Challenges List

Admin has the power  50 points  2151 solved

Administrators only has the power to see the flag , can you be one ?


Level: Easy

This is Sparta  50 points  1484 solved

Morning has broken today they're fighting in the shade when arrows blocked the sun they fell tonight they dine in hell


Level: Easy

share the ideas  100 points  726 solved

can you reveal the admin password ?


Level: Medium

Join Team  100 points  424 solved

Flag safe in the server environment , can you reveal it.


Level: Medium

Iam Legend  50 points  654 solved

If I am a legend, then why am I so lonely?


Level: Easy

Weird Blog  200 points  114 solved

Das Kinda weird Just Do it


Level: Hard

Cool Name Effect  50 points  768 solved

Webmaster developed a simple script to do cool effects on your name, but his code not filtering the inputs correctly execute javascript alert and prove it.


Level: Easy

The Restricted Sessions  100 points  317 solved

Flag is restricted to logged users only , can you be one of them.


Level: Medium

Encrypted Database  50 points  590 solved

The company hired an inexperienced developer, but he told them he hided the database and have it encrypted so the website is totally secure, can you prove that he is wrong ??


Level: Easy

Newsletter  50 points  318 solved

the administrator put the backup file in the same root folder as the application, help us download this backup by retrieving the backup file name


Level: Easy

Wrong Token  200 points  58 solved

Request to the flag is forbidden due to wrong csrf token ... can you fix it and reveal the flag


Level: Hard

who is admin  100 points  439 solved

Your mission is to know who's the admin running this website by knowing his email.


Level: Medium

Black Inc.  100 points  31 solved

Black Inc is a file sharing website, however the file uploads was disabled by an administrator, can you change that or find a bypass?


Level: Medium

Blue Inc.  50 points  337 solved

Blue Inc is a new social media website that's still under construction, However it doesn't have registration yet, but if you are interested in seeing our website then you can login with demo/demo.


Level: Easy

bypass the world  100 points  143 solved

I Don't Care if the world is against you, but i believe that you can bypass the world


Level: Medium

admin gate first  100 points  163 solved

Flag is safe in the admin account info


Level: Medium

screenshot  200 points  0 solved

Flag is the server hostname , can you extract it ??


Level: Hard

Inbox  100 points  13 solved

The developer emailed the flag to the admin , can you get it.


Level: Medium