Welcome all

Root Me allows everyone to test and improve their knowledge in computer security. Our community helps us maintain a dedicated learning hack platform, publishing hacking challenges with their solution, news, tools and discussions on the latest events.

Root-Me on Twitter

30 July 2015

Now you can stay informed of all the news and all the new challenges of your platform by following @rootme_org on Twitter.
Do you like spending time on challenges and always learn more skills ? Follow us and share around!

Root-Me reachable over IPv6

4 January 2015

Root-Me made a big step forward and has now one foot in the IPv4 world and an other in the IPv6 hot and shiny one. The other good news is that you don’t have to do anything: it should just work with or without IPv6 support on your side.


Very few but some challenges remain IPv4 only though. The CTF AllTheDay architecture is ready for IPv6, but most of the CTF Virtual Machines are not and until we fix them, CTF will continue to be an IPv4 only thing (hopefully it won’t stay so for to long).

A big thanks to the team and especially to spump for the work behind this !

Public solutions and cheating

29 November 2014

Due to a lot of abuse, and in order to clarify the situation, the legal disclaimer page has been modified; we invite you to consult it regularly.

Root me already offers to share your solutions with other players directly on the website, while not "spoiled" those who have not yet solved the challenge.

These rules should allow us to keep together an emulation’s spirit while continuing to learn infosecurity in a fun way.

crypto/transposition - rail fence challenge modified

18 May 2014

The cryptanalysis challenge "Transposition — rail fence" suffered from two main problems:
- key was badly chosen and the challenge was a corner case of the algorithm
- the cleartext was the result of an encryption instead of decryption as one would normally expect: this is against the philosophy behind this plateform, especially for easy challenges

The challenge has thus been rectified, previous validations were reset. Submitted solutions have also been removed as they were not correct but working for the corner case.

Thanks for your understanding!

196 Challenges

Hundreds of challenges are available to train yourself in different and not simulated environments, offering you a way to learn a lot of hacking technics !

29 Virtual Machines

Dozens of virtual environments are available, accessible with a few clicks, to give you a realistic learning environment, without any limitation.

810 Solutions

Each challenge is associated with a multitude of solutions, related resources allowing you to learn and to see the way followed by other users.

The goal of this portal is to permit anyone to improve his hacking skills through different sort of security challenges, papers and tools.

- Propose articles, news, submit tools and challenges.
- Discuss on the forum or on our IRC channel
- Leave us a message in the shoutbox

We need help to maintain the english part of the portal !

Challenge Results Challenge Results

Pseudo Challenge Lang date
shaolin0013   HTTP verb tampering fr 30 August 2015 at 19:54
mega   Encodage - ASCII fr 30 August 2015 at 19:49
shaolin0013   Mot de passe faible fr 30 August 2015 at 19:38
madbat2   SQL injection - Error fr 30 August 2015 at 19:34
ky0uj1   We need to go deeper en 30 August 2015 at 19:31
Robin Jadoul   Python - pickle en 30 August 2015 at 19:19
fmarmol42   ELF64 - Stack buffer overflow - basic fr 30 August 2015 at 19:15
Sethpolma   ELF - Basique fr 30 August 2015 at 19:12
madbat2   Path Truncation fr 30 August 2015 at 19:12
Laurent   Active Directory - GPO fr 30 August 2015 at 19:10

Solution Solution

Author Challenge Lang date
sourcePerrier   AES128 - CTR fr 30 August 2015 at 15:36
Gromak123   Néonazi à l’intérieur fr 29 August 2015 at 13:06
@rtémis   ELF32 - System 2 en 28 August 2015 at 12:15
mthrt   Install files en 28 August 2015 at 12:08
mthrt   Improper redirect en 28 August 2015 at 12:06
surkasu   Improper redirect en 28 August 2015 at 12:05
zbetcheckin   Quick Response Code fr 28 August 2015 at 11:54
geocaching   Audio stégano fr 28 August 2015 at 07:16
domidoms   CISCO - mot de passe fr 28 August 2015 at 06:49
Tears   We need to go deeper fr 26 August 2015 at 08:47