Stylarox
- Retos : 215 Puntos 17/321
- Posición : 20762/103068
-
Posición :
newbie
App - Script
0 Points 0/15
- o Bash - System 1
- o sudo - weak configuration
- o Bash - System 2
- o Perl - Command injection
- o Bash - cron
- o Python - input()
- o Python - pickle
- o SSH Agent Hijacking
- o Python - PyJail 1
- o Bash/Awk - netstat parsing
- o Python - PyJail 2
- o Python - Jail - Exec
- o Javascript - Jail
- o Python - Jail - Garbage collector
- o Restricted shells
0%
App - Sistema
0 Points 0/64
- o ELF x86 - Stack buffer overflow basic 1
- o ELF x86 - Stack buffer overflow basic 2
- o ELF x86 - Format string bug basic 1
- o ELF x64 - Stack buffer overflow - basic
- o ELF x86 - Format string bug basic 2
- o ELF x86 - Race condition
- o ELF ARM - Stack buffer overflow - basic
- o ELF MIPS - Stack buffer overflow - No NX
- o ELF x86 - Stack buffer overflow basic 3
- o ELF ARM - Stack Spraying
- o ELF x86 - BSS buffer overflow
- o ELF x86 - Stack buffer overflow basic 4
- o ELF x86 - Stack buffer overflow basic 6
- o ELF x86 - Format String Bug Basic 3
- o ELF ARM - Basic ROP
- o ELF MIPS - Basic ROP
- o ELF x86 - Stack buffer overflow - C++ vtables
- o ELF x64 - Logic bug
- o ELF x86 - Bug Hunting - Several issues
- o ELF x86 - Stack buffer and integer overflow
- o ELF x86 - Stack buffer overflow basic 5
- o ELF x64 - Stack buffer overflow - advanced
- o ELF MIPS - Format String Glitch
- o ELF x86 - Information leakage with Stack Smashing Protector
- o ELF ARM - Race condition
- o ELF x64 - Browser exploit - Intro
- o ELF x86 - Out of bounds attack - French Paradox
- o ELF x86 - Remote BSS buffer overflow
- o ELF x86 - Remote Format String bug
- o ELF x64 - Remote heap buffer overflow - fastbin
- o ELF x86 - Blind remote format string bug
- o LinKern ARM - vulnerable syscall
- o LinKern x86 - Buffer overflow basic 1
- o LinKern x86 - Null pointer dereference
- o LinKern x64 - Race condition
- o ELF ARM - Alphanumeric shellcode
- o ELF MIPS - URLEncoded Format String bug
- o ELF x86 - Hardened binary 1
- o ELF x86 - Hardened binary 2
- o ELF x86 - Hardened binary 3
- o ELF x86 - Hardened binary 4
- o LinKern MIPSel - Vulnerable ioctl
- o LinKern x64 - reentrant code
- o ELF ARM - Heap format string bug
- o ELF x64 - Sigreturn Oriented Programming
- o LinKern x86 - basic ROP
- o ELF ARM - Format String bug
- o ELF ARM - Use After Free
- o ELF x64 - Heap feng-shui
- o ELF x64 - Off-by-one bug
- o ELF x86 - Hardened binary 5
- o LinKern ARM - Stack Overflow
- o ELF ARM - Heap Off-by-One
- o ELF x64 - Remote Heap buffer overflow 1
- o ELF x86 - Hardened binary 6
- o ELF x86 - Hardened binary 7
- o ELF x86 - Remote stack buffer overflow - Hardened
- o ELF ARM - Heap buffer overflow - Wilderness
- o ELF ARM - Heap Overflow
- o ELF x64 - Seccomp Whitelist
- o ELF x86 - Blind ROP
- o Linkern x64 - Memory exploration
- o ELF x64 - Remote Heap buffer overflow 2
- o ELF x64 - Blind ROP
0%
Cracking
0 Points 0/32
- o ELF - 0 protection
- o ELF - x86 Basic
- o PE - 0 protection
- o ELF C++ - 0 protection
- o ELF x64 - Golang basic
- o PE DotNet - 0 protection
- o ELF - Fake Instructions
- o ELF - Ptrace
- o ELF MIPS - Basic Crackme
- o ELF ARM - Basic Crackme
- o PYC - ByteCode
- o ELF - No software breakpoints
- o MachO x64 - keygenme or not
- o ELF - CrackPass
- o ELF - ExploitMe
- o ELF - Random Crackme
- o ELF ARM - crackme 1337
- o GB - Basic GameBoy crackme
- o PDF - Javascript
- o Crackme automating
- o ELF ARM - Crypted
- o PE - SEHVEH
- o APK - Anti-debug
- o ELF - Anti-debug
- o ELF x64 - Nanomites - Introduction
- o PE - AutoPE
- o ELF - KeygenMe
- o ELF x64 - Anti-debug and equations
- o ELF - Packed
- o ELF x64 - Nanomites
- o PE - RunPE
- o ELF - VM
0%
Criptoanálisis
15 Points 3/43
- x Encoding - ASCII
- x Encoding - UU
- x Hash - Message Digest 5
- o Hash - SHA-2
- o Shift cipher
- o Pixel Madness
- o ELF64 - PID encryption
- o File - PKZIP
- o Monoalphabetic substitution - Caesar
- o Known plaintext - XOR
- o Code - Pseudo Random Number Generator
- o File - Insecure storage 1
- o Polyalphabetic substitution - Vigenère
- o System - Android lock pattern
- o Transposition - Rail Fence
- o AES - CBC - Bit-Flipping Attack
- o AES - ECB
- o LFSR - Known plaintext
- o RSA - Factorisation
- o RSA - Decipher Oracle
- o Service - Timing attack
- o Monoalphabetic substitution - Polybe
- o Initialisation Vector
- o GEDEFU
- o RSA - Corrupted key V1
- o RSA - Continued fractions
- o RSA - Common modulus
- o Service - Hash length extension attack
- o AES - 4 Rounds
- o RSA - Padding
- o AES128 - CTR
- o Discrete logarithm problem
- o RSA - Corrupted key V2
- o RSA - Multiple recipients
- o AES - Fault attack #1
- o Enigma Machine
- o ECDHE
- o Service - CBC Padding
- o Polyalphabetic substitution - One Time Pad
- o White-Box Cryptography
- o AES - Weaker variant
- o Hash - SHA-3
- o AES - Fault attack #2
7%
Forense
0 Points 0/22
- o Command & Control - level 2
- o Logs analysis - web attack
- o Command & Control - level 5
- o Find the cat
- o Ugly Duckling
- o Active Directory - GPO
- o Command & Control - level 3
- o DNS exfiltration
- o Command & Control - level 4
- o Job interview
- o Homemade keylogger
- o Malicious Word macro
- o Ransomware Android
- o Insomni’Droid
- o Multi-devices
- o Root My Droid
- o Command & Control - level 6
- o Find me
- o Second job interview
- o Find me again
- o Zeus Bot
- o Try again
0%
Realista
0 Points 0/27
- o It happens, sometimes
- o P0wn3d
- o The h@ckers l4b
- o Neonazi inside
- o PyRat Auction
- o Root them
- o IPBX - call me maybe
- o Marabout
- o Root-We
- o Starbug Bounty
- o Ultra Upload
- o Imagick
- o MALab
- o Web TV
- o SamBox v2
- o SamCMS
- o SamBox v1
- o SAP Pentest 007
- o Crypto Secure
- o Bozobe Hospital
- o Red Pills
- o SamBox v3
- o ARM FTP Box
- o SAP Pentest 000
- o Bluebox 2 - Pentest
- o Bluebox - Pentest
- o Highway to shell
0%
Redes
0 Points 0/17
- o FTP - authentication
- o TELNET - authentication
- o ETHERNET - frame
- o Twitter authentication
- o CISCO - password
- o DNS - zone transfert
- o IP - Time To Live
- o LDAP - null bind
- o SIP - authentication
- o ETHERNET - Patched transmission
- o Global System Traffic for Mobile communication
- o SSL - HTTP exchange
- o Netfilter - common mistakes
- o SNMP - Authentification
- o Wired Equivalent Privacy
- o ICMP payload
- o XMPP - authentication
0%
Esteganografía
0 Points 0/17
- o Gunnm
- o Squared
- o Dot and next line
- o Steganomobile
- o Twitter Secret Messages
- o Some noise
- o George and Alfred
- o Audio stegano
- o Base Jumper
- o PDF Object
- o We need to go deeper
- o Angecryption
- o Kitty spy
- o LSB - Uncle Scrooge
- o Pixel Indicator Technique
- o Pixel Value Differencing
- o Crypt-art
0%
Web - Cliente
155 Points 10/19
- x HTML - disabled buttons
- x Javascript - Authentication
- x Javascript - Source
- x Javascript - Authentication 2
- x Javascript - Obfuscation 1
- x Javascript - Obfuscation 2
- x Javascript - Native code
- x Javascript - Obfuscation 3
- x XSS - Stored 1
- x CSRF - 0 protection
- o Flash - Authentication
- o CSRF - token bypass
- o XSS - Reflected
- o Javascript - Obfuscation 4
- o XSS - Stored 2
- o HTTP Response Splitting
- o Javascript - Obfuscation 5
- o XSS - Stored - filter bypass
- o XSS - DOM Based
53%
Web - Servidor
45 Points 4/57
- x HTML
- o HTTP - Open redirect
- o Command injection
- x Weak password
- o User-agent
- o Backup file
- o HTTP - POST
- x HTTP directory indexing
- o HTTP Headers
- o HTTP verb tampering
- o Install files
- x Improper redirect
- o CRLF
- o File upload - double extensions
- o File upload - MIME type
- o HTTP cookies
- o Directory traversal
- o File upload - null byte
- o PHP assert()
- o PHP filters
- o PHP register globals
- o File upload - ZIP
- o Command injection - Filter bypass
- o Local File Inclusion
- o Local File Inclusion - Double encoding
- o PHP - Loose Comparison
- o PHP preg_replace()
- o PHP type juggling
- o Remote File Inclusion
- o Server-side Template Injection
- o SQL injection - authentication
- o SQL injection - authentication - GBK
- o SQL injection - string
- o XSLT - Code execution
- o LDAP injection - authentication
- o NoSQL injection - authentication
- o Path Truncation
- o PHP Serialization
- o SQL injection - numeric
- o SQL Injection - Routed
- o SQL Truncation
- o XML External Entity
- o XPath injection - authentication
- o Java - Spring Boot
- o Local File Inclusion - Wrappers
- o PHP - Eval
- o SQL injection - Error
- o SQL injection - Insert
- o SQL injection - file reading
- o XPath injection - string
- o NoSQL injection - blind
- o SQL injection - Time based
- o Server Side Request Forgery
- o SQL injection - blind
- o LDAP injection - blind
- o XPath injection - blind
- o SQL injection - filter bypass
7%