Switch to lite version

270 challenges are currently available


RingZer0 Team provide you couple of tools that can help you. See available tools.
Means challenge completed.
Point to write-up that worth to be reading.
Earn RingZer0Gold for each of your write-up.

You have the opportunity to submit a write up for every challenge you successfully complete. Every time your write up is approved your earn RingZer0Gold. It's possible for you to exchange this gold for hints. The main goal of this initiative is to stimulate people to submit write up and share how they solved a challenge with other people. When you finish a challenge, you have the ability to view all published write up for the challenge. This way you can learn many ways to solve a unique challenge.

Sandboxes Status

Challenges
SysAdmin Part 1 sandbox is Down Secure Mail sandbox is Up
Looking for god in your life? sandbox is Down XSS Challenge 1 sandbox is Down
Captcha I sandbox is Up Propaganda mail sandbox is Down
Basics of Linux x64 shellcoding sandbox is Up Level1 Pwnage Linux Level Up sandbox is Up
Level1 Pwnage Linux x86_64 sandbox is Down Virtual World sandbox is Down
Hot Single Mom sandbox is Up Bash Jail 1 sandbox is Down

Challenges


Coding challenges (17)

Challenges descriptions Points Validation Author
Hash me please 2 1326 Mr.Un1k0d3r
Ask your grandpa! 2 514 Mr.Un1k0d3r's Dad
Hash me reloaded 3 813 Mr.Un1k0d3r
I hate mathematics 3 898 Mr.Un1k0d3r
Ask your grandpa again! 4 161 Mr.Un1k0d3r's Dad
Hash breaker 4 689 Mr.Un1k0d3r
I saw a little elf 4 277 Mr.Un1k0d3r
Hash breaker reloaded 5 422 Mr.Un1k0d3r
Execute me if you can 5 249 Mr.Un1k0d3r
Read me if you can 6 227 Mr.Un1k0d3r
Hash breaker reloaded again 6 156 Mr.Un1k0d3r
Ascii Art 6 363 Mr.Un1k0d3r
Execute me if you can again 6 128 Mr.Un1k0d3r
Xor me if you can 6 243 Mr.Un1k0d3r
Number game 7 202 Mr.Un1k0d3r
Classic Sudoku 7 178 Mr.Un1k0d3r
Find the right word 7 176 Mr.Un1k0d3r

Cryptography (22)

Challenges descriptions Points Validation Author
Some martian message 1 2783 Mr.Un1k0d3r
File recovery 1 1445 Mr.Un1k0d3r
Martian message part 2 2 1203 Mr.Un1k0d3r
Fashion Victim 2 201 GoSec CTF 2014
Public key recovery 2 808 Mr.Un1k0d3r
Hangovers and more: Bacon 3 222 SynneR
Can you understand this sentence? 3 331 Mr.Un1k0d3r
I Lost my password 3 614 Mr.Un1k0d3r
Martian message part 3 3 510 Mr.Un1k0d3r
Encrypted Zip 4 287 Mr.Un1k0d3r
Crypto over the network 4 100 Mr.Un1k0d3r
Crypto Object 4 88 GoSec CTF 2014
Is it a secure string? 5 145 Cedrick Chaput
Free Flag Encrypter 5 8 Towel
Welcome to the asylum 6 37 GoSec CTF 2014
Pattern is the key 6 26 Mr.Un1k0d3r
TotalSecure Message Encrypter 6 44 Towel
Crypto is not good as you think 8 87 Mr.Un1k0d3r
Spies 9 16 CS Games 2016 (HoLyVieR)
Rusty RSA message signing service 9 10 b0n0n & An0n
TotalSecure Message Encrypter V2 10 10 Towel
Unicorn As A Service 11 3 Towel

Forensics (28)

Challenges descriptions Points Validation Author
Who I am part 2 1 101 Mr.Un1k0d3r
I made a dd of Agent Smith usb key 1 1672 Cedrick Chaput
I love cat 2 194 Mr.Un1k0d3r
Dr. Pouce 2 1179 Cedrick Chaput
Attention Dinosaure Survive 2 648 PRL
The good, the bad and the ugly 2 40 Mr.Un1k0d3r
1 / 3 Do not waste the environment 2 508 PRL
Hide my ass in my home! 2 816 Cedrick Chaput
Hey Chuck where is the flag? 2 801 Mr.Un1k0d3r
Meat Loaf 2 105 Ekse
Who I am? 2 439 Mr.Un1k0d3r
The words flew but writing remains 3 66 Martin Dube
2 / 3 Did you see my desktop? 3 447 PRL
Are you Twisted Insane? 3 19 Cedrick Feat Mr.Un1k0d3r
Someone steal my flag! 3 195 Mr.Un1k0d3r
802.1X Part 1 4 20 NSEC 2015
3 / 3 Suspicious account password? 4 360 PRL
Poor internet connection 4 252 Cedrick Chaput
Agent Smith reloaded 4 131 Cedrick Chaput
R.I.P MsPaint 4 23 Misker
We got breached 5 108 Mr.Un1k0d3r
Someone steal my flag again 5 47 GoSec CTF 2014
Ping pong 5 42 SynneR
Spy my girl 5 110 Cedrick Chaput
We got breached again 6 90 Mr.Un1k0d3r
Russian Crypto Roulette 6 37 SynneR
Really Depressed Protocol 7 42 SynneR
802.1X Part 2 8 13 NSEC 2015

Jail Escaping (21)

Challenges descriptions Points Validation Author
Bash Jail 1 1 829 Mr.Un1k0d3r
Bash Jail 2 2 567 Mr.Un1k0d3r
Bash Jail 3 3 341 Mr.Un1k0d3r
Bash Jail 4 4 195 Mr.Un1k0d3r
Bash Jail 5 6 80 Mr.Un1k0d3r
Bash Jail 6 8 6 Garigouster
Bash Jail 7 12 5 Garigouster
C Jail 1 1 152 Mr.Un1k0d3r
C Jail 2 2 99 Mr.Un1k0d3r
C Jail 3 3 77 Mr.Un1k0d3r
C Jail 4 5 3 Garigouster
C Jail 5 7 0 Garigouster
C Jail 6 14 0 Garigouster
PHP Jail 1 1 274 Mr.Un1k0d3r
PHP Jail 2 2 176 Mr.Un1k0d3r
PHP Jail 3 3 112 Mr.Un1k0d3r
PHP Jail 4 4 85 Mr.Un1k0d3r
PHP Jail 5 6 68 Mr.Un1k0d3r
PyJail 1 3 131 Martin Dube
PyJail 2 5 76 Martin Dube
PyJail 3 6 22 Martin Dube

JavaScript (9)

Challenges descriptions Points Validation Author
Client side validation is bad! 1 3476 Mr.Un1k0d3r
Hashing is more secure 1 3046 Mr.Un1k0d3r
Then obfuscation is more secure 1 2230 Mr.Un1k0d3r
Why not? 2 2097 Mr.Un1k0d3r
Valid key required 2 423 Francois Lajeunesse
Most Secure Crypto Algo 2 608 Mr.Un1k0d3r
Why not be more secure? 5 271 Mr.Un1k0d3r
WTF Lol! 6 93 HoLyVieR
Beauty and the beast 7 13 Mr.Un1k0d3r

Malware Analysis (16)

Challenges descriptions Points Validation Author
APT 1337 4 10 NorthSEC 2017 - Mr.Un1k0d3r
Capture 1 Part 1 1 317 Mr.Un1k0d3r
Capture 1 Part 2 1 98 Mr.Un1k0d3r
Capture 1 Part 3 1 110 Mr.Un1k0d3r
Capture 1 Part 4 2 19 Mr.Un1k0d3r
Capture 1 Part 5 3 19 Mr.Un1k0d3r
Capture 1 Part 6 3 81 Mr.Un1k0d3r
Capture 1 Part 7 3 17 Mr.Un1k0d3r
Capture 2 Part 1 1 32 Mr.Un1k0d3r
Capture 2 Part 2 1 53 Mr.Un1k0d3r
Capture 2 Part 3 1 55 Mr.Un1k0d3r
Capture 2 Part 4 3 54 Mr.Un1k0d3r
Capture 2 Part 5 4 18 Mr.Un1k0d3r
Capture 2 Part 6 7 6 Mr.Un1k0d3r
RAO democracy 4 14 NorthSEC 2017 - Mr.Un1k0d3r
WebShell of Hell 5 7 An0n

Pwnage Linux (19)

Challenges descriptions Points Validation Author
Level1 Pwnage Linux Level Up 1 444 P-Y Feat Martin Dube
Level2 Pwnage Linux Level Up 2 291 P-Y Feat Martin Dube
Remote Auth 2 96 NSEC 2015
Level3 Pwnage Linux Level Up 3 215 P-Y Feat Martin Dube
Level1 Pwnage Linux x86_64 3 131 Mr.Un1k0d3r
Level2 Pwnage Linux x86_64 4 45 Mr.Un1k0d3r
Sometime there is no buffer overflow 4 70 Mr.Un1k0d3r
Can you get the service password 4 108 Mr.Un1k0d3r
Level4 Pwnage Linux Level Up 5 104 Mr.Un1k0d3r
Friendly race 5 21 Garigouster
RPCFTW! 6 23 NSEC 2015
Jack the heaper 6 18 uaf.io
Level3 Pwnage Linux x86_64 7 41 Mr.Un1k0d3r
Level4 Pwnage Linux x86_64 7 24 Mr.Un1k0d3r
Just another useless service 8 34 NSEC 2015
Take over the Virtual World 8 26 NSEC 2015
Base64 As A Service 8 26 Guilt
Base64 As A Service Reloaded 9 21 Guilt
Delivery As A Service 10 14 NSEC 2016

Reverse Engineering (40)

Challenges descriptions Points Validation Author
Time to learn x86 ASM & gdb 2 1176 Mr.Un1k0d3r
Can you see through the star 2 744 Mr.Un1k0d3r
Crack Me 1 3 484 Mr.Un1k0d3r
Heap allocator 3 111 NSEC 2015
Intro To Sparc 3 26 Ian-Kyle Wagner
Kernel introduction 3 126 Mr.Un1k0d3r
Introduction to MIPS 3 181 Mr.Un1k0d3r
Windows x86 reversing is cool 3 438 Mr.Un1k0d3r
I never forget the Nintendo 64 3 380 Mr.Un1k0d3r
Introduction to ARM 4 192 Mr.Un1k0d3r
Old School 4 17 Towel
Altera? 4 26 NSEC 2016
ASM Lovers 4 40 NSEC 2016
Power to the people 4 22 NSEC 2015
Windows API for the win 4 195 Mr.Un1k0d3r
Wrong byte! 4 169 Mr.Un1k0d3r
Let's take a detour 4 43 Floesen
Phenix Golgoth 5 21 Hackfest 2016
Can I speak with the kernel? 5 26 Zerosum0x0
Back to our roots 5 70 Mr.Un1k0d3r
Virtual World 5 52 NSEC 2015
Smart enough? 5 62 NSEC 2015
RingZer0 Authenticator 5 144 Ekse
Pwndr3 Authenticator 5 28 Pwndr3
Flag stealer 6 40 Ekse
Update Manager 6 38 Ekse
Need a client 6 70 Mr.Un1k0d3r
I Think I forgot to take out the garbage! 6 12 Mr.Un1k0d3r
Buggy Bunny 7 5 Garigouster
The supreme bash 7 8 NorthSEC 2017 - Mr.Un1k0d3r
SOS Lib 7 13 Mr.Un1k0d3r
Armed and ready 7 7 NSEC 2015
Rebate As A Service 8 22 NSEC 2016
You're not welcome 8 28 Towel
License to kill 8 0 Mr.Un1k0d3r
Keygen time again 10 17 GoSec CTF 2014
Trolling the troll 10 22 Mr.Un1k0d3r
The unknown challenge 11 11 Mr.Un1k0d3r
You're not welcome again! 12 10 Towel
The oracle 13 11 Towel

Shellcoding (7)

Challenges descriptions Points Validation Author
Basics of Linux x64 shellcoding 2 338 Mr.Un1k0d3r
Linux x64 shellcoding level 2 4 175 Mr.Un1k0d3r
Linux x64 shellcoding level 3 6 137 Mr.Un1k0d3r
Linux x64 shellcoding level 4 8 110 Mr.Un1k0d3r
Linux x64 shellcoding level 5 10 79 Mr.Un1k0d3r
Linux x64 shellcoding level 6 12 67 Mr.Un1k0d3r
Linux x64 shellcoding level 7 14 32 Mr.Un1k0d3r

SQL Injection (26)

Challenges descriptions Points Validation Author
Most basic SQLi pattern. 1 4172 Mr.Un1k0d3r
ACL rulezzz the world. 2 2158 Mart
Login portal 1 2 1388 Mr.Un1k0d3r
Random Login Form 2 488 Mr.Un1k0d3r
Just another login form 2 738 Mr.Un1k0d3r
Po po po po postgresql 2 698 Mr.Un1k0d3r
0 Day Store 3 46 NSEC 2015
Don't mess with Noemie; she hates admin! 3 248 Mr.Un1k0d3r
What's the definition of NULL 3 271 Mr.Un1k0d3r
Login portal 2 3 206 Mr.Un1k0d3r
No more hacking for me! 4 143 Mr.Un1k0d3r
Quote of the day 4 294 Mr.Un1k0d3r
Thinking outside the box is the key 4 270 Mr.Un1k0d3r
Quote of the day reloaded 5 123 Mr.Un1k0d3r
Login portal 3 6 137 Mr.Un1k0d3r
Hot Single Mom 6 88 GoSec CTF 2014
When it's lite it's not necessarily easy 6 126 Mr.Un1k0d3r
Groups of hacker 7 83 Mr.Un1k0d3r
/etc/passwd 7 84 Mr.Un1k0d3r
Size DOES matter 7 89 Mr.Un1k0d3r
Login portal 4 7 76 Mr.Un1k0d3r
Internet As A Service 7 22 Mr.Un1k0d3r
The useless search tool 8 60 Mr.Un1k0d3r
Login portal 5 8 49 Mr.Un1k0d3r
Login portal 6 10 37 Mr.Un1k0d3r
!Mysql + Brain fart 13 20 Mr.Un1k0d3r

Steganography (21)

Challenges descriptions Points Validation Author
SigID Level 1 1 410 Guenael
You're lost? Use the map 1 672 Mr.Un1k0d3r
Victor you're hidding me something 1 1151 Cedrick Chaput
The Sloth 2 30 Misker
Hidden In Plain Sight 2 286 NSEC 2015
I'm Goronyo Babad Nigerian prince 2 160 Mr.Un1k0d3r
Missing Pieces 2 349 Cedrick Chaput
Brainsick 2 428 Mr.Un1k0d3r
Look inside the house 2 442 Mr.Un1k0d3r
The vestige of dial-up Internet 2 29 Uid0
Victor reloaded 2 520 Cedrick Chaput
A ghost sound 2 421 Cedrick Chaput
Pixel Everywhere 2 55 Mr.Un1k0d3r
Love Letter 3 79 Towel
5 beautiful colors 3 11 PublicName
Can you see through the matrix! 3 85 Mr.Un1k0d3r
Your old friend Orloge Simard 3 318 Cedrick Chaput
Stay Classy! 3 3 Sideni
Can you see through the matrix reloaded! 4 10 Towel
Walk the line! 5 80 Cedrick Chaput
SigID Level 2 6 3 Guenael

SysAdmin Linux (8)

Challenges descriptions Points Validation Author
SysAdmin Part 1 1 1162 Cedrick Chaput
SysAdmin Part 2 1 798 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 3 1 417 Mr.Un1k0d3r
SysAdmin Part 4 2 518 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 5 2 231 Cedrick Feat Mr.Un1k0d3r
SysAdmin Part 6 3 245 Cedrick Chaput
SysAdmin Part 7 4 179 Cedrick Chaput
SysAdmin Part 8 4 254 Cedrick Feat Mr.Un1k0d3r

Web Warning (36)

Challenges descriptions Points Validation Author
Big Brother is watching 1 1629 Mr.Un1k0d3r
Looking for password file 1 1984 Mr.Un1k0d3r
Area 51 1 1304 Mr.Un1k0d3r
Headache 1 1822 Mr.Un1k0d3r
Words mean something? 1 1422 Mr.Un1k0d3r
Admin Portal 2 548 Mr.Un1k0d3r
XSS Challenge 1 2 177 Mr.Un1k0d3r
Captcha I 2 342 SynneR
Unreadable captcha 2 166 SynneR
XSS Challenge 2 2 208 Mr.Un1k0d3r
Password reset 2 530 Mr.Un1k0d3r
PHP Fairy 2 184 nic-Lovin
Malicious upload 2 285 Mr.Un1k0d3r
Security thru obscurity! 2 559 Mr.Un1k0d3r
REST in peace 3 115 GoSec CTF 2014
PHP feature or 0day? 3 164 Mr.Un1k0d3r
Password reset reloaded 3 218 Mr.Un1k0d3r
Serial killer! 3 254 Mr.Un1k0d3r
Looking for the flag? 3 414 Mr.Un1k0d3r
XSS Challenge 3 3 90 Mr.Un1k0d3r
XSS Challenge 4 3 112 Mr.Un1k0d3r
Facebook will never forget this one 3 119 Mr.Un1k0d3r
Captcha II 4 85 SynneR
Propaganda mail 4 113 NSEC 2015
Freedom Firewall 5 61 NSEC 2015
Password Reset As a Service 5 28 Mr.Un1k0d3r
Timesheet As a Service 5 22 Mr.Un1k0d3r
Read the unreadable 5 45 Mr.Un1k0d3r
PHP feature or 0day reloaded? 6 33 Mr.Un1k0d3r
I hate this one 6 121 Mr.Un1k0d3r
Orao's factory 6 64 NSEC 2015
Serial killer part 2 6 21 HoLyVieR
XSS Challenge 5 6 74 Mr.Un1k0d3r
XPATH of hell! 7 84 Francois L. Feat Mr.Un1k0d3r
Looking for god in your life? 8 28 NSEC 2015
Secure Mail 8 43 GoSec CTF 2014

Flag statistics (83675 submitted so far)

Number of points Number of validation Number of points Number of validation
14 points 32 13 points 31
12 points 82 11 points 14
10 points 179 9 points 47
8 points 532 7 points 1153
6 points 2619 5 points 2375
4 points 5160 3 points 10037
2 points 27354 1 points 34060

Shoutbox

2017-09-22 20:39:10 - jusb3
Aand the beast is beaten :)
2017-09-22 20:08:53 - jusb3
Nvm, figured, my problem, seems I still have some work to do...
2017-09-22 19:53:24 - jusb3
Is js9 fully operational? I'm quite sure I have everyting to reveal the flag, but no result...
2017-09-22 08:56:42 - Ryanstekken
30
2017-09-21 10:40:28 - El_Duna
I also report that pw is wrong on LinuxPwnage-levelUp 1
2017-09-20 23:08:18 - Towel
@coconuthead The password is different on the production version of the binary. Still solvable ;)
2017-09-20 17:35:37 - coconuthead
"Remote Auth" under Pwnage Linux appears broken as well, unless I am underestimating this challenge. I ran the binary offline and can authenticate, while the same steps do not work when connecting to the remote service.
2017-09-18 21:43:00 - tr4sh0
@coconuthead I was trying the "Level1 Pwnage Linux Level Up", and seems the pass is wrong.. maybe was changed.. but thanks for your hint about 64 =)
2017-09-18 21:36:38 - coconuthead
@tr4sh0 Oops. You're right. That 64 bit version is down. I've been trying that one for weeks, but it never works.
2017-09-18 21:35:11 - coconuthead
@tr4sh0 That one is noted as being "down".
close Intercepting SSL Traffic on RingZer0team.com

If you are using Burpsuite as your proxy, you may experiment some issue regarding interception. If you got the following error unrecognized_name here is the solution. Go to the main tab on your Burp then click on options you should now see the SSL tab. In the SSL Negociation section, check "Disable Java SNI extension (requires restart)" Restart your Burp instance and you are good to go.

top