Challenges

322 challenges are currently available

RingZer0 Team provide you couple of tools that can help you. See available tools.

Means challenge completed.

Point to write-up that worth to be reading.

Earn RingZer0Gold for each of your write-up.

You have the opportunity to submit a write up for every challenge you successfully complete. Every time your write up is approved your earn RingZer0Gold. It's possible for you to exchange this gold for hints. The main goal of this initiative is to stimulate people to submit write up and share how they solved a challenge with other people. When you finish a challenge, you have the ability to view all published write up for the challenge. This way you can learn many ways to solve a unique challenge.

Sandboxes Status

Challenges
SysAdmin Part 1 sandbox is Up	Secure Mail sandbox is Up
Looking for god in your life? sandbox is Up	XSS Challenge 1 sandbox is Up
Captcha I sandbox is Up	Propaganda mail sandbox is Up
Basics of Linux x64 shellcoding sandbox is Up	Level1 Pwnage Linux Level Up sandbox is Up
Level1 Pwnage Linux x86_64 sandbox is Up	Virtual World sandbox is Down
Hot Single Mom sandbox is Up	Bash Jail 1 sandbox is Up

Coding Challenges (17)

Challenges descriptions	Points	Validation	Author
Hash me please	2	2548	Mr.Un1k0d3r
Ask your grandpa!	2	950	Mr.Un1k0d3r's Dad
Hash me reloaded	3	1425	Mr.Un1k0d3r
I hate mathematics	3	1522	Mr.Un1k0d3r
Ask your grandpa again!	4	309	Mr.Un1k0d3r's Dad
Hash breaker	4	1161	Mr.Un1k0d3r
I saw a little elf	4	416	Mr.Un1k0d3r
Hash breaker reloaded	5	677	Mr.Un1k0d3r
Execute me if you can	5	350	Mr.Un1k0d3r
Read me if you can	6	364	Mr.Un1k0d3r
Hash breaker reloaded again	6	232	Mr.Un1k0d3r
Ascii Art	6	546	Mr.Un1k0d3r
Execute me if you can again	6	175	Mr.Un1k0d3r
Xor me if you can	6	347	Mr.Un1k0d3r
Number game	7	261	Mr.Un1k0d3r remade by theindian
Classic Sudoku	7	223	Mr.Un1k0d3r remade by dread_knight
Find the right word	7	278	Mr.Un1k0d3r

Cryptography (32)

Challenges descriptions	Points	Validation	Author
Some martian message	1	5326	Mr.Un1k0d3r
You're Drunk!	1	1158	Mr.Un1k0d3r
File recovery	1	2542	Mr.Un1k0d3r
Public key recovery	2	1252	Mr.Un1k0d3r
Fashion Victim	2	404	GoSec CTF 2014
Martian message part 2	2	2300	Mr.Un1k0d3r
Can you understand this sentence?	3	572	Mr.Un1k0d3r
Let's Play Scrabble!	3	26	Madness
I Lost my password	3	965	Mr.Un1k0d3r
Martian message part 3	3	865	Mr.Un1k0d3r
Hangovers and more: Bacon	3	440	SynneR
Crypto Leak	4	39	NSEC 2018 (Towel)
Crypto Object	4	160	GoSec CTF 2014
Crypto over the network	4	105	Mr.Un1k0d3r
Encrypted Zip	4	470	Mr.Un1k0d3r
Let's Play Scrabble! Part 2	5	12	Madness
Jabber	5	6	Madness
Is it a secure string?	5	220	Cedrick Chaput
Free Flag Encrypter	5	14	Towel
Pattern is the key	6	38	Mr.Un1k0d3r
TotalSecure Message Encrypter	6	81	Towel
Welcome to the asylum	6	52	GoSec CTF 2014
Homemade craptography #2	7	5	holyvier(ft. large software company)
Jabber Part 2	7	5	Madness
Crypto is not good as you think	8	149	Mr.Un1k0d3r
Mars Log	8	6	NSEC 2018 (Towel)
Homemade Craptography	8	6	NSEC 2018 (Holyvier)
Spies	9	28	CS Games 2016 (HoLyVieR)
Rusty RSA message signing service	9	10	b0n0n & An0n
TotalSecure Message Encrypter V2	10	17	Towel
Polly Wants a Cracker	10	2	Madness
Unicorn As A Service	11	7	Towel

Exotic Data Storage (4)

Challenges descriptions	Points	Validation	Author
Just another login form	2	1362	Mr.Un1k0d3r
DON'T login as admin	2	22	mbergeron
I forgot my password	3	22	mbergeron
Inspiration	6	27	NSEC 2019 (becojo)

Forensics (28)

Challenges descriptions	Points	Validation	Author
Who I am part 2	1	392	Mr.Un1k0d3r
I made a dd of Agent Smith usb key	1	2671	Cedrick Chaput
I love cat	2	424	Mr.Un1k0d3r
Dr. Pouce	2	1997	Cedrick Chaput
Attention Dinosaure Survive	2	1086	PRL
The good, the bad and the ugly	2	66	Mr.Un1k0d3r
1 / 3 Do not waste the environment	2	842	PRL
Hide my ass in my home!	2	1282	Cedrick Chaput
Hey Chuck where is the flag?	2	1262	Mr.Un1k0d3r
Meat Loaf	2	204	Ekse
Who I am?	2	794	Mr.Un1k0d3r
The words flew but writing remains	3	133	Martin Dube
2 / 3 Did you see my desktop?	3	712	PRL
Are you Twisted Insane?	3	24	Cedrick Feat Mr.Un1k0d3r
Someone steal my flag!	3	326	Mr.Un1k0d3r
802.1X Part 1	4	52	NSEC 2015
3 / 3 Suspicious account password?	4	581	PRL
Poor internet connection	4	350	Cedrick Chaput
Agent Smith reloaded	4	222	Cedrick Chaput
R.I.P MsPaint	4	87	Misker
We got breached	5	176	Mr.Un1k0d3r
Someone steal my flag again	5	102	GoSec CTF 2014
Ping pong	5	77	SynneR
Spy my girl	5	169	Cedrick Chaput
We got breached again	6	133	Mr.Un1k0d3r
Russian Crypto Roulette	6	62	SynneR
Really Depressed Protocol	7	68	SynneR
802.1X Part 2	8	38	NSEC 2015

Jail Escaping (21)

Challenges descriptions	Points	Validation	Author
Bash Jail 1	1	1852	Mr.Un1k0d3r
Bash Jail 2	2	1190	Mr.Un1k0d3r
Bash Jail 3	3	672	Mr.Un1k0d3r
Bash Jail 4	4	366	Mr.Un1k0d3r
Bash Jail 5	6	156	Mr.Un1k0d3r
Bash Jail 6	8	19	Garigouster
Bash Jail 7	12	14	Garigouster
C Jail 1	1	298	Mr.Un1k0d3r
C Jail 2	2	199	Mr.Un1k0d3r
C Jail 3	3	166	Mr.Un1k0d3r
C Jail 4	5	15	Garigouster
C Jail 5	7	10	Garigouster
C Jail 6	14	5	Garigouster
PHP Jail 1	1	475	Mr.Un1k0d3r
PHP Jail 2	2	312	Mr.Un1k0d3r
PHP Jail 3	3	211	Mr.Un1k0d3r
PHP Jail 4	4	157	Mr.Un1k0d3r
PHP Jail 5	6	128	Mr.Un1k0d3r
PyJail 1	3	193	Martin Dube
PyJail 2	5	109	Martin Dube
PyJail 3	6	36	Martin Dube

JavaScript (10)

Challenges descriptions	Points	Validation	Author
Client side validation is bad!	1	6043	Mr.Un1k0d3r
Hashing is more secure	1	5259	Mr.Un1k0d3r
Then obfuscation is more secure	1	3984	Mr.Un1k0d3r
Most Secure Crypto Algo	2	1371	Mr.Un1k0d3r
Valid key required	2	792	Francois Lajeunesse
Why not?	2	3170	Mr.Un1k0d3r
Why not be more secure?	5	485	Mr.Un1k0d3r
WTF Lol!	6	228	HoLyVieR
Interstellar PhoneBook	6	29	NSEC 2018 (Holyvier)
Beauty and the beast	7	32	Mr.Un1k0d3r

Malware Analysis (17)

Challenges descriptions	Points	Validation	Author
APT 1337	4	32	NSEC 2017 (Mr.Un1k0d3r)
Capture 1 Part 1	1	537	Mr.Un1k0d3r
Capture 1 Part 2	1	180	Mr.Un1k0d3r
Capture 1 Part 3	1	202	Mr.Un1k0d3r
Capture 1 Part 4	2	19	Mr.Un1k0d3r
Capture 1 Part 5	3	48	Mr.Un1k0d3r
Capture 1 Part 6	3	131	Mr.Un1k0d3r
Capture 1 Part 7	3	25	Mr.Un1k0d3r
Capture 2 Part 1	1	50	Mr.Un1k0d3r
Capture 2 Part 2	1	88	Mr.Un1k0d3r
Capture 2 Part 3	1	89	Mr.Un1k0d3r
Capture 2 Part 4	3	88	Mr.Un1k0d3r
Capture 2 Part 5	4	33	Mr.Un1k0d3r
Capture 2 Part 6	7	14	Mr.Un1k0d3r
Just Another MBR Ransomware	8	15	Towel
RAO democracy	4	44	NSEC 2017 (Mr.Un1k0d3r)
WebShell of Hell	5	7	An0n

Pwnage Linux (19)

Challenges descriptions	Points	Validation	Author
Level1 Pwnage Linux Level Up	1	563	P-Y Feat Martin Dube
Level2 Pwnage Linux Level Up	2	353	P-Y Feat Martin Dube
Remote Auth	2	96	NSEC 2015
Level3 Pwnage Linux Level Up	3	253	P-Y Feat Martin Dube
Level1 Pwnage Linux x86_64	3	176	Mr.Un1k0d3r
Level2 Pwnage Linux x86_64	4	60	Mr.Un1k0d3r
Sometime there is no buffer overflow	4	70	Mr.Un1k0d3r
Can you get the service password	4	110	Mr.Un1k0d3r
Level4 Pwnage Linux Level Up	5	119	Mr.Un1k0d3r
Friendly race	5	21	Garigouster
RPCFTW!	6	26	NSEC 2015
Jack the heaper	6	18	uaf.io
Level3 Pwnage Linux x86_64	7	56	Mr.Un1k0d3r
Level4 Pwnage Linux x86_64	7	33	Mr.Un1k0d3r
Just another useless service	8	34	NSEC 2015
Take over the Virtual World	8	26	NSEC 2015
Base64 As A Service	8	26	Guilt
Base64 As A Service Reloaded	9	21	Guilt
Delivery As A Service	10	14	NSEC 2016

Reverse Engineering (52)

Challenges descriptions	Points	Validation	Author
Time to learn x86 ASM & gdb	2	1845	Mr.Un1k0d3r
Can you see through the star	2	1093	Mr.Un1k0d3r
See No Evil - Part 1	2	53	alxbl
Crack Me 1	3	708	Mr.Un1k0d3r
Heap allocator	3	235	NSEC 2015
Intro To Sparc	3	142	Ian-Kyle Wagner
Kernel introduction	3	221	Mr.Un1k0d3r
See No Evil - Part 2	3	41	alxbl
See No Evil - Part 3	3	40	alxbl
Introduction to MIPS	3	289	Mr.Un1k0d3r
Windows x86 reversing is cool	3	639	Mr.Un1k0d3r
I never forget the Nintendo 64	3	571	Mr.Un1k0d3r
Power to the people	4	49	NSEC 2015
Altera?	4	50	NSEC 2016
ASM Lovers	4	78	NSEC 2016
See No Evil - Part 5	4	28	alxbl
Old School	4	55	Towel
I love tea!	4	8	nic-lovin
See No Evil - Part 4	4	31	alxbl
Let's take a detour	4	74	Floesen
Windows API for the win	4	299	Mr.Un1k0d3r
Wrong byte!	4	249	Mr.Un1k0d3r
Introduction to ARM	4	322	Mr.Un1k0d3r
Virtual World	5	53	NSEC 2015
Phenix Golgoth	5	40	Hackfest 2016
WASM Part 1	5	49	NSEC 2018 (Isra17)
RingZer0 Authenticator	5	216	Ekse
Back to our roots	5	96	Mr.Un1k0d3r
Can I speak with the kernel?	5	56	Zerosum0x0
The MI7 password prompt	5	46	NSEC 2018 (Mr.Un1k0d3r)
Smart enough?	5	97	NSEC 2015
Pwndr3 Authenticator	5	48	Pwndr3
I Think I forgot to take out the garbage!	6	18	Mr.Un1k0d3r
Need a client	6	71	Mr.Un1k0d3r
Flag stealer	6	64	Ekse
Update Manager	6	50	Ekse
The supreme bash	7	19	NSEC 2017 (Mr.Un1k0d3r)
SOS Lib	7	22	Mr.Un1k0d3r
Buggy Bunny	7	10	Garigouster
Armed and ready	7	11	NSEC 2015
Rebate As A Service	8	36	NSEC 2016
You're not welcome	8	47	Towel
WASM Part 2	8	8	NSEC 2018 (Isra17)
License to kill	8	1	Mr.Un1k0d3r
The Matrix	9	10	Towel
Trolling the troll	10	30	Mr.Un1k0d3r
Keygen time again	10	30	GoSec CTF 2014
The unknown challenge	11	16	Mr.Un1k0d3r
WASM Part 3	12	6	NSEC 2018 (Isra17)
You're not welcome again!	12	20	Towel
The oracle	13	17	Towel
Mars Reloaded	18	8	NSEC 2018 (Towel)

Shellcoding (7)

Challenges descriptions	Points	Validation	Author
Basics of Linux x64 shellcoding	2	473	Mr.Un1k0d3r
Linux x64 shellcoding level 2	4	241	Mr.Un1k0d3r
Linux x64 shellcoding level 3	6	186	Mr.Un1k0d3r
Linux x64 shellcoding level 4	8	149	Mr.Un1k0d3r
Linux x64 shellcoding level 5	10	104	Mr.Un1k0d3r
Linux x64 shellcoding level 6	12	87	Mr.Un1k0d3r
Linux x64 shellcoding level 7	14	47	Mr.Un1k0d3r

SQL Injection (32)

Challenges descriptions	Points	Validation	Author
Most basic SQLi pattern.	1	7546	Mr.Un1k0d3r
Random Login Form	2	1369	Mr.Un1k0d3r
Po po po po postgresql	2	1512	Mr.Un1k0d3r
Login portal 1	2	2789	Mr.Un1k0d3r
ACL rulezzz the world.	2	3843	Mart
Login portal 2	3	484	Mr.Un1k0d3r
Don't mess with Noemie; she hates admin!	3	668	Mr.Un1k0d3r
0 Day Store	3	112	NSEC 2015
What's the definition of NULL	3	593	Mr.Un1k0d3r
Don't Stumble in the Process	4	41	mbergeron
Brain Teaser 1	4	19	Sideni
Quote of the day	4	541	Mr.Un1k0d3r
No more hacking for me!	4	263	Mr.Un1k0d3r
Thinking outside the box is the key	4	467	Mr.Un1k0d3r
Quote of the day reloaded	5	207	Mr.Un1k0d3r
When it's lite it's not necessarily easy	6	189	Mr.Un1k0d3r
Login portal 3	6	216	Mr.Un1k0d3r
Hot Single Mom	6	146	GoSec CTF 2014
Internet As A Service	7	84	Mr.Un1k0d3r
Size DOES matter	7	127	Mr.Un1k0d3r
Brain Teaser 2	7	12	Sideni
/etc/passwd	7	132	Mr.Un1k0d3r
Groups of hacker	7	148	Mr.Un1k0d3r
Login portal 4	7	133	Mr.Un1k0d3r
Login portal 5	8	68	Mr.Un1k0d3r
The useless search tool	8	114	Mr.Un1k0d3r
stackoverflow.com lied to me... again	9	69	Corb3nik
Doctor Who ?	9	8	Sideni
Login portal 6	10	56	Mr.Un1k0d3r
SQHell	11	13	Sideni feat. mbergeron
Don't Stumble in the Process Reloaded	12	8	mbergeron
!Mysql + Brain fart	13	30	Mr.Un1k0d3r

Steganography (25)

Challenges descriptions	Points	Validation	Author
You're lost? Use the map	1	1368	Mr.Un1k0d3r
Victor you're hidding me something	1	2031	Cedrick Chaput
SigID Level 1	1	833	Guenael
Pixel Everywhere	2	103	Mr.Un1k0d3r
I'm Goronyo Babad Nigerian prince	2	399	Mr.Un1k0d3r
The vestige of dial-up Internet	2	72	Uid0
Missing Pieces	2	644	Cedrick Chaput
Brainsick	2	712	Mr.Un1k0d3r
Hidden In Plain Sight	2	532	NSEC 2015
The Sloth	2	98	Misker
Victor reloaded	2	853	Cedrick Chaput
A ghost sound	2	692	Cedrick Chaput
Look inside the house	2	769	Mr.Un1k0d3r
Crazy Cat Lady	3	51	Madness
Love Letter	3	162	Towel
5 beautiful colors	3	34	PublicName
Can you see through the matrix!	3	127	Mr.Un1k0d3r
Your old friend Orloge Simard	3	508	Cedrick Chaput
Not just 64	4	12	Madness
Stay Classy!	4	17	Sideni
Can you see through the matrix reloaded!	4	26	Towel
Even the Odds	4	10	alxbl
Walk the line!	5	126	Cedrick Chaput
Stop the violence	5	15	jusb3
SigID Level 2	6	11	Guenael

SysAdmin Linux (8)

Challenges descriptions	Points	Validation	Author
SysAdmin Part 1	1	2027	Cedrick Chaput
SysAdmin Part 2	1	1452	Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 3	1	878	Mr.Un1k0d3r
SysAdmin Part 4	2	876	Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 5	2	526	Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 6	3	501	Cedrick Chaput
SysAdmin Part 7	4	406	Cedrick Chaput
SysAdmin Part 8	4	476	Cedrick Feat Mr.Un1k0d3r

The NC8 Reverse Engineering Track (6)

Challenges descriptions	Points	Validation	Author
NC8 MAINFRAME MANAGEMENT INTERFACE Part 1	7	41	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 1	3	24	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 2	7	23	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 3	10	24	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 3	5	16	NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 4	15	14	NSEC 2018 (isra17)

Web Warning (44)

Challenges descriptions	Points	Validation	Author
Area 51	1	2227	Mr.Un1k0d3r
Hacking skill are optional	1	93	Breached Company
Big Brother is watching	1	3320	Mr.Un1k0d3r
Looking for password file	1	3338	Mr.Un1k0d3r
Words mean something?	1	2361	Mr.Un1k0d3r
Headache	1	3001	Mr.Un1k0d3r
Malicious upload	2	468	Mr.Un1k0d3r
PHP Fairy	2	642	nic-Lovin
Unreadable captcha	2	323	SynneR
Captcha I	2	458	SynneR
Password reset	2	798	Mr.Un1k0d3r
Admin Portal	2	1016	Mr.Un1k0d3r
XSS Challenge 1	2	290	Mr.Un1k0d3r
Security thru obscurity!	2	859	Mr.Un1k0d3r
XSS Challenge 2	2	303	Mr.Un1k0d3r
PHP feature or 0day?	3	342	Mr.Un1k0d3r
Serial killer!	3	402	Mr.Un1k0d3r
REST in peace	3	189	GoSec CTF 2014
XSS Challenge 3	3	148	Mr.Un1k0d3r
Looking for the flag?	3	629	Mr.Un1k0d3r
JWT pitfall 1	3	33	Mr.Un1k0d3r
XSS Challenge 4	3	167	Mr.Un1k0d3r
Password reset reloaded	3	316	Mr.Un1k0d3r
Facebook will never forget this one	3	182	Mr.Un1k0d3r
Propaganda mail	4	196	NSEC 2015
Captcha II	4	115	SynneR
Captcha III	4	32	mbergeron
Timesheet As a Service	5	22	Mr.Un1k0d3r
The archive	5	13	holyvier (NSEC 2019)
Lost API	5	16	holyvier (NSEC 2019)
Password Reset As a Service	5	44	Mr.Un1k0d3r
Read the unreadable	5	86	Mr.Un1k0d3r
Super Lottery	5	46	davidlebr1
Freedom Firewall	5	95	NSEC 2015
XSS Challenge 5	6	100	Mr.Un1k0d3r
Serial killer part 2	6	38	HoLyVieR
PHP feature or 0day reloaded?	6	66	Mr.Un1k0d3r
Orao's factory	6	95	NSEC 2015
I hate this one	6	198	Mr.Un1k0d3r
Super Lottery Reloaded	7	7	davidlebr1 Feat mbergeron
XPATH of hell!	7	117	Francois L. Feat Mr.Un1k0d3r
Ping It!	7	9	mnadeau
Looking for god in your life?	8	59	NSEC 2015
Secure Mail	8	67	GoSec CTF 2014

Flag statistics (148908 submitted so far)

Number of points	Number of validation	Number of points	Number of validation
18 points	8	15 points	14
14 points	52	13 points	47
12 points	135	11 points	36
10 points	277	9 points	146
8 points	868	7 points	1880
6 points	4126	5 points	3946
4 points	8929	3 points	17553
2 points	48707	1 points	62184

Shoutbox Have more questions? You can join the Slack Channel https://ringzer0-slack-invite.herokuapp.com/

2020-02-18 13:08:26 - FadedForEver i would never trade this feeling i have with anything
2020-02-18 13:08:04 - FadedForEver Ohh. finally solved it...
2020-02-07 13:44:38 - davidlebr1 There are currently open position: https://ringzer0ctf.com/contribute. Join Slack for more information.
2020-02-04 19:38:06 - Boschko test
2020-02-02 06:20:21 - behindy0uu @davidlebr1 thanks my brother, solveedd
2020-02-01 13:33:33 - davidlebr1 @behindyOuu DM me in rz or DM me in Slack
2020-02-01 11:47:18 - behindy0uu i stuck for 5 month
2020-02-01 11:47:04 - behindy0uu please help me bro! how to solve malicious upload?
2020-01-24 23:55:10 - Towel @butlerian -- yes, and the challenge still works
2020-01-24 21:58:50 - butlerian Execution of binary of challenge 178 returns: This assembly has been built with an evaluation version of SmartAssembly, which has expired. Is this on purpose?

close Intercepting SSL Traffic on RingZer0team.com

If you are using Burpsuite as your proxy, you may experiment some issue regarding interception. If you got the following error unrecognized_name here is the solution. Go to the main tab on your Burp then click on options you should now see the SSL tab. In the SSL Negociation section, check "Disable Java SNI extension (requires restart)" Restart your Burp instance and you are good to go.