Challenges

320 challenges are currently available

RingZer0 Team provide you couple of tools that can help you. See available tools.

Means challenge completed.

Point to write-up that worth to be reading.

Earn RingZer0Gold for each of your write-up.

You have the opportunity to submit a write up for every challenge you successfully complete. Every time your write up is approved your earn RingZer0Gold. It's possible for you to exchange this gold for hints. The main goal of this initiative is to stimulate people to submit write up and share how they solved a challenge with other people. When you finish a challenge, you have the ability to view all published write up for the challenge. This way you can learn many ways to solve a unique challenge.

Sandboxes Status

Challenges
SysAdmin Part 1 sandbox is Up	Secure Mail sandbox is Up
Looking for god in your life? sandbox is Up	XSS Challenge 1 sandbox is Up
Captcha I sandbox is Up	Propaganda mail sandbox is Up
Basics of Linux x64 shellcoding sandbox is Up	Level1 Pwnage Linux Level Up sandbox is Up
Level1 Pwnage Linux x86_64 sandbox is Up	Virtual World sandbox is Down
Hot Single Mom sandbox is Up	Bash Jail 1 sandbox is Up

Coding Challenges (17)

Challenges descriptions	Points	Validation	Author
Hash me please	2	2449	Mr.Un1k0d3r
Ask your grandpa!	2	920	Mr.Un1k0d3r's Dad
Hash me reloaded	3	1371	Mr.Un1k0d3r
I hate mathematics	3	1476	Mr.Un1k0d3r
Ask your grandpa again!	4	301	Mr.Un1k0d3r's Dad
Hash breaker	4	1121	Mr.Un1k0d3r
I saw a little elf	4	403	Mr.Un1k0d3r
Hash breaker reloaded	5	655	Mr.Un1k0d3r
Execute me if you can	5	340	Mr.Un1k0d3r
Read me if you can	6	348	Mr.Un1k0d3r
Hash breaker reloaded again	6	219	Mr.Un1k0d3r
Ascii Art	6	527	Mr.Un1k0d3r
Execute me if you can again	6	168	Mr.Un1k0d3r
Xor me if you can	6	336	Mr.Un1k0d3r
Number game	7	248	Mr.Un1k0d3r remade by theindian
Classic Sudoku	7	212	Mr.Un1k0d3r remade by dread_knight
Find the right word	7	265	Mr.Un1k0d3r

Cryptography (32)

Challenges descriptions	Points	Validation	Author
Some martian message	1	5145	Mr.Un1k0d3r
You're Drunk!	1	1068	Mr.Un1k0d3r
File recovery	1	2450	Mr.Un1k0d3r
Public key recovery	2	1207	Mr.Un1k0d3r
Fashion Victim	2	398	GoSec CTF 2014
Martian message part 2	2	2238	Mr.Un1k0d3r
Can you understand this sentence?	3	552	Mr.Un1k0d3r
Let's Play Scrabble!	3	23	Madness
I Lost my password	3	945	Mr.Un1k0d3r
Martian message part 3	3	842	Mr.Un1k0d3r
Hangovers and more: Bacon	3	431	SynneR
Crypto Leak	4	38	NSEC 2018 (Towel)
Crypto Object	4	157	GoSec CTF 2014
Crypto over the network	4	105	Mr.Un1k0d3r
Encrypted Zip	4	456	Mr.Un1k0d3r
Let's Play Scrabble! Part 2	5	9	Madness
Jabber	5	4	Madness
Is it a secure string?	5	216	Cedrick Chaput
Free Flag Encrypter	5	14	Towel
Pattern is the key	6	38	Mr.Un1k0d3r
TotalSecure Message Encrypter	6	76	Towel
Welcome to the asylum	6	50	GoSec CTF 2014
Homemade craptography #2	7	4	holyvier(ft. large software company)
Jabber Part 2	7	4	Madness
Crypto is not good as you think	8	149	Mr.Un1k0d3r
Mars Log	8	6	NSEC 2018 (Towel)
Homemade Craptography	8	6	NSEC 2018 (Holyvier)
Spies	9	28	CS Games 2016 (HoLyVieR)
Rusty RSA message signing service	9	10	b0n0n & An0n
TotalSecure Message Encrypter V2	10	17	Towel
Polly Wants a Cracker	10	2	Madness
Unicorn As A Service	11	7	Towel

Exotic Data Storage (4)

Challenges descriptions	Points	Validation	Author
Just another login form	2	1341	Mr.Un1k0d3r
DON'T login as admin	2	21	mbergeron
I forgot my password	3	21	mbergeron
Inspiration	6	26	NSEC 2019 (becojo)

Forensics (28)

Challenges descriptions	Points	Validation	Author
Who I am part 2	1	367	Mr.Un1k0d3r
I made a dd of Agent Smith usb key	1	2595	Cedrick Chaput
I love cat	2	357	Mr.Un1k0d3r
Dr. Pouce	2	1932	Cedrick Chaput
Attention Dinosaure Survive	2	1055	PRL
The good, the bad and the ugly	2	63	Mr.Un1k0d3r
1 / 3 Do not waste the environment	2	816	PRL
Hide my ass in my home!	2	1248	Cedrick Chaput
Hey Chuck where is the flag?	2	1226	Mr.Un1k0d3r
Meat Loaf	2	200	Ekse
Who I am?	2	769	Mr.Un1k0d3r
The words flew but writing remains	3	133	Martin Dube
2 / 3 Did you see my desktop?	3	699	PRL
Are you Twisted Insane?	3	24	Cedrick Feat Mr.Un1k0d3r
Someone steal my flag!	3	313	Mr.Un1k0d3r
802.1X Part 1	4	50	NSEC 2015
3 / 3 Suspicious account password?	4	573	PRL
Poor internet connection	4	345	Cedrick Chaput
Agent Smith reloaded	4	216	Cedrick Chaput
R.I.P MsPaint	4	85	Misker
We got breached	5	173	Mr.Un1k0d3r
Someone steal my flag again	5	99	GoSec CTF 2014
Ping pong	5	74	SynneR
Spy my girl	5	162	Cedrick Chaput
We got breached again	6	130	Mr.Un1k0d3r
Russian Crypto Roulette	6	61	SynneR
Really Depressed Protocol	7	67	SynneR
802.1X Part 2	8	37	NSEC 2015

Jail Escaping (21)

Challenges descriptions	Points	Validation	Author
Bash Jail 1	1	1769	Mr.Un1k0d3r
Bash Jail 2	2	1139	Mr.Un1k0d3r
Bash Jail 3	3	646	Mr.Un1k0d3r
Bash Jail 4	4	350	Mr.Un1k0d3r
Bash Jail 5	6	149	Mr.Un1k0d3r
Bash Jail 6	8	17	Garigouster
Bash Jail 7	12	13	Garigouster
C Jail 1	1	284	Mr.Un1k0d3r
C Jail 2	2	189	Mr.Un1k0d3r
C Jail 3	3	156	Mr.Un1k0d3r
C Jail 4	5	15	Garigouster
C Jail 5	7	10	Garigouster
C Jail 6	14	5	Garigouster
PHP Jail 1	1	457	Mr.Un1k0d3r
PHP Jail 2	2	298	Mr.Un1k0d3r
PHP Jail 3	3	201	Mr.Un1k0d3r
PHP Jail 4	4	151	Mr.Un1k0d3r
PHP Jail 5	6	122	Mr.Un1k0d3r
PyJail 1	3	182	Martin Dube
PyJail 2	5	100	Martin Dube
PyJail 3	6	34	Martin Dube

JavaScript (10)

Challenges descriptions	Points	Validation	Author
Client side validation is bad!	1	5864	Mr.Un1k0d3r
Hashing is more secure	1	5103	Mr.Un1k0d3r
Then obfuscation is more secure	1	3846	Mr.Un1k0d3r
Most Secure Crypto Algo	2	1313	Mr.Un1k0d3r
Valid key required	2	765	Francois Lajeunesse
Why not?	2	3123	Mr.Un1k0d3r
Why not be more secure?	5	474	Mr.Un1k0d3r
WTF Lol!	6	223	HoLyVieR
Interstellar PhoneBook	6	29	NSEC 2018 (Holyvier)
Beauty and the beast	7	32	Mr.Un1k0d3r

Malware Analysis (17)

Challenges descriptions	Points	Validation	Author
APT 1337	4	30	NSEC 2017 (Mr.Un1k0d3r)
Capture 1 Part 1	1	517	Mr.Un1k0d3r
Capture 1 Part 2	1	172	Mr.Un1k0d3r
Capture 1 Part 3	1	196	Mr.Un1k0d3r
Capture 1 Part 4	2	19	Mr.Un1k0d3r
Capture 1 Part 5	3	46	Mr.Un1k0d3r
Capture 1 Part 6	3	129	Mr.Un1k0d3r
Capture 1 Part 7	3	25	Mr.Un1k0d3r
Capture 2 Part 1	1	50	Mr.Un1k0d3r
Capture 2 Part 2	1	88	Mr.Un1k0d3r
Capture 2 Part 3	1	89	Mr.Un1k0d3r
Capture 2 Part 4	3	88	Mr.Un1k0d3r
Capture 2 Part 5	4	33	Mr.Un1k0d3r
Capture 2 Part 6	7	14	Mr.Un1k0d3r
Just Another MBR Ransomware	8	15	Towel
RAO democracy	4	44	NSEC 2017 (Mr.Un1k0d3r)
WebShell of Hell	5	7	An0n

Pwnage Linux (19)

Challenges descriptions	Points	Validation	Author
Level1 Pwnage Linux Level Up	1	542	P-Y Feat Martin Dube
Level2 Pwnage Linux Level Up	2	345	P-Y Feat Martin Dube
Remote Auth	2	96	NSEC 2015
Level3 Pwnage Linux Level Up	3	251	P-Y Feat Martin Dube
Level1 Pwnage Linux x86_64	3	176	Mr.Un1k0d3r
Level2 Pwnage Linux x86_64	4	60	Mr.Un1k0d3r
Sometime there is no buffer overflow	4	70	Mr.Un1k0d3r
Can you get the service password	4	110	Mr.Un1k0d3r
Level4 Pwnage Linux Level Up	5	119	Mr.Un1k0d3r
Friendly race	5	21	Garigouster
RPCFTW!	6	26	NSEC 2015
Jack the heaper	6	18	uaf.io
Level3 Pwnage Linux x86_64	7	56	Mr.Un1k0d3r
Level4 Pwnage Linux x86_64	7	33	Mr.Un1k0d3r
Just another useless service	8	34	NSEC 2015
Take over the Virtual World	8	26	NSEC 2015
Base64 As A Service	8	26	Guilt
Base64 As A Service Reloaded	9	21	Guilt
Delivery As A Service	10	14	NSEC 2016

Reverse Engineering (52)

Challenges descriptions	Points	Validation	Author
Time to learn x86 ASM & gdb	2	1795	Mr.Un1k0d3r
Can you see through the star	2	1071	Mr.Un1k0d3r
See No Evil - Part 1	2	46	alxbl
Crack Me 1	3	694	Mr.Un1k0d3r
Heap allocator	3	221	NSEC 2015
Intro To Sparc	3	133	Ian-Kyle Wagner
Kernel introduction	3	216	Mr.Un1k0d3r
See No Evil - Part 2	3	35	alxbl
See No Evil - Part 3	3	35	alxbl
Introduction to MIPS	3	280	Mr.Un1k0d3r
Windows x86 reversing is cool	3	623	Mr.Un1k0d3r
I never forget the Nintendo 64	3	561	Mr.Un1k0d3r
Power to the people	4	46	NSEC 2015
Altera?	4	48	NSEC 2016
ASM Lovers	4	77	NSEC 2016
See No Evil - Part 5	4	23	alxbl
Old School	4	53	Towel
I love tea!	4	5	nic-lovin
See No Evil - Part 4	4	26	alxbl
Let's take a detour	4	71	Floesen
Windows API for the win	4	292	Mr.Un1k0d3r
Wrong byte!	4	244	Mr.Un1k0d3r
Introduction to ARM	4	316	Mr.Un1k0d3r
Virtual World	5	53	NSEC 2015
Phenix Golgoth	5	40	Hackfest 2016
WASM Part 1	5	48	NSEC 2018 (Isra17)
RingZer0 Authenticator	5	213	Ekse
Back to our roots	5	96	Mr.Un1k0d3r
Can I speak with the kernel?	5	55	Zerosum0x0
The MI7 password prompt	5	45	NSEC 2018 (Mr.Un1k0d3r)
Smart enough?	5	97	NSEC 2015
Pwndr3 Authenticator	5	48	Pwndr3
I Think I forgot to take out the garbage!	6	18	Mr.Un1k0d3r
Need a client	6	71	Mr.Un1k0d3r
Flag stealer	6	64	Ekse
Update Manager	6	50	Ekse
The supreme bash	7	19	NSEC 2017 (Mr.Un1k0d3r)
SOS Lib	7	22	Mr.Un1k0d3r
Buggy Bunny	7	10	Garigouster
Armed and ready	7	11	NSEC 2015
Rebate As A Service	8	36	NSEC 2016
You're not welcome	8	47	Towel
WASM Part 2	8	8	NSEC 2018 (Isra17)
License to kill	8	0	Mr.Un1k0d3r
The Matrix	9	10	Towel
Trolling the troll	10	30	Mr.Un1k0d3r
Keygen time again	10	29	GoSec CTF 2014
The unknown challenge	11	15	Mr.Un1k0d3r
WASM Part 3	12	6	NSEC 2018 (Isra17)
You're not welcome again!	12	19	Towel
The oracle	13	17	Towel
Mars Reloaded	18	8	NSEC 2018 (Towel)

Shellcoding (7)

Challenges descriptions	Points	Validation	Author
Basics of Linux x64 shellcoding	2	464	Mr.Un1k0d3r
Linux x64 shellcoding level 2	4	236	Mr.Un1k0d3r
Linux x64 shellcoding level 3	6	181	Mr.Un1k0d3r
Linux x64 shellcoding level 4	8	144	Mr.Un1k0d3r
Linux x64 shellcoding level 5	10	99	Mr.Un1k0d3r
Linux x64 shellcoding level 6	12	83	Mr.Un1k0d3r
Linux x64 shellcoding level 7	14	44	Mr.Un1k0d3r

SQL Injection (32)

Challenges descriptions	Points	Validation	Author
Most basic SQLi pattern.	1	7343	Mr.Un1k0d3r
Random Login Form	2	1287	Mr.Un1k0d3r
Po po po po postgresql	2	1432	Mr.Un1k0d3r
Login portal 1	2	2712	Mr.Un1k0d3r
ACL rulezzz the world.	2	3782	Mart
Login portal 2	3	449	Mr.Un1k0d3r
Don't mess with Noemie; she hates admin!	3	642	Mr.Un1k0d3r
0 Day Store	3	109	NSEC 2015
What's the definition of NULL	3	571	Mr.Un1k0d3r
Don't Stumble in the Process	4	40	mbergeron
Brain Teaser 1	4	17	Sideni
Quote of the day	4	523	Mr.Un1k0d3r
No more hacking for me!	4	253	Mr.Un1k0d3r
Thinking outside the box is the key	4	451	Mr.Un1k0d3r
Quote of the day reloaded	5	203	Mr.Un1k0d3r
When it's lite it's not necessarily easy	6	184	Mr.Un1k0d3r
Login portal 3	6	210	Mr.Un1k0d3r
Hot Single Mom	6	141	GoSec CTF 2014
Internet As A Service	7	80	Mr.Un1k0d3r
Size DOES matter	7	125	Mr.Un1k0d3r
Brain Teaser 2	7	11	Sideni
/etc/passwd	7	128	Mr.Un1k0d3r
Groups of hacker	7	145	Mr.Un1k0d3r
Login portal 4	7	129	Mr.Un1k0d3r
Login portal 5	8	68	Mr.Un1k0d3r
The useless search tool	8	111	Mr.Un1k0d3r
stackoverflow.com lied to me... again	9	67	Corb3nik
Doctor Who ?	9	7	Sideni
Login portal 6	10	56	Mr.Un1k0d3r
SQHell	11	13	Sideni feat. mbergeron
Don't Stumble in the Process Reloaded	12	8	mbergeron
!Mysql + Brain fart	13	30	Mr.Un1k0d3r

Steganography (25)

Challenges descriptions	Points	Validation	Author
You're lost? Use the map	1	1328	Mr.Un1k0d3r
Victor you're hidding me something	1	1980	Cedrick Chaput
SigID Level 1	1	802	Guenael
Pixel Everywhere	2	100	Mr.Un1k0d3r
I'm Goronyo Babad Nigerian prince	2	374	Mr.Un1k0d3r
The vestige of dial-up Internet	2	72	Uid0
Missing Pieces	2	624	Cedrick Chaput
Brainsick	2	694	Mr.Un1k0d3r
Hidden In Plain Sight	2	507	NSEC 2015
The Sloth	2	91	Misker
Victor reloaded	2	827	Cedrick Chaput
A ghost sound	2	680	Cedrick Chaput
Look inside the house	2	749	Mr.Un1k0d3r
Crazy Cat Lady	3	50	Madness
Love Letter	3	159	Towel
5 beautiful colors	3	33	PublicName
Can you see through the matrix!	3	127	Mr.Un1k0d3r
Your old friend Orloge Simard	3	491	Cedrick Chaput
Not just 64	4	11	Madness
Stay Classy!	4	17	Sideni
Can you see through the matrix reloaded!	4	26	Towel
Even the Odds	4	10	alxbl
Walk the line!	5	124	Cedrick Chaput
Stop the violence	5	15	jusb3
SigID Level 2	6	11	Guenael

SysAdmin Linux (8)

Challenges descriptions	Points	Validation	Author
SysAdmin Part 1	1	1952	Cedrick Chaput
SysAdmin Part 2	1	1388	Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 3	1	833	Mr.Un1k0d3r
SysAdmin Part 4	2	838	Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 5	2	495	Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 6	3	473	Cedrick Chaput
SysAdmin Part 7	4	380	Cedrick Chaput
SysAdmin Part 8	4	452	Cedrick Feat Mr.Un1k0d3r

The NC8 Reverse Engineering Track (6)

Challenges descriptions	Points	Validation	Author
NC8 MAINFRAME MANAGEMENT INTERFACE Part 1	7	38	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 1	3	23	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 2	7	22	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 3	10	21	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 3	5	16	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 4	15	14	NSEC 2018 (isra17)

Web Warning (42)

Challenges descriptions	Points	Validation	Author
Area 51	1	2143	Mr.Un1k0d3r
Words mean something?	1	2298	Mr.Un1k0d3r
Headache	1	2923	Mr.Un1k0d3r
Hacking skill are optional	1	88	Breached Company
Big Brother is watching	1	3238	Mr.Un1k0d3r
Looking for password file	1	3247	Mr.Un1k0d3r
XSS Challenge 1	2	268	Mr.Un1k0d3r
Admin Portal	2	990	Mr.Un1k0d3r
Password reset	2	785	Mr.Un1k0d3r
XSS Challenge 2	2	288	Mr.Un1k0d3r
PHP Fairy	2	606	nic-Lovin
Unreadable captcha	2	313	SynneR
Malicious upload	2	440	Mr.Un1k0d3r
Security thru obscurity!	2	836	Mr.Un1k0d3r
Captcha I	2	450	SynneR
PHP feature or 0day?	3	327	Mr.Un1k0d3r
JWT pitfall 1	3	25	Mr.Un1k0d3r
REST in peace	3	187	GoSec CTF 2014
Serial killer!	3	393	Mr.Un1k0d3r
Password reset reloaded	3	305	Mr.Un1k0d3r
Looking for the flag?	3	611	Mr.Un1k0d3r
Facebook will never forget this one	3	172	Mr.Un1k0d3r
XSS Challenge 4	3	162	Mr.Un1k0d3r
XSS Challenge 3	3	144	Mr.Un1k0d3r
Propaganda mail	4	190	NSEC 2015
Captcha II	4	112	SynneR
Captcha III	4	31	mbergeron
Lost API	5	11	holyvier (NSEC 2019)
Password Reset As a Service	5	38	Mr.Un1k0d3r
Super Lottery	5	40	Sparkix
Read the unreadable	5	78	Mr.Un1k0d3r
Freedom Firewall	5	94	NSEC 2015
The archive	5	11	holyvier (NSEC 2019)
Timesheet As a Service	5	22	Mr.Un1k0d3r
I hate this one	6	189	Mr.Un1k0d3r
Serial killer part 2	6	37	HoLyVieR
PHP feature or 0day reloaded?	6	65	Mr.Un1k0d3r
XSS Challenge 5	6	97	Mr.Un1k0d3r
Orao's factory	6	94	NSEC 2015
XPATH of hell!	7	111	Francois L. Feat Mr.Un1k0d3r
Secure Mail	8	66	GoSec CTF 2014
Looking for god in your life?	8	57	NSEC 2015

Flag statistics (144100 submitted so far)

Number of points	Number of validation	Number of points	Number of validation
18 points	8	15 points	14
14 points	49	13 points	47
12 points	129	11 points	35
10 points	268	9 points	143
8 points	853	7 points	1796
6 points	3992	5 points	3829
4 points	8648	3 points	16981
2 points	47143	1 points	60165

Shoutbox Have more questions? You can join the Slack Channel https://ringzer0-slack-invite.herokuapp.com/

2019-11-18 18:11:00 - jmiller I can't ssh into the 'Sometime there is no buffer overflow' challenge. Is it down?
2019-11-08 14:29:32 - madness For capture 1 part 5, I found two passwords (one is obtained from the other), but the challenge page is not accepting. Anyone?
2019-11-03 22:20:28 - madness Is "I need a client" included in the statement "Virtual world sandbox is down"? Thanks
2019-11-02 23:32:15 - madness I have finished "intro to Sparc". Now I'd like to run it in an emulator. Has anyone done that and is willing to talk about it?
2019-11-01 09:57:56 - zirconia57 Jail Escaping / C Jail *: none of them work since a week. Code can't compile: -- mkdir: cannot create directory ‘/tmp/d28...da3’: No space left on device
2019-10-31 06:05:03 - phuctran25 @Towel I'm sorry for that because while I am sending this message RingZer0 is down so it sends a lot of message instead
2019-10-29 18:09:48 - Towel @phuctran25 - The challenge works as intended. I know what you're talking about, but the challenge is working just fine. Do not spam the shoutbox.
2019-10-29 04:00:14 - phuctran25 https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge
2019-10-29 04:00:13 - phuctran25 https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge
2019-10-29 04:00:12 - phuctran25 https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge

close Intercepting SSL Traffic on RingZer0team.com

If you are using Burpsuite as your proxy, you may experiment some issue regarding interception. If you got the following error unrecognized_name here is the solution. Go to the main tab on your Burp then click on options you should now see the SSL tab. In the SSL Negociation section, check "Disable Java SNI extension (requires restart)" Restart your Burp instance and you are good to go.