Welcome all

Root Me allows everyone to test and improve their knowledge in computer security. Our community helps us maintain a dedicated learning hack platform, publishing hacking challenges with their solution, news, tools and discussions on the latest events.

Root-Me reachable over IPv6

4 January 2015

Root-Me made a big step forward and has now one foot in the IPv4 world and an other in the IPv6 hot and shiny one. The other good news is that you don’t have to do anything: it should just work with or without IPv6 support on your side.


Very few but some challenges remain IPv4 only though. The CTF AllTheDay architecture is ready for IPv6, but most of the CTF Virtual Machines are not and until we fix them, CTF will continue to be an IPv4 only thing (hopefully it won’t stay so for to long).

A big thanks to the team and especially to spump for the work behind this !

Public solutions and cheating

29 November 2014

Due to a lot of abuse, and in order to clarify the situation, the legal disclaimer page has been modified; we invite you to consult it regularly.

Root me already offers to share your solutions with other players directly on the website, while not "spoiled" those who have not yet solved the challenge.

These rules should allow us to keep together an emulation’s spirit while continuing to learn infosecurity in a fun way.

crypto/transposition - rail fence challenge modified

18 May 2014

The cryptanalysis challenge "Transposition — rail fence" suffered from two main problems:
- key was badly chosen and the challenge was a corner case of the algorithm
- the cleartext was the result of an encryption instead of decryption as one would normally expect: this is against the philosophy behind this plateform, especially for easy challenges

The challenge has thus been rectified, previous validations were reset. Submitted solutions have also been removed as they were not correct but working for the corner case.

Thanks for your understanding!

New sponsor : navixia

26 January 2014

Root Me is proud to announce a new sponsor : Navixia, a Swiss company specialized in information security.

This sponsorship offers us new possibilities to give you a more powerful platform and new services to train yourself in an increasingly realistic environment.

191 Challenges

Hundreds of challenges are available to train yourself in different and not simulated environments, offering you a way to learn a lot of hacking technics !

24 Virtual Machines

Dozens of virtual environments are available, accessible with a few clicks, to give you a realistic learning environment, without any limitation.

751 Solutions

Each challenge is associated with a multitude of solutions, related resources allowing you to learn and to see the way followed by other users.

The goal of this portal is to permit anyone to improve his hacking skills through different sort of security challenges, papers and tools.

- Propose articles, news, submit tools and challenges.
- Discuss on the forum or on our IRC channel
- Leave us a message in the shoutbox

We need help to maintain the english part of the portal !

Challenge Results Challenge Results

Pseudo Challenge Lang date
topolinetto   Hash - Message Digest 5 fr 29 July 2015 at 18:09
Freehuxald   Javascript - Native code fr 29 July 2015 at 18:07
zouzou   User-agent fr 29 July 2015 at 18:06
topolinetto   Encodage - UU fr 29 July 2015 at 18:06
Freehuxald   Javascript - Obfuscation 2 fr 29 July 2015 at 18:04
topolinetto   Encodage - ASCII fr 29 July 2015 at 18:04
linncappu   Javascript - Authentication en 29 July 2015 at 18:03
franb   ELF32 - Stack buffer overflow basic 2 fr 29 July 2015 at 18:02
Freehuxald   Javascript - Obfuscation 1 fr 29 July 2015 at 17:59
zouzou   Install files fr 29 July 2015 at 17:55

Solution Solution

Author Challenge Lang date
BaBaChE   George et Alfred fr 29 July 2015 at 15:15
Jedi   Redirection invalide fr 21 July 2015 at 13:32
miaouPlop   Crypto Secure fr 13 July 2015 at 20:41
retr0   NoSQL injection - authentification fr 9 July 2015 at 21:30
TheLizardKing   ELF64 - Remote Heap buffer overflow - PIE fr 9 July 2015 at 21:30
Swissky   Flash - Authentification fr 7 July 2015 at 15:11
0xf4b   XMPP - Authentification fr 6 July 2015 at 08:48
fl0at_0xff   SQL injection - Error fr 6 July 2015 at 08:42
netsky   Active Directory - GPO fr 6 July 2015 at 08:40
Ppeur   Analyse de logs - attaque web fr 6 July 2015 at 08:35