d3r
REST in peace 3 187 GoSec CTF 2014
Serial killer! 3 393 Mr.Un1k0d3r
Password reset reloaded 3 305 Mr.Un1k0d3r
Looking for the flag? 3 611 Mr.Un1k0d3r
Facebook will never forget this one 3 172 Mr.Un1k0d3r
XSS Challenge 4 3 162 Mr.Un1k0d3r
XSS Challenge 3 3 144 Mr.Un1k0d3r
Propaganda mail 4 190 NSEC 2015
Captcha II 4 112 SynneR
Captcha III 4 31 mbergeron
Lost API 5 11 holyvier (NSEC 2019)
Password Reset As a Service 5 38 Mr.Un1k0d3r
Super Lottery 5 40 Sparkix
Read the unreadable 5 78 Mr.Un1k0d3r
Freedom Firewall 5 94 NSEC 2015
The archive 5 11 holyvier (NSEC 2019)
Timesheet As a Service 5 22 Mr.Un1k0d3r
I hate this one 6 189 Mr.Un1k0d3r
Serial killer part 2 6 37 HoLyVieR
PHP feature or 0day reloaded? 6 65 Mr.Un1k0d3r
XSS Challenge 5 6 97 Mr.Un1k0d3r
Orao's factory 6 94 NSEC 2015
XPATH of hell! 7 111 Francois L. Feat Mr.Un1k0d3r
Secure Mail 8 66 GoSec CTF 2014
Looking for god in your life? 8 57 NSEC 2015

Flag statistics (144100 submitted so far)

Number of points Number of validation Number of points Number of validation
18 points 8 15 points 14
14 points 49 13 points 47
12 points 129 11 points 35
10 points 268 9 points 143
8 points 853 7 points 1796
6 points 3992 5 points 3829
4 points 8648 3 points 16981
2 points 47143 1 points 60165

Shoutbox Have more questions? You can join the Slack Channel https://ringzer0-slack-invite.herokuapp.com/

2019-11-18 18:11:00 - jmiller
I can't ssh into the 'Sometime there is no buffer overflow' challenge. Is it down?
2019-11-08 14:29:32 - madness
For capture 1 part 5, I found two passwords (one is obtained from the other), but the challenge page is not accepting. Anyone?
2019-11-03 22:20:28 - madness
Is "I need a client" included in the statement "Virtual world sandbox is down"? Thanks
2019-11-02 23:32:15 - madness
I have finished "intro to Sparc". Now I'd like to run it in an emulator. Has anyone done that and is willing to talk about it?
2019-11-01 09:57:56 - zirconia57
Jail Escaping / C Jail *: none of them work since a week. Code can't compile: -- mkdir: cannot create directory ‘/tmp/d28...da3’: No space left on device
2019-10-31 06:05:03 - phuctran25
@Towel I'm sorry for that because while I am sending this message RingZer0 is down so it sends a lot of message instead
2019-10-29 18:09:48 - Towel
@phuctran25 - The challenge works as intended. I know what you're talking about, but the challenge is working just fine. Do not spam the shoutbox.
2019-10-29 04:00:14 - phuctran25
https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge
2019-10-29 04:00:13 - phuctran25
https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge
2019-10-29 04:00:12 - phuctran25
https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge
close Intercepting SSL Traffic on RingZer0team.com

If you are using Burpsuite as your proxy, you may experiment some issue regarding interception. If you got the following error unrecognized_name here is the solution. Go to the main tab on your Burp then click on options you should now see the SSL tab. In the SSL Negociation section, check "Disable Java SNI extension (requires restart)" Restart your Burp instance and you are good to go.

top