Switch to lite version Switch to dark theme

296 challenges are currently available


RingZer0 Team provide you couple of tools that can help you. See available tools.
Means challenge completed.
Point to write-up that worth to be reading.
Earn RingZer0Gold for each of your write-up.

You have the opportunity to submit a write up for every challenge you successfully complete. Every time your write up is approved your earn RingZer0Gold. It's possible for you to exchange this gold for hints. The main goal of this initiative is to stimulate people to submit write up and share how they solved a challenge with other people. When you finish a challenge, you have the ability to view all published write up for the challenge. This way you can learn many ways to solve a unique challenge.

Sandboxes Status

Challenges
SysAdmin Part 1 sandbox is Up Secure Mail sandbox is Up
Looking for god in your life? sandbox is Up XSS Challenge 1 sandbox is Up
Captcha I sandbox is Up Propaganda mail sandbox is Up
Basics of Linux x64 shellcoding sandbox is Up Level1 Pwnage Linux Level Up sandbox is Down
Level1 Pwnage Linux x86_64 sandbox is Up Virtual World sandbox is Down
Hot Single Mom sandbox is Up Bash Jail 1 sandbox is Up

Challenges


Coding challenges (17)

Challenges descriptions Points Validation Author
Hash me please 2 1929 Mr.Un1k0d3r
Ask your grandpa! 2 744 Mr.Un1k0d3r's Dad
Hash me reloaded 3 1130 Mr.Un1k0d3r
I hate mathematics 3 1232 Mr.Un1k0d3r
Ask your grandpa again! 4 240 Mr.Un1k0d3r's Dad
Hash breaker 4 926 Mr.Un1k0d3r
I saw a little elf 4 335 Mr.Un1k0d3r
Hash breaker reloaded 5 554 Mr.Un1k0d3r
Execute me if you can 5 297 Mr.Un1k0d3r
Read me if you can 6 286 Mr.Un1k0d3r
Hash breaker reloaded again 6 187 Mr.Un1k0d3r
Ascii Art 6 441 Mr.Un1k0d3r
Execute me if you can again 6 152 Mr.Un1k0d3r
Xor me if you can 6 294 Mr.Un1k0d3r
Number game 7 204 Mr.Un1k0d3r
Classic Sudoku 7 180 Mr.Un1k0d3r
Find the right word 7 220 Mr.Un1k0d3r

Cryptography (28)

Challenges descriptions Points Validation Author
Some martian message 1 3967 Mr.Un1k0d3r
You're Drunk! 1 415 Mr.Un1k0d3r
File recovery 1 1980 Mr.Un1k0d3r
Martian message part 2 2 1784 Mr.Un1k0d3r
Fashion Victim 2 292 GoSec CTF 2014
Public key recovery 2 1007 Mr.Un1k0d3r
Hangovers and more: Bacon 3 328 SynneR
Can you understand this sentence? 3 437 Mr.Un1k0d3r
I Lost my password 3 800 Mr.Un1k0d3r
Martian message part 3 3 678 Mr.Un1k0d3r
Crypto over the network 4 105 Mr.Un1k0d3r
Crypto Leak 4 15 NSEC 2018 (Towel)
Crypto Object 4 116 GoSec CTF 2014
Encrypted Zip 4 357 Mr.Un1k0d3r
Is it a secure string? 5 181 Cedrick Chaput
Jabber 5 1 Madness
Free Flag Encrypter 5 14 Towel
Welcome to the asylum 6 45 GoSec CTF 2014
Pattern is the key 6 36 Mr.Un1k0d3r
TotalSecure Message Encrypter 6 62 Towel
Jabber Part 2 7 1 Madness
Crypto is not good as you think 8 111 Mr.Un1k0d3r
Homemade Craptography 8 2 NSEC 2018 (Holyvier)
Mars Log 8 5 NSEC 2018 (Towel)
Rusty RSA message signing service 9 10 b0n0n & An0n
Spies 9 24 CS Games 2016 (HoLyVieR)
TotalSecure Message Encrypter V2 10 15 Towel
Unicorn As A Service 11 6 Towel

Forensics (28)

Challenges descriptions Points Validation Author
Who I am part 2 1 214 Mr.Un1k0d3r
I made a dd of Agent Smith usb key 1 2163 Cedrick Chaput
I love cat 2 211 Mr.Un1k0d3r
Dr. Pouce 2 1580 Cedrick Chaput
Attention Dinosaure Survive 2 858 PRL
The good, the bad and the ugly 2 48 Mr.Un1k0d3r
1 / 3 Do not waste the environment 2 691 PRL
Hide my ass in my home! 2 1049 Cedrick Chaput
Hey Chuck where is the flag? 2 1016 Mr.Un1k0d3r
Meat Loaf 2 164 Ekse
Who I am? 2 613 Mr.Un1k0d3r
The words flew but writing remains 3 105 Martin Dube
2 / 3 Did you see my desktop? 3 588 PRL
Are you Twisted Insane? 3 19 Cedrick Feat Mr.Un1k0d3r
Someone steal my flag! 3 252 Mr.Un1k0d3r
802.1X Part 1 4 36 NSEC 2015
3 / 3 Suspicious account password? 4 473 PRL
Poor internet connection 4 305 Cedrick Chaput
Agent Smith reloaded 4 173 Cedrick Chaput
R.I.P MsPaint 4 58 Misker
We got breached 5 143 Mr.Un1k0d3r
Someone steal my flag again 5 71 GoSec CTF 2014
Ping pong 5 62 SynneR
Spy my girl 5 139 Cedrick Chaput
We got breached again 6 115 Mr.Un1k0d3r
Russian Crypto Roulette 6 51 SynneR
Really Depressed Protocol 7 55 SynneR
802.1X Part 2 8 28 NSEC 2015

Jail Escaping (21)

Challenges descriptions Points Validation Author
Bash Jail 1 1 1219 Mr.Un1k0d3r
Bash Jail 2 2 808 Mr.Un1k0d3r
Bash Jail 3 3 486 Mr.Un1k0d3r
Bash Jail 4 4 274 Mr.Un1k0d3r
Bash Jail 5 6 114 Mr.Un1k0d3r
Bash Jail 6 8 12 Garigouster
Bash Jail 7 12 9 Garigouster
C Jail 1 1 216 Mr.Un1k0d3r
C Jail 2 2 147 Mr.Un1k0d3r
C Jail 3 3 123 Mr.Un1k0d3r
C Jail 4 5 12 Garigouster
C Jail 5 7 8 Garigouster
C Jail 6 14 3 Garigouster
PHP Jail 1 1 353 Mr.Un1k0d3r
PHP Jail 2 2 234 Mr.Un1k0d3r
PHP Jail 3 3 157 Mr.Un1k0d3r
PHP Jail 4 4 121 Mr.Un1k0d3r
PHP Jail 5 6 100 Mr.Un1k0d3r
PyJail 1 3 156 Martin Dube
PyJail 2 5 91 Martin Dube
PyJail 3 6 28 Martin Dube

JavaScript (10)

Challenges descriptions Points Validation Author
Client side validation is bad! 1 4711 Mr.Un1k0d3r
Hashing is more secure 1 4125 Mr.Un1k0d3r
Then obfuscation is more secure 1 3089 Mr.Un1k0d3r
Most Secure Crypto Algo 2 906 Mr.Un1k0d3r
Valid key required 2 595 Francois Lajeunesse
Why not? 2 2725 Mr.Un1k0d3r
Why not be more secure? 5 373 Mr.Un1k0d3r
WTF Lol! 6 163 HoLyVieR
Interstellar PhoneBook 6 10 NSEC 2018 (Holyvier)
Beauty and the beast 7 26 Mr.Un1k0d3r

Malware Analysis (17)

Challenges descriptions Points Validation Author
APT 1337 4 19 NSEC 2017 (Mr.Un1k0d3r)
Capture 1 Part 1 1 426 Mr.Un1k0d3r
Capture 1 Part 2 1 136 Mr.Un1k0d3r
Capture 1 Part 3 1 152 Mr.Un1k0d3r
Capture 1 Part 4 2 19 Mr.Un1k0d3r
Capture 1 Part 5 3 28 Mr.Un1k0d3r
Capture 1 Part 6 3 105 Mr.Un1k0d3r
Capture 1 Part 7 3 20 Mr.Un1k0d3r
Capture 2 Part 1 1 42 Mr.Un1k0d3r
Capture 2 Part 2 1 70 Mr.Un1k0d3r
Capture 2 Part 3 1 71 Mr.Un1k0d3r
Capture 2 Part 4 3 68 Mr.Un1k0d3r
Capture 2 Part 5 4 25 Mr.Un1k0d3r
Capture 2 Part 6 7 9 Mr.Un1k0d3r
Just Another MBR Ransomware 8 11 Towel
RAO democracy 4 33 NSEC 2017 (Mr.Un1k0d3r)
WebShell of Hell 5 7 An0n

Pwnage Linux (19)

Challenges descriptions Points Validation Author
Level1 Pwnage Linux Level Up 1 456 P-Y Feat Martin Dube
Level2 Pwnage Linux Level Up 2 297 P-Y Feat Martin Dube
Remote Auth 2 96 NSEC 2015
Level3 Pwnage Linux Level Up 3 222 P-Y Feat Martin Dube
Level1 Pwnage Linux x86_64 3 151 Mr.Un1k0d3r
Level2 Pwnage Linux x86_64 4 50 Mr.Un1k0d3r
Sometime there is no buffer overflow 4 70 Mr.Un1k0d3r
Can you get the service password 4 110 Mr.Un1k0d3r
Level4 Pwnage Linux Level Up 5 104 Mr.Un1k0d3r
Friendly race 5 21 Garigouster
RPCFTW! 6 23 NSEC 2015
Jack the heaper 6 18 uaf.io
Level3 Pwnage Linux x86_64 7 43 Mr.Un1k0d3r
Level4 Pwnage Linux x86_64 7 27 Mr.Un1k0d3r
Just another useless service 8 34 NSEC 2015
Take over the Virtual World 8 26 NSEC 2015
Base64 As A Service 8 26 Guilt
Base64 As A Service Reloaded 9 21 Guilt
Delivery As A Service 10 14 NSEC 2016

Reverse Engineering (45)

Challenges descriptions Points Validation Author
Time to learn x86 ASM & gdb 2 1520 Mr.Un1k0d3r
Can you see through the star 2 926 Mr.Un1k0d3r
Crack Me 1 3 599 Mr.Un1k0d3r
Kernel introduction 3 172 Mr.Un1k0d3r
Heap allocator 3 171 NSEC 2015
Introduction to MIPS 3 225 Mr.Un1k0d3r
I never forget the Nintendo 64 3 470 Mr.Un1k0d3r
Windows x86 reversing is cool 3 546 Mr.Un1k0d3r
Intro To Sparc 3 83 Ian-Kyle Wagner
ASM Lovers 4 59 NSEC 2016
Wrong byte! 4 202 Mr.Un1k0d3r
Let's take a detour 4 60 Floesen
Altera? 4 36 NSEC 2016
Power to the people 4 30 NSEC 2015
Old School 4 38 Towel
Introduction to ARM 4 254 Mr.Un1k0d3r
Windows API for the win 4 258 Mr.Un1k0d3r
The MI7 password prompt 5 28 NSEC 2018 (Mr.Un1k0d3r)
WASM Part 1 5 31 NSEC 2018 (Isra17)
Virtual World 5 52 NSEC 2015
Smart enough? 5 85 NSEC 2015
Phenix Golgoth 5 32 Hackfest 2016
Can I speak with the kernel? 5 43 Zerosum0x0
Pwndr3 Authenticator 5 40 Pwndr3
Back to our roots 5 84 Mr.Un1k0d3r
RingZer0 Authenticator 5 178 Ekse
Update Manager 6 48 Ekse
Need a client 6 71 Mr.Un1k0d3r
Flag stealer 6 54 Ekse
I Think I forgot to take out the garbage! 6 16 Mr.Un1k0d3r
The supreme bash 7 13 NSEC 2017 (Mr.Un1k0d3r)
SOS Lib 7 16 Mr.Un1k0d3r
Buggy Bunny 7 7 Garigouster
Armed and ready 7 10 NSEC 2015
Rebate As A Service 8 27 NSEC 2016
You're not welcome 8 37 Towel
License to kill 8 0 Mr.Un1k0d3r
WASM Part 2 8 6 NSEC 2018 (Isra17)
Trolling the troll 10 27 Mr.Un1k0d3r
Keygen time again 10 23 GoSec CTF 2014
The unknown challenge 11 13 Mr.Un1k0d3r
You're not welcome again! 12 17 Towel
WASM Part 3 12 5 NSEC 2018 (Isra17)
The oracle 13 15 Towel
Mars Reloaded 18 5 NSEC 2018 (Towel)

Shellcoding (7)

Challenges descriptions Points Validation Author
Basics of Linux x64 shellcoding 2 393 Mr.Un1k0d3r
Linux x64 shellcoding level 2 4 206 Mr.Un1k0d3r
Linux x64 shellcoding level 3 6 157 Mr.Un1k0d3r
Linux x64 shellcoding level 4 8 124 Mr.Un1k0d3r
Linux x64 shellcoding level 5 10 88 Mr.Un1k0d3r
Linux x64 shellcoding level 6 12 74 Mr.Un1k0d3r
Linux x64 shellcoding level 7 14 37 Mr.Un1k0d3r

SQL Injection (30)

Challenges descriptions Points Validation Author
Most basic SQLi pattern. 1 5755 Mr.Un1k0d3r
ACL rulezzz the world. 2 3062 Mart
Login portal 1 2 2109 Mr.Un1k0d3r
Random Login Form 2 847 Mr.Un1k0d3r
Just another login form 2 1130 Mr.Un1k0d3r
Po po po po postgresql 2 1058 Mr.Un1k0d3r
0 Day Store 3 88 NSEC 2015
Don't mess with Noemie; she hates admin! 3 479 Mr.Un1k0d3r
What's the definition of NULL 3 435 Mr.Un1k0d3r
Login portal 2 3 328 Mr.Un1k0d3r
Quote of the day 4 425 Mr.Un1k0d3r
Thinking outside the box is the key 4 381 Mr.Un1k0d3r
No more hacking for me! 4 206 Mr.Un1k0d3r
Don't Stumble in the Process 4 26 Mbergeron
Quote of the day reloaded 5 168 Mr.Un1k0d3r
Hot Single Mom 6 116 GoSec CTF 2014
Login portal 3 6 176 Mr.Un1k0d3r
When it's lite it's not necessarily easy 6 155 Mr.Un1k0d3r
Internet As A Service 7 48 Mr.Un1k0d3r
Login portal 4 7 104 Mr.Un1k0d3r
Size DOES matter 7 108 Mr.Un1k0d3r
/etc/passwd 7 114 Mr.Un1k0d3r
Groups of hacker 7 131 Mr.Un1k0d3r
The useless search tool 8 97 Mr.Un1k0d3r
Login portal 5 8 61 Mr.Un1k0d3r
stackoverflow.com lied to me... again 9 46 Corb3nik
Login portal 6 10 48 Mr.Un1k0d3r
SQHell 11 11 Sideni feat. Mbergeron
Don't Stumble in the Process Reloaded 12 5 Mbergeron
!Mysql + Brain fart 13 26 Mr.Un1k0d3r

Steganography (23)

Challenges descriptions Points Validation Author
You're lost? Use the map 1 997 Mr.Un1k0d3r
Victor you're hidding me something 1 1568 Cedrick Chaput
SigID Level 1 1 624 Guenael
Pixel Everywhere 2 76 Mr.Un1k0d3r
Hidden In Plain Sight 2 407 NSEC 2015
The vestige of dial-up Internet 2 50 Uid0
Missing Pieces 2 508 Cedrick Chaput
Brainsick 2 567 Mr.Un1k0d3r
I'm Goronyo Babad Nigerian prince 2 276 Mr.Un1k0d3r
The Sloth 2 68 Misker
Victor reloaded 2 703 Cedrick Chaput
A ghost sound 2 579 Cedrick Chaput
Look inside the house 2 635 Mr.Un1k0d3r
Stay Classy! 3 10 Sideni
Can you see through the matrix! 3 107 Mr.Un1k0d3r
Love Letter 3 128 Towel
5 beautiful colors 3 22 PublicName
Crazy Cat Lady 3 18 Madness
Your old friend Orloge Simard 3 427 Cedrick Chaput
Can you see through the matrix reloaded! 4 18 Towel
Not just 64 4 6 Madness
Walk the line! 5 103 Cedrick Chaput
SigID Level 2 6 4 Guenael

SysAdmin Linux (8)

Challenges descriptions Points Validation Author
SysAdmin Part 1 1 1407 Cedrick Chaput
SysAdmin Part 2 1 988 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 3 1 547 Mr.Un1k0d3r
SysAdmin Part 4 2 623 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 5 2 315 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 6 3 317 Cedrick Chaput
SysAdmin Part 7 4 241 Cedrick Chaput
SysAdmin Part 8 4 326 Cedrick Feat Mr.Un1k0d3r

The NC8 Reverse Engineering Track (6)

Challenges descriptions Points Validation Author
NC8 MAINFRAME MANAGEMENT INTERFACE Part 1 7 20 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 1 3 15 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 2 7 15 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 3 10 15 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 3 5 13 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 4 15 9 NSEC 2018 (isra17)

Web Warning (37)

Challenges descriptions Points Validation Author
Big Brother is watching 1 2546 Mr.Un1k0d3r
Looking for password file 1 2595 Mr.Un1k0d3r
Area 51 1 1741 Mr.Un1k0d3r
Headache 1 2407 Mr.Un1k0d3r
Words mean something? 1 1876 Mr.Un1k0d3r
Admin Portal 2 832 Mr.Un1k0d3r
XSS Challenge 1 2 211 Mr.Un1k0d3r
Captcha I 2 401 SynneR
Unreadable captcha 2 222 SynneR
XSS Challenge 2 2 231 Mr.Un1k0d3r
Password reset 2 692 Mr.Un1k0d3r
PHP Fairy 2 408 nic-Lovin
Malicious upload 2 368 Mr.Un1k0d3r
Security thru obscurity! 2 708 Mr.Un1k0d3r
REST in peace 3 161 GoSec CTF 2014
PHP feature or 0day? 3 233 Mr.Un1k0d3r
Password reset reloaded 3 277 Mr.Un1k0d3r
Serial killer! 3 333 Mr.Un1k0d3r
XSS Challenge 3 3 112 Mr.Un1k0d3r
XSS Challenge 4 3 130 Mr.Un1k0d3r
Facebook will never forget this one 3 150 Mr.Un1k0d3r
Looking for the flag? 3 502 Mr.Un1k0d3r
Captcha III 4 16 Mbergeron
Captcha II 4 100 SynneR
Propaganda mail 4 149 NSEC 2015
Read the unreadable 5 57 Mr.Un1k0d3r
Freedom Firewall 5 85 NSEC 2015
Timesheet As a Service 5 22 Mr.Un1k0d3r
Password Reset As a Service 5 28 Mr.Un1k0d3r
PHP feature or 0day reloaded? 6 56 Mr.Un1k0d3r
I hate this one 6 161 Mr.Un1k0d3r
Orao's factory 6 88 NSEC 2015
Serial killer part 2 6 30 HoLyVieR
XSS Challenge 5 6 86 Mr.Un1k0d3r
XPATH of hell! 7 102 Francois L. Feat Mr.Un1k0d3r
Looking for god in your life? 8 50 NSEC 2015
Secure Mail 8 59 GoSec CTF 2014

Flag statistics (114300 submitted so far)

Number of points Number of validation Number of points Number of validation
18 points 5 15 points 9
14 points 40 13 points 41
12 points 110 11 points 30
10 points 230 9 points 101
8 points 716 7 points 1461
6 points 3343 5 points 3119
4 points 6878 3 points 13623
2 points 37738 1 points 46856

Shoutbox Have more questions? You can join the Slack Channel https://ringzer0-slack-invite.herokuapp.com/

2018-11-13 15:28:48 - errorinside
ok its working my mistake
2018-11-13 11:22:54 - errorinside
Can you check if Phenix Golgoth is working properly or not?
2018-11-13 08:11:12 - usr_name
30
2018-11-11 21:06:41 - fob
challenge 255 (timesheet as a service) points to 254 (php fairy)
2018-11-02 17:00:31 - 0xd13a
is SSH behind https://ringzer0ctf.com/challenges/130 and https://ringzer0ctf.com/challenges/143 hung?
2018-11-02 16:51:27 - 0xd13a
is SSH behind https://ringzer0ctf.com/challenges/130 and https://ringzer0ctf.com/challenges/143 hung?
2018-10-25 00:10:44 - nyanhacker
@tanked402 lorem ipsum just only text test in design web
2018-10-24 18:28:49 - space
ringzer0team.com -p 22222 is down
2018-10-24 03:12:17 - Towel
@terablast Thank you. It's fixed now.
2018-10-20 16:15:28 - wiz3kid
cant connect to SSH on ringzer0team.com domain. challenges.ringzer0team.com domain works fine
close Intercepting SSL Traffic on RingZer0team.com

If you are using Burpsuite as your proxy, you may experiment some issue regarding interception. If you got the following error unrecognized_name here is the solution. Go to the main tab on your Burp then click on options you should now see the SSL tab. In the SSL Negociation section, check "Disable Java SNI extension (requires restart)" Restart your Burp instance and you are good to go.

top