l4wio / Ctf Challenges By Me
Pwnable|Web Security|Cryptography CTF-style challenges
Stars: ✭ 305
Labels
Projects that are alternatives of or similar to Ctf Challenges By Me
Crypton
Library consisting of explanation and implementation of all the existing attacks on various Encryption Systems, Digital Signatures, Key Exchange, Authentication methods along with example challenges from CTFs
Stars: ✭ 995 (+226.23%)
Mutual labels: cryptography, ctf
Ciphey
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
Stars: ✭ 9,116 (+2888.85%)
Mutual labels: cryptography, ctf
Riceteacatpanda
repo with challenge material for riceteacatpanda (2020)
Stars: ✭ 18 (-94.1%)
Mutual labels: cryptography, ctf
Pentesting toolkit
🏴☠️ Tools for pentesting, CTFs & wargames. 🏴☠️
Stars: ✭ 1,268 (+315.74%)
Mutual labels: cryptography, ctf
Basecrack
Decode All Bases - Base Scheme Decoder
Stars: ✭ 196 (-35.74%)
Mutual labels: cryptography, ctf
Cryptofuzz
Fuzzing cryptographic libraries. Magic bug printer go brrrr.
Stars: ✭ 262 (-14.1%)
Mutual labels: cryptography
Kremlin
KreMLin is a tool for extracting low-level F* programs to readable C code
Stars: ✭ 285 (-6.56%)
Mutual labels: cryptography
Mcl
a portable and fast pairing-based cryptography library
Stars: ✭ 252 (-17.38%)
Mutual labels: cryptography
Oscrypto
Compiler-free Python crypto library backed by the OS, supporting CPython and PyPy
Stars: ✭ 257 (-15.74%)
Mutual labels: cryptography
Privatebin
A minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES.
Stars: ✭ 3,622 (+1087.54%)
Mutual labels: cryptography
My Talks
List of my talks and workshops: security engineering, applied cryptography, secure software development
Stars: ✭ 261 (-14.43%)
Mutual labels: cryptography
Awesome Cryptography
A curated list of cryptography resources and links.
Stars: ✭ 3,475 (+1039.34%)
Mutual labels: cryptography
Nfreezer
nFreezer is an encrypted-at-rest backup tool.
Stars: ✭ 259 (-15.08%)
Mutual labels: cryptography
Lightning Onion
Onion Routed Micropayments for the Lightning Network
Stars: ✭ 297 (-2.62%)
Mutual labels: cryptography
Frameworks
Sample code and build environments for MPC frameworks
Stars: ✭ 288 (-5.57%)
Mutual labels: cryptography
Liburkel
Authenticated key-value store (i.e. an urkel tree)
Stars: ✭ 280 (-8.2%)
Mutual labels: cryptography
CTF-challenges-by-me
These are CTF-style challenges I've made. Hope you enjoyed ✌
Highlight
Tips: Like reading book, don't read the last pages first. Let's enjoy them for a day at least before checking writeup/sol. I've put a lot of my work in each one.
I'm going to describe my highlight challenges, which I like mostly. Also point out the interesting points of them.
Web
Name | Language | Summary | Rating | Level | Describe yet ? |
---|---|---|---|---|---|
prisonbreakseason2 | Python | Python Jail | ⭐⭐⭐⭐ | 💀💀💀 | ✔️ |
XYZBANK | PHP | MySQL type casting | ⭐⭐ | 💀💀 | ✔️ |
XYZTemplate | PHP/Javascript | Javascript/XSS | ⭐⭐ | 💀💀 | |
cryptowww | PHP | Hash extension / urldecode trick, HTTP Parameter Pollution | ⭐⭐ | 💀💀 | ✔️ |
curl_story_part_1 | PHP | SSRF /w CRLF Injection (it was 0day) | ⭐⭐⭐⭐ | 💀💀 | ✔️ |
luckygame | PHP | MySQLi /w session variable + php type juggling | ⭐⭐⭐⭐ | 💀💀💀 | ✔️ |
simplehttp | Ruby | Ruby RCE /w WEBrick::Log.new
|
⭐⭐⭐⭐ | 💀💀💀 | ✔️ |
tower4 | Python | Format injection | ⭐⭐⭐⭐ | 💀💀 | ✔️ |
lixi | PHP | PHP syntax trick | ⭐⭐⭐ | 💀💀 | ✔️ |
LoginMe | NodeJS | RegExp injection, MongoDB | ⭐⭐⭐ | 💀 | ✔️ |
h4x0rs.club | PHP/JS | CSP strict-dynamic , XSS, iframe in the middle, postMessage to top
|
⭐⭐⭐⭐ | 💀💀💀 | ✔️ |
h4x0rs.space | PHP/JS | CSP, Persistent XSS, AppCache, ServiceWorker | ⭐⭐⭐⭐ | 💀💀💀 | ✔️ |
h4x0rs.date | PHP/JS | CSP, cache, <meta> Referrer override |
⭐⭐⭐ | 💀💀 | ✔️ |
Pwnable
Name | Summary | Rating | Level | Describe yet ? |
---|---|---|---|---|
anotherarena | Heap on another main_arena (threads) |
⭐⭐⭐ | 💀 | ✔️ |
c0ffee | Race condition, with 1-byte overwrite, nearly impossible to exploit | ⭐⭐⭐⭐ | 💀💀💀 | |
pokedex | Uninitialized memory -> Heap overflow | ⭐⭐⭐ | 💀💀 | ✔️ |
rapgenius | Uninitialized memory -> Use-After-Free + _IO_FILE abusing (_IO_read_* && _IO_write_* ) |
⭐⭐⭐ | 💀💀 | ✔️ |
castle | Combine many of bugs: uninitliazed memory + stack overflow + heap overflow to defeat stack cookie eventually | ⭐⭐⭐⭐ | 💀💀💀 | |
House-of-Cards | Old school pwnable, overwriting ENV
|
⭐⭐⭐⭐ | 💀💀 | ✔️ |
h4x0rs.club pt3 | Old school pwnable, Fake MySQL server, MySQL LOCAL INFILE | ⭐⭐⭐⭐⭐ | 💀💀💀 | ✔️ |
Footer
Final round SVATTT 2016 Introduction page
Twitter: @l4wio
...Dành cả tuổi thanh xuân để suy nghĩ đề CTF.
Updating...
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].