Switch to lite version Switch to dark theme

320 challenges are currently available


RingZer0 Team provide you couple of tools that can help you. See available tools.
Means challenge completed.
Point to write-up that worth to be reading.
Earn RingZer0Gold for each of your write-up.

You have the opportunity to submit a write up for every challenge you successfully complete. Every time your write up is approved your earn RingZer0Gold. It's possible for you to exchange this gold for hints. The main goal of this initiative is to stimulate people to submit write up and share how they solved a challenge with other people. When you finish a challenge, you have the ability to view all published write up for the challenge. This way you can learn many ways to solve a unique challenge.

Sandboxes Status

Challenges
SysAdmin Part 1 sandbox is Up Secure Mail sandbox is Up
Looking for god in your life? sandbox is Up XSS Challenge 1 sandbox is Up
Captcha I sandbox is Up Propaganda mail sandbox is Up
Basics of Linux x64 shellcoding sandbox is Up Level1 Pwnage Linux Level Up sandbox is Up
Level1 Pwnage Linux x86_64 sandbox is Up Virtual World sandbox is Down
Hot Single Mom sandbox is Up Bash Jail 1 sandbox is Up

Challenges


Coding Challenges (17)

Challenges descriptions Points Validation Author
Hash me please 2 2423 Mr.Un1k0d3r
Ask your grandpa! 2 911 Mr.Un1k0d3r's Dad
Hash me reloaded 3 1360 Mr.Un1k0d3r
I hate mathematics 3 1465 Mr.Un1k0d3r
Ask your grandpa again! 4 296 Mr.Un1k0d3r's Dad
Hash breaker 4 1111 Mr.Un1k0d3r
I saw a little elf 4 397 Mr.Un1k0d3r
Hash breaker reloaded 5 652 Mr.Un1k0d3r
Execute me if you can 5 338 Mr.Un1k0d3r
Read me if you can 6 346 Mr.Un1k0d3r
Hash breaker reloaded again 6 218 Mr.Un1k0d3r
Ascii Art 6 525 Mr.Un1k0d3r
Execute me if you can again 6 167 Mr.Un1k0d3r
Xor me if you can 6 331 Mr.Un1k0d3r
Number game 7 245 Mr.Un1k0d3r remade by theindian
Classic Sudoku 7 209 Mr.Un1k0d3r remade by dread_knight
Find the right word 7 261 Mr.Un1k0d3r

Cryptography (32)

Challenges descriptions Points Validation Author
Some martian message 1 5097 Mr.Un1k0d3r
You're Drunk! 1 1035 Mr.Un1k0d3r
File recovery 1 2419 Mr.Un1k0d3r
Public key recovery 2 1187 Mr.Un1k0d3r
Fashion Victim 2 389 GoSec CTF 2014
Martian message part 2 2 2219 Mr.Un1k0d3r
Can you understand this sentence? 3 540 Mr.Un1k0d3r
Let's Play Scrabble! 3 21 Madness
I Lost my password 3 933 Mr.Un1k0d3r
Martian message part 3 3 834 Mr.Un1k0d3r
Hangovers and more: Bacon 3 427 SynneR
Crypto Leak 4 37 NSEC 2018 (Towel)
Crypto Object 4 155 GoSec CTF 2014
Crypto over the network 4 105 Mr.Un1k0d3r
Encrypted Zip 4 453 Mr.Un1k0d3r
Let's Play Scrabble! Part 2 5 9 Madness
Jabber 5 4 Madness
Is it a secure string? 5 214 Cedrick Chaput
Free Flag Encrypter 5 14 Towel
Pattern is the key 6 38 Mr.Un1k0d3r
TotalSecure Message Encrypter 6 76 Towel
Welcome to the asylum 6 49 GoSec CTF 2014
Homemade craptography #2 7 4 holyvier(ft. large software company)
Jabber Part 2 7 4 Madness
Crypto is not good as you think 8 148 Mr.Un1k0d3r
Mars Log 8 6 NSEC 2018 (Towel)
Homemade Craptography 8 6 NSEC 2018 (Holyvier)
Spies 9 28 CS Games 2016 (HoLyVieR)
Rusty RSA message signing service 9 10 b0n0n & An0n
TotalSecure Message Encrypter V2 10 17 Towel
Polly Wants a Cracker 10 2 Madness
Unicorn As A Service 11 7 Towel

Exotic Data Storage (4)

Challenges descriptions Points Validation Author
Just another login form 2 1336 Mr.Un1k0d3r
DON'T login as admin 2 19 mbergeron
I forgot my password 3 19 mbergeron
Inspiration 6 23 NSEC 2019 (becojo)

Forensics (28)

Challenges descriptions Points Validation Author
Who I am part 2 1 360 Mr.Un1k0d3r
I made a dd of Agent Smith usb key 1 2572 Cedrick Chaput
I love cat 2 340 Mr.Un1k0d3r
Dr. Pouce 2 1914 Cedrick Chaput
Attention Dinosaure Survive 2 1042 PRL
The good, the bad and the ugly 2 63 Mr.Un1k0d3r
1 / 3 Do not waste the environment 2 808 PRL
Hide my ass in my home! 2 1239 Cedrick Chaput
Hey Chuck where is the flag? 2 1216 Mr.Un1k0d3r
Meat Loaf 2 198 Ekse
Who I am? 2 758 Mr.Un1k0d3r
The words flew but writing remains 3 131 Martin Dube
2 / 3 Did you see my desktop? 3 691 PRL
Are you Twisted Insane? 3 24 Cedrick Feat Mr.Un1k0d3r
Someone steal my flag! 3 307 Mr.Un1k0d3r
802.1X Part 1 4 49 NSEC 2015
3 / 3 Suspicious account password? 4 567 PRL
Poor internet connection 4 344 Cedrick Chaput
Agent Smith reloaded 4 215 Cedrick Chaput
R.I.P MsPaint 4 81 Misker
We got breached 5 172 Mr.Un1k0d3r
Someone steal my flag again 5 96 GoSec CTF 2014
Ping pong 5 74 SynneR
Spy my girl 5 160 Cedrick Chaput
We got breached again 6 129 Mr.Un1k0d3r
Russian Crypto Roulette 6 61 SynneR
Really Depressed Protocol 7 67 SynneR
802.1X Part 2 8 37 NSEC 2015

Jail Escaping (21)

Challenges descriptions Points Validation Author
Bash Jail 1 1 1746 Mr.Un1k0d3r
Bash Jail 2 2 1124 Mr.Un1k0d3r
Bash Jail 3 3 637 Mr.Un1k0d3r
Bash Jail 4 4 346 Mr.Un1k0d3r
Bash Jail 5 6 144 Mr.Un1k0d3r
Bash Jail 6 8 17 Garigouster
Bash Jail 7 12 13 Garigouster
C Jail 1 1 282 Mr.Un1k0d3r
C Jail 2 2 188 Mr.Un1k0d3r
C Jail 3 3 155 Mr.Un1k0d3r
C Jail 4 5 15 Garigouster
C Jail 5 7 10 Garigouster
C Jail 6 14 5 Garigouster
PHP Jail 1 1 453 Mr.Un1k0d3r
PHP Jail 2 2 296 Mr.Un1k0d3r
PHP Jail 3 3 199 Mr.Un1k0d3r
PHP Jail 4 4 149 Mr.Un1k0d3r
PHP Jail 5 6 120 Mr.Un1k0d3r
PyJail 1 3 180 Martin Dube
PyJail 2 5 99 Martin Dube
PyJail 3 6 34 Martin Dube

JavaScript (10)

Challenges descriptions Points Validation Author
Client side validation is bad! 1 5823 Mr.Un1k0d3r
Hashing is more secure 1 5073 Mr.Un1k0d3r
Then obfuscation is more secure 1 3820 Mr.Un1k0d3r
Most Secure Crypto Algo 2 1299 Mr.Un1k0d3r
Valid key required 2 759 Francois Lajeunesse
Why not? 2 3111 Mr.Un1k0d3r
Why not be more secure? 5 468 Mr.Un1k0d3r
WTF Lol! 6 216 HoLyVieR
Interstellar PhoneBook 6 29 NSEC 2018 (Holyvier)
Beauty and the beast 7 32 Mr.Un1k0d3r

Malware Analysis (17)

Challenges descriptions Points Validation Author
APT 1337 4 30 NSEC 2017 (Mr.Un1k0d3r)
Capture 1 Part 1 1 509 Mr.Un1k0d3r
Capture 1 Part 2 1 172 Mr.Un1k0d3r
Capture 1 Part 3 1 196 Mr.Un1k0d3r
Capture 1 Part 4 2 19 Mr.Un1k0d3r
Capture 1 Part 5 3 45 Mr.Un1k0d3r
Capture 1 Part 6 3 129 Mr.Un1k0d3r
Capture 1 Part 7 3 23 Mr.Un1k0d3r
Capture 2 Part 1 1 50 Mr.Un1k0d3r
Capture 2 Part 2 1 88 Mr.Un1k0d3r
Capture 2 Part 3 1 89 Mr.Un1k0d3r
Capture 2 Part 4 3 88 Mr.Un1k0d3r
Capture 2 Part 5 4 33 Mr.Un1k0d3r
Capture 2 Part 6 7 14 Mr.Un1k0d3r
Just Another MBR Ransomware 8 15 Towel
RAO democracy 4 44 NSEC 2017 (Mr.Un1k0d3r)
WebShell of Hell 5 7 An0n

Pwnage Linux (19)

Challenges descriptions Points Validation Author
Level1 Pwnage Linux Level Up 1 533 P-Y Feat Martin Dube
Level2 Pwnage Linux Level Up 2 341 P-Y Feat Martin Dube
Remote Auth 2 96 NSEC 2015
Level3 Pwnage Linux Level Up 3 249 P-Y Feat Martin Dube
Level1 Pwnage Linux x86_64 3 176 Mr.Un1k0d3r
Level2 Pwnage Linux x86_64 4 60 Mr.Un1k0d3r
Sometime there is no buffer overflow 4 70 Mr.Un1k0d3r
Can you get the service password 4 110 Mr.Un1k0d3r
Level4 Pwnage Linux Level Up 5 119 Mr.Un1k0d3r
Friendly race 5 21 Garigouster
RPCFTW! 6 26 NSEC 2015
Jack the heaper 6 18 uaf.io
Level3 Pwnage Linux x86_64 7 55 Mr.Un1k0d3r
Level4 Pwnage Linux x86_64 7 33 Mr.Un1k0d3r
Just another useless service 8 34 NSEC 2015
Take over the Virtual World 8 26 NSEC 2015
Base64 As A Service 8 26 Guilt
Base64 As A Service Reloaded 9 21 Guilt
Delivery As A Service 10 14 NSEC 2016

Reverse Engineering (52)

Challenges descriptions Points Validation Author
Time to learn x86 ASM & gdb 2 1775 Mr.Un1k0d3r
Can you see through the star 2 1065 Mr.Un1k0d3r
See No Evil - Part 1 2 39 alxbl
Crack Me 1 3 689 Mr.Un1k0d3r
Heap allocator 3 219 NSEC 2015
Intro To Sparc 3 131 Ian-Kyle Wagner
Kernel introduction 3 214 Mr.Un1k0d3r
See No Evil - Part 2 3 32 alxbl
See No Evil - Part 3 3 31 alxbl
Introduction to MIPS 3 277 Mr.Un1k0d3r
Windows x86 reversing is cool 3 618 Mr.Un1k0d3r
I never forget the Nintendo 64 3 557 Mr.Un1k0d3r
Power to the people 4 45 NSEC 2015
Altera? 4 48 NSEC 2016
ASM Lovers 4 76 NSEC 2016
See No Evil - Part 5 4 20 alxbl
Old School 4 50 Towel
I love tea! 4 3 nic-lovin
See No Evil - Part 4 4 23 alxbl
Let's take a detour 4 71 Floesen
Windows API for the win 4 288 Mr.Un1k0d3r
Wrong byte! 4 243 Mr.Un1k0d3r
Introduction to ARM 4 314 Mr.Un1k0d3r
Virtual World 5 53 NSEC 2015
Phenix Golgoth 5 40 Hackfest 2016
WASM Part 1 5 48 NSEC 2018 (Isra17)
RingZer0 Authenticator 5 210 Ekse
Back to our roots 5 95 Mr.Un1k0d3r
Can I speak with the kernel? 5 55 Zerosum0x0
The MI7 password prompt 5 45 NSEC 2018 (Mr.Un1k0d3r)
Smart enough? 5 96 NSEC 2015
Pwndr3 Authenticator 5 48 Pwndr3
I Think I forgot to take out the garbage! 6 18 Mr.Un1k0d3r
Need a client 6 71 Mr.Un1k0d3r
Flag stealer 6 64 Ekse
Update Manager 6 50 Ekse
The supreme bash 7 19 NSEC 2017 (Mr.Un1k0d3r)
SOS Lib 7 22 Mr.Un1k0d3r
Buggy Bunny 7 10 Garigouster
Armed and ready 7 11 NSEC 2015
Rebate As A Service 8 36 NSEC 2016
You're not welcome 8 47 Towel
WASM Part 2 8 8 NSEC 2018 (Isra17)
License to kill 8 0 Mr.Un1k0d3r
The Matrix 9 10 Towel
Trolling the troll 10 30 Mr.Un1k0d3r
Keygen time again 10 29 GoSec CTF 2014
The unknown challenge 11 15 Mr.Un1k0d3r
WASM Part 3 12 6 NSEC 2018 (Isra17)
You're not welcome again! 12 19 Towel
The oracle 13 17 Towel
Mars Reloaded 18 8 NSEC 2018 (Towel)

Shellcoding (7)

Challenges descriptions Points Validation Author
Basics of Linux x64 shellcoding 2 462 Mr.Un1k0d3r
Linux x64 shellcoding level 2 4 235 Mr.Un1k0d3r
Linux x64 shellcoding level 3 6 181 Mr.Un1k0d3r
Linux x64 shellcoding level 4 8 142 Mr.Un1k0d3r
Linux x64 shellcoding level 5 10 99 Mr.Un1k0d3r
Linux x64 shellcoding level 6 12 83 Mr.Un1k0d3r
Linux x64 shellcoding level 7 14 44 Mr.Un1k0d3r

SQL Injection (32)

Challenges descriptions Points Validation Author
Most basic SQLi pattern. 1 7287 Mr.Un1k0d3r
Random Login Form 2 1268 Mr.Un1k0d3r
Po po po po postgresql 2 1404 Mr.Un1k0d3r
Login portal 1 2 2692 Mr.Un1k0d3r
ACL rulezzz the world. 2 3761 Mart
Login portal 2 3 444 Mr.Un1k0d3r
Don't mess with Noemie; she hates admin! 3 633 Mr.Un1k0d3r
0 Day Store 3 106 NSEC 2015
What's the definition of NULL 3 564 Mr.Un1k0d3r
Don't Stumble in the Process 4 38 mbergeron
Brain Teaser 1 4 16 Sideni
Quote of the day 4 519 Mr.Un1k0d3r
No more hacking for me! 4 253 Mr.Un1k0d3r
Thinking outside the box is the key 4 447 Mr.Un1k0d3r
Quote of the day reloaded 5 202 Mr.Un1k0d3r
When it's lite it's not necessarily easy 6 183 Mr.Un1k0d3r
Login portal 3 6 209 Mr.Un1k0d3r
Hot Single Mom 6 140 GoSec CTF 2014
Internet As A Service 7 79 Mr.Un1k0d3r
Size DOES matter 7 124 Mr.Un1k0d3r
Brain Teaser 2 7 9 Sideni
/etc/passwd 7 126 Mr.Un1k0d3r
Groups of hacker 7 144 Mr.Un1k0d3r
Login portal 4 7 128 Mr.Un1k0d3r
Login portal 5 8 67 Mr.Un1k0d3r
The useless search tool 8 110 Mr.Un1k0d3r
stackoverflow.com lied to me... again 9 65 Corb3nik
Doctor Who ? 9 6 Sideni
Login portal 6 10 56 Mr.Un1k0d3r
SQHell 11 12 Sideni feat. mbergeron
Don't Stumble in the Process Reloaded 12 7 mbergeron
!Mysql + Brain fart 13 29 Mr.Un1k0d3r

Steganography (25)

Challenges descriptions Points Validation Author
You're lost? Use the map 1 1316 Mr.Un1k0d3r
Victor you're hidding me something 1 1966 Cedrick Chaput
SigID Level 1 1 796 Guenael
Pixel Everywhere 2 97 Mr.Un1k0d3r
I'm Goronyo Babad Nigerian prince 2 372 Mr.Un1k0d3r
The vestige of dial-up Internet 2 72 Uid0
Missing Pieces 2 620 Cedrick Chaput
Brainsick 2 687 Mr.Un1k0d3r
Hidden In Plain Sight 2 504 NSEC 2015
The Sloth 2 89 Misker
Victor reloaded 2 822 Cedrick Chaput
A ghost sound 2 678 Cedrick Chaput
Look inside the house 2 746 Mr.Un1k0d3r
Crazy Cat Lady 3 49 Madness
Love Letter 3 153 Towel
5 beautiful colors 3 33 PublicName
Can you see through the matrix! 3 126 Mr.Un1k0d3r
Your old friend Orloge Simard 3 488 Cedrick Chaput
Not just 64 4 11 Madness
Stay Classy! 4 17 Sideni
Can you see through the matrix reloaded! 4 26 Towel
Even the Odds 4 9 alxbl
Walk the line! 5 124 Cedrick Chaput
Stop the violence 5 15 jusb3
SigID Level 2 6 11 Guenael

SysAdmin Linux (8)

Challenges descriptions Points Validation Author
SysAdmin Part 1 1 1922 Cedrick Chaput
SysAdmin Part 2 1 1364 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 3 1 813 Mr.Un1k0d3r
SysAdmin Part 4 2 825 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 5 2 483 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 6 3 465 Cedrick Chaput
SysAdmin Part 7 4 373 Cedrick Chaput
SysAdmin Part 8 4 444 Cedrick Feat Mr.Un1k0d3r

The NC8 Reverse Engineering Track (6)

Challenges descriptions Points Validation Author
NC8 MAINFRAME MANAGEMENT INTERFACE Part 1 7 36 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 1 3 23 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 2 7 22 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 2 Flag 3 10 21 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 3 5 16 NSEC 2018 (isra17)
NC8 MAINFRAME MANAGEMENT INTERFACE Part 4 15 14 NSEC 2018 (isra17)

Web Warning (42)

Challenges descriptions Points Validation Author
Area 51 1 2118 Mr.Un1k0d3r
Words mean something? 1 2280 Mr.Un1k0d3r
Headache 1 2900 Mr.Un1k0d3r
Hacking skill are optional 1 88 Breached Company
Big Brother is watching 1 3215 Mr.Un1k0d3r
Looking for password file 1 3218 Mr.Un1k0d3r
XSS Challenge 1 2 264 Mr.Un1k0d3r
Admin Portal 2 982 Mr.Un1k0d3r
Password reset 2 781 Mr.Un1k0d3r
XSS Challenge 2 2 284 Mr.Un1k0d3r
PHP Fairy 2 601 nic-Lovin
Unreadable captcha 2 311 SynneR
Malicious upload 2 438 Mr.Un1k0d3r
Security thru obscurity! 2 833 Mr.Un1k0d3r
Captcha I 2 448 SynneR
PHP feature or 0day? 3 324 Mr.Un1k0d3r
JWT pitfall 1 3 21 Mr.Un1k0d3r
REST in peace 3 187 GoSec CTF 2014
Serial killer! 3 392 Mr.Un1k0d3r
Password reset reloaded 3 304 Mr.Un1k0d3r
Looking for the flag? 3 609 Mr.Un1k0d3r
Facebook will never forget this one 3 170 Mr.Un1k0d3r
XSS Challenge 4 3 161 Mr.Un1k0d3r
XSS Challenge 3 3 143 Mr.Un1k0d3r
Propaganda mail 4 189 NSEC 2015
Captcha II 4 112 SynneR
Captcha III 4 31 mbergeron
Lost API 5 10 holyvier (NSEC 2019)
Password Reset As a Service 5 37 Mr.Un1k0d3r
Super Lottery 5 38 Sparkix
Read the unreadable 5 75 Mr.Un1k0d3r
Freedom Firewall 5 93 NSEC 2015
The archive 5 9 holyvier (NSEC 2019)
Timesheet As a Service 5 22 Mr.Un1k0d3r
I hate this one 6 189 Mr.Un1k0d3r
Serial killer part 2 6 37 HoLyVieR
PHP feature or 0day reloaded? 6 65 Mr.Un1k0d3r
XSS Challenge 5 6 97 Mr.Un1k0d3r
Orao's factory 6 93 NSEC 2015
XPATH of hell! 7 109 Francois L. Feat Mr.Un1k0d3r
Secure Mail 8 63 GoSec CTF 2014
Looking for god in your life? 8 57 NSEC 2015

Flag statistics (142703 submitted so far)

Number of points Number of validation Number of points Number of validation
18 points 8 15 points 14
14 points 49 13 points 46
12 points 128 11 points 34
10 points 268 9 points 140
8 points 845 7 points 1773
6 points 3958 5 points 3793
4 points 8553 3 points 16796
2 points 46698 1 points 59600

Shoutbox Have more questions? You can join the Slack Channel https://ringzer0-slack-invite.herokuapp.com/

2019-11-08 14:29:32 - madness
For capture 1 part 5, I found two passwords (one is obtained from the other), but the challenge page is not accepting. Anyone?
2019-11-03 22:20:28 - madness
Is "I need a client" included in the statement "Virtual world sandbox is down"? Thanks
2019-11-02 23:32:15 - madness
I have finished "intro to Sparc". Now I'd like to run it in an emulator. Has anyone done that and is willing to talk about it?
2019-11-01 09:57:56 - zirconia57
Jail Escaping / C Jail *: none of them work since a week. Code can't compile: -- mkdir: cannot create directory ‘/tmp/d28...da3’: No space left on device
2019-10-31 06:05:03 - phuctran25
@Towel I'm sorry for that because while I am sending this message RingZer0 is down so it sends a lot of message instead
2019-10-29 18:09:48 - Towel
@phuctran25 - The challenge works as intended. I know what you're talking about, but the challenge is working just fine. Do not spam the shoutbox.
2019-10-29 04:00:14 - phuctran25
https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge
2019-10-29 04:00:13 - phuctran25
https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge
2019-10-29 04:00:12 - phuctran25
https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge
2019-10-29 04:00:12 - phuctran25
https://ringzer0ctf.com/challenges/248 I think this challenge has an error. It tried to access a link, and when I decode that link and access it in a browser. The server said the link was removed. I think the content is essential for solving that challenge
close Intercepting SSL Traffic on RingZer0team.com

If you are using Burpsuite as your proxy, you may experiment some issue regarding interception. If you got the following error unrecognized_name here is the solution. Go to the main tab on your Burp then click on options you should now see the SSL tab. In the SSL Negociation section, check "Disable Java SNI extension (requires restart)" Restart your Burp instance and you are good to go.

top