Switch to lite version Switch to dark theme

322 challenges are currently available


RingZer0 Team provide you couple of tools that can help you. See available tools.
Means challenge completed.
Point to write-up that worth to be reading.
Earn RingZer0Gold for each of your write-up.

You have the opportunity to submit a write up for every challenge you successfully complete. Every time your write up is approved your earn RingZer0Gold. It's possible for you to exchange this gold for hints. The main goal of this initiative is to stimulate people to submit write up and share how they solved a challenge with other people. When you finish a challenge, you have the ability to view all published write up for the challenge. This way you can learn many ways to solve a unique challenge.

Sandboxes Status

Challenges
SysAdmin Part 1 sandbox is Up Secure Mail sandbox is Up
Looking for god in your life? sandbox is Up XSS Challenge 1 sandbox is Up
Captcha I sandbox is Up Propaganda mail sandbox is Up
Basics of Linux x64 shellcoding sandbox is Up Level1 Pwnage Linux Level Up sandbox is Up
Level1 Pwnage Linux x86_64 sandbox is Up Virtual World sandbox is Down
Hot Single Mom sandbox is Up Bash Jail 1 sandbox is Up

Challenges


Coding Challenges (17)

Challenges descriptions Points Validation Author
Hash me please 2 2548 Mr.Un1k0d3r
Ask your grandpa! 2 950 Mr.Un1k0d3r's Dad
Hash me reloaded 3 1425 Mr.Un1k0d3r
I hate mathematics 3 1522 Mr.Un1k0d3r
Ask your grandpa again! 4 309 Mr.Un1k0d3r's Dad
Hash breaker 4 1161 Mr.Un1k0d3r
I saw a little elf 4 416 Mr.Un1k0d3r
Hash breaker reloaded 5 677 Mr.Un1k0d3r
Execute me if you can 5 350 Mr.Un1k0d3r
Read me if you can 6 364 Mr.Un1k0d3r
Hash breaker reloaded again 6 232 Mr.Un1k0d3r
Ascii Art 6 546 Mr.Un1k0d3r
Execute me if you can again 6 175 Mr.Un1k0d3r
Xor me if you can 6 347 Mr.Un1k0d3r
Number game 7 261 Mr.Un1k0d3r remade by theindian
Classic Sudoku 7 223 Mr.Un1k0d3r remade by dread_knight
Find the right word 7 278 Mr.Un1k0d3r

Cryptography (32)

Challenges descriptions Points Validation Author
Some martian message 1 5326 Mr.Un1k0d3r
You're Drunk! 1 1158 Mr.Un1k0d3r
File recovery 1 2542 Mr.Un1k0d3r
Public key recovery 2 1252 Mr.Un1k0d3r
Fashion Victim 2 404 GoSec CTF 2014
Martian message part 2 2 2300 Mr.Un1k0d3r
Can you understand this sentence? 3 572 Mr.Un1k0d3r
Let's Play Scrabble! 3 26 Madness
I Lost my password 3 965 Mr.Un1k0d3r
Martian message part 3 3 865 Mr.Un1k0d3r
Hangovers and more: Bacon 3 440 SynneR
Crypto Leak 4 39 NSEC 2018 (Towel)
Crypto Object 4 160 GoSec CTF 2014
Crypto over the network 4 105 Mr.Un1k0d3r
Encrypted Zip 4 470 Mr.Un1k0d3r
Let's Play Scrabble! Part 2 5 12 Madness
Jabber 5 6 Madness
Is it a secure string? 5 220 Cedrick Chaput
Free Flag Encrypter 5 14 Towel
Pattern is the key 6 38 Mr.Un1k0d3r
TotalSecure Message Encrypter 6 81 Towel
Welcome to the asylum 6 52 GoSec CTF 2014
Homemade craptography #2 7 5 holyvier(ft. large software company)
Jabber Part 2 7 5 Madness
Crypto is not good as you think 8 149 Mr.Un1k0d3r
Mars Log 8 6 NSEC 2018 (Towel)
Homemade Craptography 8 6 NSEC 2018 (Holyvier)
Spies 9 28 CS Games 2016 (HoLyVieR)
Rusty RSA message signing service 9 10 b0n0n & An0n
TotalSecure Message Encrypter V2 10 17 Towel
Polly Wants a Cracker 10 2 Madness
Unicorn As A Service 11 7 Towel

Exotic Data Storage (4)

Challenges descriptions Points Validation Author
Just another login form 2 1362 Mr.Un1k0d3r
DON'T login as admin 2 22 mbergeron
I forgot my password 3 22 mbergeron
Inspiration 6 27 NSEC 2019 (becojo)

Forensics (28)

Challenges descriptions Points Validation Author
Who I am part 2 1 392 Mr.Un1k0d3r
I made a dd of Agent Smith usb key 1 2671 Cedrick Chaput
I love cat 2 424 Mr.Un1k0d3r
Dr. Pouce 2 1997 Cedrick Chaput
Attention Dinosaure Survive 2 1086 PRL
The good, the bad and the ugly 2 66 Mr.Un1k0d3r
1 / 3 Do not waste the environment 2 842 PRL
Hide my ass in my home! 2 1282 Cedrick Chaput
Hey Chuck where is the flag? 2 1262 Mr.Un1k0d3r
Meat Loaf 2 204 Ekse
Who I am? 2 794 Mr.Un1k0d3r
The words flew but writing remains 3 133 Martin Dube
2 / 3 Did you see my desktop? 3 712 PRL
Are you Twisted Insane? 3 24 Cedrick Feat Mr.Un1k0d3r
Someone steal my flag! 3 326 Mr.Un1k0d3r
802.1X Part 1 4 52 NSEC 2015
3 / 3 Suspicious account password? 4 581 PRL
Poor internet connection 4 350 Cedrick Chaput
Agent Smith reloaded 4 222 Cedrick Chaput
R.I.P MsPaint 4 87 Misker
We got breached 5 176 Mr.Un1k0d3r
Someone steal my flag again 5 102 GoSec CTF 2014
Ping pong 5 77 SynneR
Spy my girl 5 169 Cedrick Chaput
We got breached again 6 133 Mr.Un1k0d3r
Russian Crypto Roulette 6 62 SynneR
Really Depressed Protocol 7 68 SynneR
802.1X Part 2 8 38 NSEC 2015

Jail Escaping (21)

Challenges descriptions Points Validation Author
Bash Jail 1 1 1852 Mr.Un1k0d3r
Bash Jail 2 2 1190 Mr.Un1k0d3r
Bash Jail 3 3 672 Mr.Un1k0d3r
Bash Jail 4 4 366 Mr.Un1k0d3r
Bash Jail 5 6 156 Mr.Un1k0d3r
Bash Jail 6 8 19 Garigouster
Bash Jail 7 12 14 Garigouster
C Jail 1 1 298 Mr.Un1k0d3r
C Jail 2 2 199 Mr.Un1k0d3r
C Jail 3 3 166 Mr.Un1k0d3r
C Jail 4 5 15 Garigouster
C Jail 5 7 10 Garigouster
C Jail 6 14 5 Garigouster
PHP Jail 1 1 475 Mr.Un1k0d3r
PHP Jail 2 2 312 Mr.Un1k0d3r
PHP Jail 3 3 211 Mr.Un1k0d3r
PHP Jail 4 4 157 Mr.Un1k0d3r
PHP Jail 5 6 128 Mr.Un1k0d3r
PyJail 1 3 193 Martin Dube
PyJail 2 5 109 Martin Dube
PyJail 3 6 36 Martin Dube

JavaScript (10)

Challenges descriptions Points Validation Author
Client side validation is bad! 1 6043 Mr.Un1k0d3r
Hashing is more secure 1 5259 Mr.Un1k0d3r
Then obfuscation is more secure 1 3984 Mr.Un1k0d3r
Most Secure Crypto Algo 2 1371 Mr.Un1k0d3r
Valid key required 2 792 Francois Lajeunesse
Why not? 2 3170 Mr.Un1k0d3r
Why not be more secure? 5 485 Mr.Un1k0d3r
WTF Lol! 6 228 HoLyVieR
Interstellar PhoneBook 6 29 NSEC 2018 (Holyvier)
Beauty and the beast 7 32 Mr.Un1k0d3r

Malware Analysis (17)

Challenges descriptions Points Validation Author
APT 1337 4 32 NSEC 2017 (Mr.Un1k0d3r)
Capture 1 Part 1 1 537 Mr.Un1k0d3r
Capture 1 Part 2 1 180 Mr.Un1k0d3r
Capture 1 Part 3 1 202 Mr.Un1k0d3r
Capture 1 Part 4 2 19 Mr.Un1k0d3r
Capture 1 Part 5 3 48 Mr.Un1k0d3r
Capture 1 Part 6 3 131 Mr.Un1k0d3r
Capture 1 Part 7 3 25 Mr.Un1k0d3r
Capture 2 Part 1 1 50 Mr.Un1k0d3r
Capture 2 Part 2 1 88 Mr.Un1k0d3r
Capture 2 Part 3 1 89 Mr.Un1k0d3r
Capture 2 Part 4 3 88 Mr.Un1k0d3r
Capture 2 Part 5 4 33 Mr.Un1k0d3r
Capture 2 Part 6 7 14 Mr.Un1k0d3r
Just Another MBR Ransomware 8 15 Towel
RAO democracy 4 44 NSEC 2017 (Mr.Un1k0d3r)
WebShell of Hell 5 7 An0n

Pwnage Linux (19)

Challenges descriptions Points Validation Author
Level1 Pwnage Linux Level Up 1 563 P-Y Feat Martin Dube
Level2 Pwnage Linux Level Up 2 353 P-Y Feat Martin Dube
Remote Auth 2 96 NSEC 2015
Level3 Pwnage Linux Level Up 3 253 P-Y Feat Martin Dube
Level1 Pwnage Linux x86_64 3 176 Mr.Un1k0d3r
Level2 Pwnage Linux x86_64 4 60 Mr.Un1k0d3r
Sometime there is no buffer overflow 4 70 Mr.Un1k0d3r
Can you get the service password 4 110 Mr.Un1k0d3r
Level4 Pwnage Linux Level Up 5 119 Mr.Un1k0d3r
Friendly race 5 21 Garigouster
RPCFTW! 6 26 NSEC 2015
Jack the heaper 6 18 uaf.io
Level3 Pwnage Linux x86_64 7 56 Mr.Un1k0d3r
Level4 Pwnage Linux x86_64 7 33 Mr.Un1k0d3r
Just another useless service 8 34 NSEC 2015
Take over the Virtual World 8 26 NSEC 2015
Base64 As A Service 8 26 Guilt
Base64 As A Service Reloaded 9 21 Guilt
Delivery As A Service 10 14 NSEC 2016

Reverse Engineering (52)

Challenges descriptions Points Validation Author
Time to learn x86 ASM & gdb 2 1845 Mr.Un1k0d3r
Can you see through the star 2 1093 Mr.Un1k0d3r
See No Evil - Part 1 2 53 alxbl
Crack Me 1 3 708 Mr.Un1k0d3r
Heap allocator 3 235 NSEC 2015
Intro To Sparc 3 142 Ian-Kyle Wagner
Kernel introduction 3 221 Mr.Un1k0d3r
See No Evil - Part 2 3 41 alxbl
See No Evil - Part 3 3 40 alxbl
Introduction to MIPS 3 289 Mr.Un1k0d3r
Windows x86 reversing is cool 3 639 Mr.Un1k0d3r
I never forget the Nintendo 64 3 571 Mr.Un1k0d3r
Power to the people 4 49 NSEC 2015
Altera? 4 50 NSEC 2016
ASM Lovers 4 78 NSEC 2016
See No Evil - Part 5 4 28 alxbl
Old School 4 55 Towel
I love tea! 4 8 nic-lovin
See No Evil - Part 4 4 31 alxbl
Let's take a detour 4 74 Floesen
Windows API for the win 4 299 Mr.Un1k0d3r
Wrong byte! 4 249 Mr.Un1k0d3r
Introduction to ARM 4 322 Mr.Un1k0d3r
Virtual World 5 53 NSEC 2015
Phenix Golgoth 5 40 Hackfest 2016
WASM Part 1 5 49 NSEC 2018 (Isra17)
RingZer0 Authenticator 5 216 Ekse
Back to our roots 5 96 Mr.Un1k0d3r
Can I speak with the kernel? 5 56 Zerosum0x0
The MI7 password prompt 5 46 NSEC 2018 (Mr.Un1k0d3r)
Smart enough? 5 97 NSEC 2015
Pwndr3 Authenticator 5 48 Pwndr3
I Think I forgot to take out the garbage! 6 18 Mr.Un1k0d3r
Need a client 6 71 Mr.Un1k0d3r
Flag stealer 6 64 Ekse
Update Manager 6 50 Ekse
The supreme bash 7 19 NSEC 2017 (Mr.Un1k0d3r)
SOS Lib 7 22 Mr.Un1k0d3r
Buggy Bunny 7 10 Garigouster
Armed and ready 7 11 NSEC 2015
Rebate As A Service 8 36 NSEC 2016
You're not welcome 8 47 Towel
WASM Part 2 8 8 NSEC 2018 (Isra17)
License to kill 8 1 Mr.Un1k0d3r
The Matrix 9 10 Towel
Trolling the troll 10 30 Mr.Un1k0d3r
Keygen time again 10 30 GoSec CTF 2014
The unknown challenge 11 16 Mr.Un1k0d3r
WASM Part 3 12 6 NSEC 2018 (Isra17)
You're not welcome again! 12 20 Towel
The oracle 13 17 Towel
Mars Reloaded 18 8 NSEC 2018 (Towel)

Shellcoding (7)

Challenges descriptions Points Validation Author
Basics of Linux x64 shellcoding 2 473 Mr.Un1k0d3r
Linux x64 shellcoding level 2 4 241 Mr.Un1k0d3r
Linux x64 shellcoding level 3 6 186 Mr.Un1k0d3r
Linux x64 shellcoding level 4 8 149 Mr.Un1k0d3r
Linux x64 shellcoding level 5 10 104 Mr.Un1k0d3r
Linux x64 shellcoding level 6 12 87 Mr.Un1k0d3r
Linux x64 shellcoding level 7 14 47 Mr.Un1k0d3r

SQL Injection (32)

Challenges descriptions Points Validation Author
Most basic SQLi pattern. 1 7546 Mr.Un1k0d3r
Random Login Form 2 1369 Mr.Un1k0d3r
Po po po po postgresql 2 1512 Mr.Un1k0d3r
Login portal 1 2 2789 Mr.Un1k0d3r
ACL rulezzz the world. 2 3843 Mart
Login portal 2 3 484 Mr.Un1k0d3r
Don't mess with Noemie; she hates admin! 3 668 Mr.Un1k0d3r
0 Day Store 3 112 NSEC 2015
What's the definition of NULL 3 593 Mr.Un1k0d3r
Don't Stumble in the Process 4 41 mbergeron
Brain Teaser 1 4 19 Sideni
Quote of the day 4 541 Mr.Un1k0d3r
No more hacking for me! 4 263 Mr.Un1k0d3r
Thinking outside the box is the key 4 467 Mr.Un1k0d3r
Quote of the day reloaded 5 207 Mr.Un1k0d3r
When it's lite it's not necessarily easy 6 189 Mr.Un1k0d3r
Login portal 3 6 216 Mr.Un1k0d3r
Hot Single Mom 6 146 GoSec CTF 2014
Internet As A Service 7 84 Mr.Un1k0d3r
Size DOES matter 7 127 Mr.Un1k0d3r
Brain Teaser 2 7 12 Sideni
/etc/passwd 7 132 Mr.Un1k0d3r
Groups of hacker 7 148 Mr.Un1k0d3r
Login portal 4 7 133 Mr.Un1k0d3r
Login portal 5 8 68 Mr.Un1k0d3r
The useless search tool 8 114 Mr.Un1k0d3r
stackoverflow.com lied to me... again 9 69 Corb3nik
Doctor Who ? 9 8 Sideni
Login portal 6 10 56 Mr.Un1k0d3r
SQHell 11 13 Sideni feat. mbergeron
Don't Stumble in the Process Reloaded 12 8 mbergeron
!Mysql + Brain fart 13 30 Mr.Un1k0d3r

Steganography (25)

Challenges descriptions Points Validation Author
You're lost? Use the map 1 1368 Mr.Un1k0d3r
Victor you're hidding me something 1 2031 Cedrick Chaput
SigID Level 1 1 833 Guenael
Pixel Everywhere 2 103 Mr.Un1k0d3r
I'm Goronyo Babad Nigerian prince 2 399 Mr.Un1k0d3r
The vestige of dial-up Internet 2 72 Uid0
Missing Pieces 2 644 Cedrick Chaput
Brainsick 2 712 Mr.Un1k0d3r
Hidden In Plain Sight 2 532 NSEC 2015
The Sloth 2 98 Misker
Victor reloaded 2 853 Cedrick Chaput
A ghost sound 2 692 Cedrick Chaput
Look inside the house 2 769 Mr.Un1k0d3r
Crazy Cat Lady 3 51 Madness
Love Letter 3 162 Towel
5 beautiful colors 3 34 PublicName
Can you see through the matrix! 3 127 Mr.Un1k0d3r
Your old friend Orloge Simard 3 508 Cedrick Chaput
Not just 64 4 12 Madness
Stay Classy! 4 17 Sideni
Can you see through the matrix reloaded! 4 26 Towel
Even the Odds 4 10 alxbl
Walk the line! 5 126 Cedrick Chaput
Stop the violence 5 15 jusb3
SigID Level 2 6 11 Guenael

SysAdmin Linux (8)

Challenges descriptions Points Validation Author
SysAdmin Part 1 1 2027 Cedrick Chaput
SysAdmin Part 2 1 1452 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 3 1 878 Mr.Un1k0d3r
SysAdmin Part 4 2 876 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 5 2 526 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 6 3 501 Cedrick Chaput
SysAdmin Part 7 4 406 Cedrick Chaput
SysAdmin Part 8 4 476 Cedrick Feat Mr.Un1k0d3r

The NC8 Reverse Engineering Track (6)

Challenges descriptions Points Validation Author
NC8 MAINFRAME MANAGEMENT INTERFACE Part 1 7 41 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 1 3 24 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 2 7 23 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 3 10 24 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 3 5 16 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 4 15 14 NSEC 2018 (isra17)

Web Warning (44)

Challenges descriptions Points Validation Author
Area 51 1 2227 Mr.Un1k0d3r
Hacking skill are optional 1 93 Breached Company
Big Brother is watching 1 3320 Mr.Un1k0d3r
Looking for password file 1 3338 Mr.Un1k0d3r
Words mean something? 1 2361 Mr.Un1k0d3r
Headache 1 3001 Mr.Un1k0d3r
Malicious upload 2 468 Mr.Un1k0d3r
PHP Fairy 2 642 nic-Lovin
Unreadable captcha 2 323 SynneR
Captcha I 2 458 SynneR
Password reset 2 798 Mr.Un1k0d3r
Admin Portal 2 1016 Mr.Un1k0d3r
XSS Challenge 1 2 290 Mr.Un1k0d3r
Security thru obscurity! 2 859 Mr.Un1k0d3r
XSS Challenge 2 2 303 Mr.Un1k0d3r
PHP feature or 0day? 3 342 Mr.Un1k0d3r
Serial killer! 3 402 Mr.Un1k0d3r
REST in peace 3 189 GoSec CTF 2014
XSS Challenge 3 3 148 Mr.Un1k0d3r
Looking for the flag? 3 629 Mr.Un1k0d3r
JWT pitfall 1 3 33 Mr.Un1k0d3r
XSS Challenge 4 3 167 Mr.Un1k0d3r
Password reset reloaded 3 316 Mr.Un1k0d3r
Facebook will never forget this one 3 182 Mr.Un1k0d3r
Propaganda mail 4 196 NSEC 2015
Captcha II 4 115 SynneR
Captcha III 4 32 mbergeron
Timesheet As a Service 5 22 Mr.Un1k0d3r
The archive 5 13 holyvier (NSEC 2019)
Lost API 5 16 holyvier (NSEC 2019)
Password Reset As a Service 5 44 Mr.Un1k0d3r
Read the unreadable 5 86 Mr.Un1k0d3r
Super Lottery 5 46 davidlebr1
Freedom Firewall 5 95 NSEC 2015
XSS Challenge 5 6 100 Mr.Un1k0d3r
Serial killer part 2 6 38 HoLyVieR
PHP feature or 0day reloaded? 6 66 Mr.Un1k0d3r
Orao's factory 6 95 NSEC 2015
I hate this one 6 198 Mr.Un1k0d3r
Super Lottery Reloaded 7 7 davidlebr1 Feat mbergeron
XPATH of hell! 7 117 Francois L. Feat Mr.Un1k0d3r
Ping It! 7 9 mnadeau
Looking for god in your life? 8 59 NSEC 2015
Secure Mail 8 67 GoSec CTF 2014

Flag statistics (148908 submitted so far)

Number of points Number of validation Number of points Number of validation
18 points 8 15 points 14
14 points 52 13 points 47
12 points 135 11 points 36
10 points 277 9 points 146
8 points 868 7 points 1880
6 points 4126 5 points 3946
4 points 8929 3 points 17553
2 points 48707 1 points 62184

Shoutbox Have more questions? You can join the Slack Channel https://ringzer0-slack-invite.herokuapp.com/

2020-02-18 13:08:26 - FadedForEver
i would never trade this feeling i have with anything
2020-02-18 13:08:04 - FadedForEver
Ohh. finally solved it...
2020-02-07 13:44:38 - davidlebr1
There are currently open position: https://ringzer0ctf.com/contribute. Join Slack for more information.
2020-02-04 19:38:06 - Boschko
test
2020-02-02 06:20:21 - behindy0uu
@davidlebr1 thanks my brother, solveedd
2020-02-01 13:33:33 - davidlebr1
@behindyOuu DM me in rz or DM me in Slack
2020-02-01 11:47:18 - behindy0uu
i stuck for 5 month
2020-02-01 11:47:04 - behindy0uu
please help me bro! how to solve malicious upload?
2020-01-24 23:55:10 - Towel
@butlerian -- yes, and the challenge still works
2020-01-24 21:58:50 - butlerian
Execution of binary of challenge 178 returns: This assembly has been built with an evaluation version of SmartAssembly, which has expired. Is this on purpose?
close Intercepting SSL Traffic on RingZer0team.com

If you are using Burpsuite as your proxy, you may experiment some issue regarding interception. If you got the following error unrecognized_name here is the solution. Go to the main tab on your Burp then click on options you should now see the SSL tab. In the SSL Negociation section, check "Disable Java SNI extension (requires restart)" Restart your Burp instance and you are good to go.

top