|
ELF x86 - Stack buffer overflow basic 1
|
8%
19014
|
5 |
|
Lyes
|
 |
11 |
25 March 2015 |
|
|
ELF x86 - Stack buffer overflow basic 2
|
6%
13614
|
10 |
|
Lyes
|
|
10 |
10 April 2015 |
|
|
PE32 - Stack buffer overflow basic
|
1%
1598
|
10 |
|
Ech0
|
 |
8 |
3 December 2019 |
|
|
ELF x86 - Format string bug basic 1
|
4%
8580
|
15 |
|
Lu33Y
|
|
6 |
8 February 2012 |
|
|
ELF x64 - Stack buffer overflow - basic
|
3%
6613
|
20 |
|
Arod
|
|
7 |
31 May 2015 |
|
|
ELF x86 - Format string bug basic 2
|
2%
4353
|
20 |
|
Lyes
|
|
5 |
8 April 2015 |
|
|
ELF x86 - Race condition
|
3%
5631
|
20 |
|
Lu33Y
|
|
10 |
8 February 2012 |
|
|
ELF ARM - Stack buffer overflow - basic
|
1%
1220
|
25 |
|
pickle
|
|
7 |
9 March 2017 |
|
|
ELF MIPS - Stack buffer overflow - No NX
|
1%
439
|
25 |
|
franb
|
|
2 |
28 September 2018 |
|
|
ELF x64 - Double free
|
1%
486
|
25 |
|
Esad
|
|
1 |
23 March 2021 |
|
|
ELF x86 - Stack buffer overflow basic 3
|
2%
4341
|
25 |
|
Lyes
|
|
4 |
10 April 2015 |
|
|
ELF x86 - Use After Free - basic
|
1%
1405
|
25 |
|
Esad
|
|
3 |
26 May 2019 |
|
|
ELF ARM - Stack Spraying
|
1%
227
|
30 |
|
pickle
|
 |
4 |
2 April 2017 |
|
|
ELF x64 - Stack buffer overflow - PIE
|
1%
588
|
30 |
|
HomardBoy
|
|
2 |
26 March 2021 |
|
|
ELF x86 - BSS buffer overflow
|
2%
3805
|
30 |
|
Lu33Y
|
|
7 |
8 February 2012 |
|
|
ELF x86 - Stack buffer overflow basic 4
|
1%
2619
|
30 |
|
Lu33Y
|
|
5 |
8 February 2012 |
|
|
ELF x86 - Stack buffer overflow basic 6
|
1%
2589
|
30 |
|
TiWim
|
|
5 |
10 March 2016 |
|
|
ELF x86 - Format String Bug Basic 3
|
1%
1140
|
35 |
|
Lyes
|
|
2 |
27 May 2015 |
|
|
PE32 - Advanced stack buffer overflow
|
1%
193
|
35 |
|
Ech0
|
|
4 |
3 December 2019 |
|
|
ELF ARM - Basic ROP
|
1%
660
|
40 |
|
pickle
|
|
5 |
11 March 2017 |
|
|
ELF MIPS - Basic ROP
|
1%
131
|
40 |
|
dagger
|
|
1 |
7 October 2018 |
|
|
ELF x86 - Stack buffer overflow - C++ vtables
|
1%
805
|
40 |
|
sebbb
|
|
2 |
20 July 2015 |
|
|
PE32+ Format string bug
|
1%
84
|
45 |
|
Ech0
|
|
1 |
3 December 2019 |
|
|
ELF x64 - Logic bug
|
1%
180
|
50 |
|
sbrk
|
|
3 |
8 July 2017 |
|
|
ELF x86 - Bug Hunting - Several issues
|
1%
101
|
50 |
|
sbrk
|
|
2 |
19 January 2018 |
|
|
ELF x86 - Stack buffer and integer overflow
|
1%
1797
|
50 |
|
Lu33Y
|
|
4 |
8 February 2012 |
|
|
ELF x86 - Stack buffer overflow - ret2dl_resolve
|
1%
271
|
50 |
|
kikko
|
|
3 |
28 February 2019 |
|
|
ELF x86 - Stack buffer overflow basic 5
|
1%
1670
|
50 |
|
Lu33Y
|
|
1 |
8 February 2012 |
|
|
ELF x64 - Stack buffer overflow - advanced
|
1%
1215
|
55 |
|
Arod
|
|
4 |
5 June 2015 |
|
|
ELF MIPS - Format String Glitch
|
1%
59
|
60 |
|
pickle
|
|
1 |
21 October 2018 |
|
|
ELF x64 - Heap Filling
|
1%
44
|
60 |
|
voydstack
|
|
0 |
27 May 2021 |
|
|
ELF x86 - Information leakage with Stack Smashing Protector
|
1%
816
|
60 |
|
Arod
|
|
2 |
20 May 2015 |
|
|
ELF x64 - File Structure Hacking
|
1%
51
|
65 |
|
nobodyisnobody
|
|
0 |
27 May 2021 |
|
|
ELF ARM - Race condition
|
1%
127
|
70 |
|
pickle
|
|
1 |
3 June 2017 |
|
|
ELF x64 - Browser exploit - Intro
|
1%
73
|
70 |
|
pickle
|
|
1 |
2 November 2018 |
|
|
ELF x64 - Buggy VM
|
1%
32
|
70 |
|
NonStandardModel
|
|
0 |
10 June 2022 |
|
|
ELF x64 - Heap Safe-Linking Bypass
|
1%
32
|
70 |
|
nobodyisnobody
|
|
0 |
22 October 2021 |
|
|
ELF x64 - ret2dl_init
|
1%
27
|
70 |
|
kikko
|
|
0 |
27 May 2021 |
|
|
ELF x86 - Out of bounds attack - French Paradox
|
1%
103
|
70 |
|
sbrk
|
|
3 |
17 September 2017 |
|
|
ELF x86 - Remote BSS buffer overflow
|
1%
731
|
75 |
|
Tosh
|
|
1 |
6 February 2012 |
|
|
ELF x86 - Remote Format String bug
|
1%
926
|
75 |
|
Tosh
|
|
2 |
6 February 2012 |
|
|
PE32+ Basic ROP
|
1%
50
|
75 |
|
Ech0
|
|
0 |
6 December 2019 |
|
|
ELF x64 - Remote heap buffer overflow - fastbin
|
1%
267
|
80 |
|
franb
|
|
1 |
5 February 2017 |
|
|
ELF x86 - Blind remote format string bug
|
1%
296
|
80 |
|
Lyes
|
|
2 |
8 June 2015 |
|
|
LinKern ARM - vulnerable syscall
|
1%
142
|
85 |
|
pickle
|
|
0 |
22 March 2017 |
|
|
LinKern x86 - Buffer overflow basic 1
|
1%
464
|
85 |
|
franb
|
|
3 |
16 February 2016 |
|
|
LinKern x86 - Null pointer dereference
|
1%
447
|
90 |
|
franb
|
|
1 |
16 February 2016 |
|
|
LinKern x64 - Race condition
|
1%
297
|
95 |
|
franb
|
|
3 |
16 February 2016 |
|
|
ELF ARM - Alphanumeric shellcode
|
1%
40
|
100 |
|
pickle
|
|
2 |
16 March 2017 |
|
|
ELF MIPS - URLEncoded Format String bug
|
1%
28
|
100 |
|
pickle
|
|
0 |
7 October 2018 |
|
|
ELF x86 - Hardened binary 1
|
1%
707
|
100 |
|
sm0k
|
|
3 |
11 February 2012 |
|
|
ELF x86 - Hardened binary 2
|
1%
557
|
100 |
|
sm0k
|
|
3 |
11 February 2012 |
|
|
ELF x86 - Hardened binary 3
|
1%
341
|
100 |
|
sm0k
|
|
1 |
11 February 2012 |
|
|
ELF x86 - Hardened binary 4
|
1%
391
|
100 |
|
sm0k
|
|
2 |
11 February 2012 |
|
|
LinKern MIPSel - Vulnerable ioctl
|
1%
52
|
100 |
|
pickle
|
|
0 |
23 October 2018 |
|
|
LinKern x64 - reentrant code
|
1%
165
|
100 |
|
franb
|
|
2 |
1 March 2016 |
|
|
ELF ARM - Heap format string bug
|
1%
75
|
105 |
|
franb
|
|
1 |
3 June 2017 |
|
|
ELF x64 - Sigreturn Oriented Programming
|
1%
247
|
105 |
|
Arod
|
|
4 |
25 June 2015 |
|
|
ELF ARM - Format String bug
|
1%
84
|
110 |
|
pickle
|
|
2 |
14 March 2017 |
|
|
ELF ARM - Use After Free
|
1%
89
|
110 |
|
pickle
|
|
0 |
22 March 2017 |
|
|
ELF x64 - FILE structure hijacking
|
1%
32
|
110 |
|
voydstack
|
|
3 |
27 May 2021 |
|
|
ELF x64 - Heap feng-shui
|
1%
69
|
110 |
|
laxa
|
|
2 |
4 August 2017 |
|
|
ELF x64 - Off-by-one bug
|
1%
131
|
110 |
|
NeedToLearn
|
|
2 |
19 May 2016 |
|
|
ELF x86 - Hardened binary 5
|
1%
299
|
110 |
|
sm0k
|
|
1 |
11 February 2012 |
|
|
LinKern ARM - Stack Overflow
|
1%
57
|
110 |
|
pickle
|
|
0 |
24 July 2017 |
|
|
LinKern x86 - basic ROP
|
1%
244
|
110 |
|
franb
|
|
3 |
6 May 2016 |
|
|
ELF ARM - Heap Off-by-One
|
1%
54
|
115 |
|
pickle
|
|
1 |
11 March 2017 |
|
|
ELF x64 - Remote Heap buffer overflow 1
|
1%
162
|
115 |
|
Tosh
|
|
3 |
26 June 2015 |
|
|
ELF x86 - Hardened binary 6
|
1%
281
|
115 |
|
sm0k
|
|
3 |
11 February 2012 |
|
|
ELF x86 - Hardened binary 7
|
1%
232
|
115 |
|
Tosh
|
|
3 |
21 January 2013 |
|
|
ELF x86 - Remote stack buffer overflow - Hardened
|
1%
156
|
115 |
|
franb
|
|
1 |
17 August 2016 |
|
|
LinKern x64 - RowHammer
|
1%
75
|
115 |
|
pickle
|
|
1 |
17 March 2019 |
|
|
LinKern x64 - SLUB off-by-one
|
1%
61
|
115 |
|
Tosh
|
|
2 |
9 May 2019 |
|
|
ELF ARM - Heap buffer overflow - Wilderness
|
1%
33
|
120 |
|
pickle
|
|
1 |
25 March 2017 |
|
|
ELF ARM - Heap Overflow
|
1%
41
|
120 |
|
pickle
|
|
1 |
2 April 2017 |
|
|
ELF x64 - Seccomp Whitelist
|
1%
59
|
120 |
|
pickle
|
|
0 |
3 June 2017 |
|
|
ELF x86 - Blind ROP
|
1%
129
|
120 |
|
franb
|
|
0 |
9 October 2016 |
|
|
LinKern x64 - Memory exploration
|
1%
114
|
120 |
|
franb
|
|
1 |
27 July 2016 |
|
|
WinKern x64 - Advanced stack buffer overflow - ROP
|
1%
26
|
120 |
|
__syscall
|
|
1 |
27 January 2020 |
|
|
WinKern x64 - Use After Free
|
1%
18
|
120 |
|
__syscall
|
|
0 |
27 January 2020 |
|
|
ELF x64 - Remote Heap buffer overflow 2
|
1%
122
|
130 |
|
Tosh
|
|
1 |
1 July 2015 |
|
|
ELF x64 - Advanced Heap Exploitation - Heap Leakless & Fortified
|
1%
21
|
135 |
|
nobodyisnobody
|
|
1 |
27 May 2021 |
|
|
ELF x64 - Blind ROP
|
1%
97
|
135 |
|
franb
|
|
1 |
10 March 2018 |
|
|
ELF x64 - Browser exploit - BitString
|
1%
31
|
135 |
|
pickle
|
|
0 |
15 December 2018 |
Challenge Results
84 Challenges
2 Solutions