Wargaming write-ups and scripts. Root-Me() Youtube: https://www.youtube.com/c/glicOne

• Romaniuk Vadim - Initial work - GlicOne

Website: https://www.root-me.org

These challenges will help you to understand scripting vulnerabilities related to weak environment or configuration and development mistakes in some languages. You will have credentials for each challenge. The goal is to leverage your privileges by exploiting some environment vulnerabilities (incorrect permissions on files, weak encryption, ...) and some development mistakes. This will allow you to get a password in order to validate your skills on the platform.

Prerequisite : 
- Knowledges in UNIX shell environment and programming languages like Python and Perl. 
- Knowledges in binary files manipulation tools. 
- Knowledges in C language.

• Bash - System 1 - Done Task on root-me
• sudo - weak configuration - Done Task on root-me
• Bash - System 2 - Done Task on root-me
• Perl - Command injection - Not Done Task on root-me
• Bash - cron - Done Task on root-me
• Python - input() - Done Task on root-me
• Python - pickle - Not Done Task on root-me
• Python - PyJail 1 - Not Done Task on root-me
• Bash/Awk - netstat parsing - Not Done Task on root-me
• Python - PyJail 2 - Not Done Task on root-me
• Python - Jail - Exec - Not Done Task on root-me
• Javascript - Jail - Not Done Task on root-me
• Python - Jail - Garbage collector - Not Done Task on root-me
• Restricted shells - Not Done Task on root-me

These challenges will help you understand applicative vulnerabilities. Login credentials are provided for different challenge, the goal is to obtain additional rights by exploiting program’s weaknesses and get a password to validate challs on the portal.

Prerequisite: 
- GDB. 
- Knowledges in ASM. 
- Knowledges in C language.

• ELF x86 - Stack buffer overflow basic 1 - Not Done Task on root-me
• ELF x86 - Stack buffer overflow basic 2 - Not Done Task on root-me
• ELF x86 - Format string bug basic 1 - Not Done Task on root-me
• ELF x64 - Stack buffer overflow - basic - Not Done Task on root-me
• ELF x86 - Format string bug basic 2 - Not Done Task on root-me
• ELF x86 - Race condition - Not Done Task on root-me
• ELF ARM - Stack buffer overflow - basic - Not Done Task on root-me
• ELF x86 - Stack buffer overflow basic 3 - Not Done Task on root-me
• ELF ARM - Stack Spraying - Not Done Task on root-me
• ELF x86 - BSS buffer overflow - Not Done Task on root-me
• ELF x86 - Stack buffer overflow basic 4 - Not Done Task on root-me
• ELF x86 - Stack buffer overflow basic 6 - Not Done Task on root-me
• ELF x86 - Format String Bug Basic 3 - Not Done Task on root-me
• ELF ARM - Basic ROP - Not Done Task on root-me
• ELF x86 - Stack buffer overflow - C++ vtables - Not Done Task on root-me
• ELF x64 - Logic bug - Not Done Task on root-me
• ELF x86 - Bug Hunting - Several issues - Not Done Task on root-me
• ELF x86 - Stack buffer and integer overflow - Not Done Task on root-me
• ELF x86 - Stack buffer overflow basic 5 - Not Done Task on root-me
• ELF x64 - Stack buffer overflow - advanced - Not Done Task on root-me
• ELF x86 - Information leakage with Stack Smashing Protector - Not Done Task on root-me
• ELF ARM - Race condition - Not Done Task on root-me
• ELF x86 - Out of bounds attack - French Paradox - Not Done Task on root-me
• ELF x86 - Remote BSS buffer overflow - Not Done Task on root-me
• ELF x86 - Remote Format String bug - Not Done Task on root-me
• ELF x64 - Remote heap buffer overflow - fastbin - Not Done Task on root-me
• ELF x86 - Blind remote format string bug - Not Done Task on root-me
• LinKern ARM - vulnerable syscall - Not Done Task on root-me
• LinKern x86 - Buffer overflow basic 1 - Not Done Task on root-me
• LinKern x86 - Null pointer dereference - Not Done Task on root-me
• LinKern x64 - Race condition - Not Done Task on root-me
• ELF ARM - Alphanumeric shellcode - Not Done Task on root-me
• ELF x86 - Hardened binary 1 - Not Done Task on root-me
• ELF x86 - Hardened binary 2 - Not Done Task on root-me
• ELF x86 - Hardened binary 3 - Not Done Task on root-me
• ELF x86 - Hardened binary 4 - Not Done Task on root-me
• LinKern x64 - reentrant code - Not Done Task on root-me
• ELF ARM - Heap format string bug - Not Done Task on root-me
• ELF x64 - Sigreturn Oriented Programming - Not Done Task on root-me
• LinKern x86 - basic ROP - Not Done Task on root-me
• ELF ARM - Format String bug - Not Done Task on root-me
• ELF ARM - Use After Free - Not Done Task on root-me
• ELF x64 - Heap feng-shui - Not Done Task on root-me
• ELF x64 - Off-by-one bug - Not Done Task on root-me
• ELF x86 - Hardened binary 5 - Not Done Task on root-me
• LinKern ARM - Stack Overflow - Not Done Task on root-me
• ELF ARM - Heap Off-by-One - Not Done Task on root-me
• ELF x64 - Remote Heap buffer overflow 1 - Not Done Task on root-me
• ELF x86 - Hardened binary 6 - Not Done Task on root-me
• ELF x86 - Hardened binary 7 - Not Done Task on root-me
• ELF x86 - Remote stack buffer overflow - Hardened - Not Done Task on root-me
• ELF ARM - Heap buffer overflow - Wilderness - Not Done Task on root-me
• ELF ARM - Heap Overflow - Not Done Task on root-me
• ELF x64 - Seccomp Whitelist - Not Done Task on root-me
• ELF x86 - Blind ROP - Not Done Task on root-me
• Linkern x64 - Memory exploration - Not Done Task on root-me
• ELF x64 - Remote Heap buffer overflow 2 - Not Done Task on root-me
• ELF x64 - Blind ROP - Not Done Task on root-me

Crack executable and files to win points These challenges will help you understand the workings of compiled languages. Decompile these executables to get the assembler instructions for solving the problem.

Prerequisites: 
- Understands the assembly language (ASM). 
- Understands the different executable formats (ELF, PE, etc.). 
- Knows how to work with a disassembler / debugger.

• ELF - 0 protection - Done Task on root-me
• ELF - x86 Basic - Done Task on root-me
• PE - 0 protection - Not Done Task on root-me
• ELF C++ - 0 protection - Not Done Task on root-me
• PE DotNet - 0 protection - Not Done Task on root-me
• ELF - Fake Instructions - Not Done Task on root-me
• ELF - Ptrace - Not Done Task on root-me
• ELF ARM - basic crackme - Not Done Task on root-me
• PYC - ByteCode - Not Done Task on root-me
• ELF - No software breakpoints - Not Done Task on root-me
• MachO x64 - keygenme or not - Not Done Task on root-me
• ELF - CrackPass - Not Done Task on root-me
• ELF - ExploitMe - Not Done Task on root-me
• ELF - Random Crackme - Not Done Task on root-me
• ELF ARM - crackme 1337 - Not Done Task on root-me
• PDF - Javascript - Not Done Task on root-me
• ELF ARM - Crypted - Not Done Task on root-me
• PE - SEHVEH - Not Done Task on root-me
• APK - Anti-debug - Not Done Task on root-me
• ELF - Anti-debug - Not Done Task on root-me
• ELF x64 - Nanomites - Introduction - Not Done Task on root-me
• PE - AutoPE - Not Done Task on root-me
• ELF - KeygenMe - Not Done Task on root-me
• ELF x64 - Anti-debug and equations - Not Done Task on root-me
• ELF - Packed - Not Done Task on root-me
• ELF x64 - Nanomites - Not Done Task on root-me
• PE - RunPE - Not Done Task on root-me
• ELF - VM - Not Done Task on root-me

You can test your cryptanalysis skills here. These tests will allow you to hone your cryptography skills. You will be faced with an encoded data. The challenge is to find the type of encoding or encryption and revert it back to find the solution.

Prerequisites:

- Knowledge of most common encoding formats. 
- Knowledge of most common hash algorithms and ciphers. 
- Knowledge of a scripting language.

• Encoding - ASCII - Done Task on root-me
• Encoding - UU - Done Task on root-me
• Hash - Message Digest 5 - Done Task on root-me
• Hash - SHA-2 - Not Done Task on root-me
• Shift cipher - Done Task on root-me
• Pixel Madness - Done Task on root-me Python Solution
• ELF32 - PID encryption - Not Done Task on root-me
• File - PKZIP - Done Task on root-me
• Monoalphabetic substitution - Caesar - Not Done Task on root-me
• Known plaintext - XOR - Not Done Task on root-me
• Code - Pseudo Random Number Generator - Not Done Task on root-me
• File - Insecure storage 1 - Done Task on root-me
• Polyalphabetic substitution - Vigenère - Not Done Task on root-me
• System - Android lock pattern - Done Task on root-me
• Transposition - Rail Fence - Not Done Task on root-me
• AES - ECB - Not Done Task on root-me
• LFSR - Known plaintext - Not Done Task on root-me
• RSA - Factorisation - Not Done Task on root-me
• RSA - Decipher Oracle - Not Done Task on root-me
• Service - Timing attack - Not Done Task on root-me
• Monoalphabetic substitution - Polybe - Not Done Task on root-me
• Initialisation Vector - Not Done Task on root-me
• GEDEFU - Not Done Task on root-me
• RSA - Corrupted key V1 - Not Done Task on root-me
• RSA - Continued fractions - Not Done Task on root-me
• RSA - Common modulus - Not Done Task on root-me
• Service - Hash length extension attack - Not Done Task on root-me
• RSA - Padding - Not Done Task on root-me
• AES128 - CTR - Not Done Task on root-me
• Discrete logarithm problem - Not Done Task on root-me
• RSA - Corrupted key V2 - Not Done Task on root-me
• RSA - Multiple recipients - Not Done Task on root-me
• Enigma Machine - Not Done Task on root-me
• ECDHE - Not Done Task on root-me
• Service - CBC Padding - Not Done Task on root-me
• Polyalphabetic substitution - One Time Pad - Not Done Task on root-me
• Hash - SHA-3 - Not Done Task on root-me

Train Your computer forensic expertise In this category you will learn methodologies, techniques and tools associated with computer forensics. You have to gather evidence to understand what actions was done on an information system.

• Command&Control-level 2 - Done Task on root-me
• Logs analysis - web attack - Not Done Task on root-me
• Command & Control - level 5 - Not Done Task on root-me
• Find the cat - Done Task on root-me
• Ugly Duckling - Not Done Task on root-me
• Active Directory - GPO - Not Done Task on root-me
• Command & Control - level 3 - Not Done Task on root-me
• DNS exfiltration - Not Done Task on root-me
• Command & Control - level 4 - Not Done Task on root-me
• Job interview - Not Done Task on root-me
• Malicious Word macro - Not Done Task on root-me
• Ransomware Android - Not Done Task on root-me
• Insomni’Droid - Not Done Task on root-me
• Root My Droid - Not Done Task on root-me
• Command & Control - level 6 - Not Done Task on root-me
• Find me - Not Done Task on root-me
• Second job interview - Not Done Task on root-me
• Find me again - Not Done Task on root-me
• Zeus Bot - Not Done Task on root-me
• Try again - Not Done Task on root-me

Networks challenges where you have to deal with captured traffic, network services, packet analysis, etc The following set of problems deal with network traffic including different protocols. You need to analyse the packet captures to solve these challenges.

Prerequisites: 
- Knowledge of a network capture analyzing tool. 
- Knowlege of the most common network protocols.

• FTP-authentication - Done Task on root-me
• TELNET-authentication - Done Task on root-me
• ETHERNET-frame - Done Task on root-me
• Twitter authentication - Done Task on root-me
• CISCO-password - Done Task on root-me
• DNS - zone transfert - Not Done Task on root-me
• IP-Time To Live - Done Task on root-me
• LDAP - null bind - Not Done Task on root-me
• SIP-authentication - Done Task on root-me
• ETHERNET - Patched transmission - Not Done Task on root-me
• Global System Traffic for Mobile communication - Not Done Task on root-me
• SSL - HTTP exchange - Not Done Task on root-me
• Netfilter - common mistakes - Not Done Task on root-me
• SNMP - Authentification - Not Done Task on root-me
• Wired Equivalent Privacy - Not Done Task on root-me
• ICMP payload - Not Done Task on root-me
• XMPP - authentication - Not Done Task on root-me

Programming challenge : you’ve to code to solve challenges. Challenges related to different programming languages (C, PHP, Java ...)

You must solve a security problem in these challenges by developing a small script using your choice of programming language.

Prerequisites: 
- Knowledge of a programming language.

• Go back to college - Not Done Task on root-me
• Encoded string - Not Done Task on root-me
• The Roman’s wheel - Not Done Task on root-me
• Uncompress me - Not Done Task on root-me
• CAPTCHA me if you can - Not Done Task on root-me
• Arithmetic progression - Not Done Task on root-me
• Quick Response Code - Not Done Task on root-me
• ELF64 - Shellcoding - Not Done Task on root-me

Realistic challenges. You will end up in environments full of diverse and varied themes. These challenges will help you understand the operation, including authentication methods, and target vulnerabilities to exploit target in realistic scenarios.

The challenges are complete web sites with multiple security vulnerabilities, with a completely fictional content. You play the role of a hacker contacted by organizations or individuals in order to provide justice through a hack. Once received your goals, it’s up to you to browse the site by trying to discover and exploit vulnerabilities. This series of challenges can be directly applied to the real world.

• It happens, sometimes - Done Task on root-me
• P0wn3d - Not Done Task on root-me
• The h@ckers l4b - Not Done Task on root-me
• Néonazi inside - Not Done Task on root-me
• PyRat Auction - Not Done Task on root-me
• Root them - Not Done Task on root-me
• IPBX - call me maybe - Not Done Task on root-me
• Marabout - Not Done Task on root-me
• Root-We - Done Task on root-me
• Starbug Bounty - Not Done Task on root-me
• Ultra Upload - Not Done Task on root-me
• Imagick - Not Done Task on root-me
• MALab - Not Done Task on root-me
• Web TV - Not Done Task on root-me
• SamBox v2 - Not Done Task on root-me
• SamCMS - Not Done Task on root-me
• SamBox v1 - Not Done Task on root-me
• SAP Pentest 007 - Not Done Task on root-me
• Crypto Secure - Not Done Task on root-me
• Red Pills - Not Done Task on root-me
• SamBox v3 - Not Done Task on root-me
• ARM FTP Box - Not Done Task on root-me
• SAP Pentest 000 - Not Done Task on root-me
• Bluebox 2 - Pentest - Not Done Task on root-me
• Bluebox - Pentest - Not Done Task on root-me

Whereas cryptography concern the art of secret, steganography is the art of hidding: the object of steganography is to hide the fact that there is an information in a document.

• Gunnm - Done Task on root-me
• Squared - Done Task on root-me
• Dot and next line - Done Task on root-me
• Steganomobile - Done Task on root-me
• Twitter Secret Messages - Done Task on root-me
• Some noise - Done Task on root-me
• George and Alfred - Not Done Task on root-me
• Audio stegano - Done Task on root-me
• Base Jumper - Not Done Task on root-me
• PDF Object - Not Done Task on root-me
• We need to go deeper - Done Task on root-me
• Angecryption - Not Done Task on root-me
• LSB - Uncle Scrooge - Not Done Task on root-me
• Pixel Indicator Technique - Not Done Task on root-me
• Pixel Value Differencing - Not Done Task on root-me
• Crypt-art - Done Task on root-me

At first you will be faced with problems that will require little to no knowledge of web scripting language. Pretty soon the plot thickens ... This series of events confronts you with the use of scripting language / client side programming. They are mostly scripts to analyze and understand. This will allow you to learn this language which is in widespread use on the internet.

Prerequisites: 
- Understanding a scripting language such javascript / vbscript 
- Understanding the operation of a debugger such firebug / javascript console

• HTML-disabled buttons - Done Task on root-me
• Javascript-Authentication - Done Task on root-me
• Javascript-Source - Done Task on root-me
• Javascript-Authentication 2 - Done Task on root-me
• Javascript-Obfuscation 1 - Done Task on root-me
• Javascript-Obfuscation 2 - Done Task on root-me
• Javascript-Native code - Done Task on root-me
• Javascript-Obfuscation 3 - Done Task on root-me
• XSS-Stored 1 - Done Task on root-me
• CSRF - 0 protection - Not Done Task on root-me
• Flash - Authentication - Not Done Task on root-me
• CSRF - token bypass - Not Done Task on root-me
• XSS - Reflected - Not Done Task on root-me
• Javascript - Obfuscation 4 - Not Done Task on root-me
• XSS - Stored 2 - Not Done Task on root-me
• HTTP Response Splitting - Not Done Task on root-me
• Javascript - Obfuscation 5 - Not Done Task on root-me
• XSS - Stored - filter bypass - Not Done Task on root-me
• XSS - DOM Based - Not Done Task on root-me

Discover the mechanisms, protocols and technologies used on the Internet and learn to abuse it! These challenges are designed to train users on HTML, HTTP and other server side mechanisms. The following series of challenges will cultivate a better understanding of techniques such as : Basic workings of multiple authentication mechanisms, handling form data, inner workings of web applications, etc. ...

Prerequisites: 
- Understand HTML. 
- Understand the HTTP protocol. 
- Ability to manipulate a web browser.

• HTML - Done Task on root-me
• HTTP - Open redirect - Not Done Task on root-me
• Command injection - Done Task on root-me
• Weak password - Done Task on root-me
• User-agent - Done Task on root-me
• Backup file - Done Task on root-mec
• HTTP directory indexing - Not Done Task on root-me
• HTTP Headers - Done Task on root-me
• HTTP verb tampering - Done Task on root-me
• Install files - Done Task on root-me
• Improper redirect - Done Task on root-me
• CRLF - Not Done Task on root-me
• File upload-double extensions - Done Task on root-me
• File upload-MIME type - Done Task on root-me
• HTTP cookies - Done Task on root-me
• Directory traversal - Done Task on root-me
• File upload - null byte or another solution - Done Task on root-me
• PHP assert() - Not Done Task on root-me
• PHP filters - Done Task on root-me
• PHP register globals - Done Task on root-me
• File upload - ZIP - Not Done Task on root-me
• Command injection - Filter bypass - Not Done Task on root-me
• Local File Inclusion - Done Task on root-me
• Local File Inclusion - Double encoding - Done Task on root-me
• PHP - Loose Comparison - Not Done Task on root-me
• PHP preg_replace() - Done Task on root-me
• PHP type juggling - Not Done Task on root-me
• Remote File Inclusion - Not Done Task on root-me
• Server-side Template Injection - Not Done Task on root-me
• SQL injection - authentication - Not Done Task on root-me
• SQL injection - authentication - GBK - Not Done Task on root-me
• SQL injection - string - Done Task on root-me
• XSLT - Code execution - Not Done Task on root-me
• LDAP injection - authentication - Done Task on root-me
• NoSQL injection - authentication - Not Done Task on root-me
• Path Truncation - Not Done Task on root-me
• PHP Serialization - Not Done Task on root-me
• SQL injection - numeric - Not Done Task on root-me
• SQL Injection - Routed - Not Done Task on root-me
• SQL Truncation - Not Done Task on root-me
• XML External Entity - Not Done Task on root-me
• XPath injection - authentication - Not Done Task on root-me
• Java - Spring Boot - Not Done Task on root-me
• Local File Inclusion - Wrappers - Not Done Task on root-me
• SQL injection - Error - Done Task on root-me
• SQL injection - Insert - Not Done Task on root-me
• SQL injection - file reading - Done Task on root-me
• XPath injection - string - Not Done Task on root-me
• NoSQL injection - blind - Not Done Task on root-me
• SQL injection - Time based - Done Task on root-me
• SQL injection - blind - Not Done Task on root-me
• LDAP injection - blind - Not Done Task on root-me
• XPath injection - blind - Not Done Task on root-me
• SQL injection - filter bypass - Not Done Task on root-me

Website: http://overthewire.org/wargames/

• 0 - Done
• 1 - Done
• 2 - Done
• 3 - Done
• 4 - Done
• 5 - Done
• 6 - Done
• 7 - Done
• 8 - Done
• 9 - Done
• 10 - Done
• 11 - Done
• 12 - Done
• 13 - Done
• 14 - Done
• 15 - Done
• 16 - Done
• 17 - Done
• 18 - Done
• 19 - Done
• 20 - Done
• 21 - Done
• 22 - Done
• 23 - Done
• 24 - Done
• 25 - Done
• 26 - Done
• 27 - Done

• 0 - Done Link to task
• 1 - Done Link to task
• 2 - Done Link to task
• 3 - Done Link to task
• 4 - Done Link to task
• 5 - Done Link to task
• 6 - Done Link to task
• 7 - Done Link to task
• 8 - Done Link to task
• 9 - Done Link to task
• 10 - Done Link to task
• 11 - Done Link to task
• 12 - Done Link to task
• 13 - Done Link to task
• 14 - Done Link to task
• 15 - Done Link to task
• 16 - Done Link to task
• 17 - Done Link to task
• 18 - Done Link to task
• 19 - Done Link to task
• 20 - Done Link to task
• 21 - Not Done Link to task
• 22 - Not Done Link to task
• 23 - Not Done Link to task
• 24 - Not Done Link to task
• 25 - Not Done Link to task
• 26 - Not Done Link to task
• 27 - Not Done Link to task
• 28 - Not Done Link to task
• 29 - Not Done Link to task
• 30 - Not Done Link to task
• 31 - Not Done Link to task
• 32 - Not Done Link to task
• 33 - Not Done Link to task

• 0 - Done
• 1 - Done
• 2 - Done
• 3 - Done
• 4 - Done
• 5 - Done
• 6 - Done
• 7 - Done

Website: https://www.enigmagroup.org/pages/challenges

• Basic1 - Done Link to task
• Basic2 - Done Link to task
• Basic3 - Done Link to task

• Basic4 - Done Link to task
• Basic5 - Done Link to task
• Basic6 - Done Link to task
• Basic7 - Done Link to task
• Basic8 - Done Link to task

• Basic16 - Done Link to task
• Basic17 - Done Link to task

• Basic21 - Done Link to task
• Basic22 - Done Link to task

• Basic27 - Done Link to task

• Basic30 - Done Link to task
• Basic31 - Done Link to task
• Basic32 - Done Link to task

• Basic40 - Done Link to task
• Basic41 - Done Link to task

• Realistic One - Done Link to task
• Realistic Two - Done Link to task

• Cryptography 1 - Done Linuk to task
• Cryptography 2 - Done Linuk to task
• Cryptography 3 - Done Linuk to task

• Mr-Robot:1
• Trollcave: 1.2

• 0ld_is_g0ld
• fs0ciety

• Weak RSA
• SickTeacher
• Deceitful Batman
• Classic yet complicated
• You Can Do It!

This project is licensed under the GNU General Public License v3.0 License - see the LICENSE.md file for details

Please read CONTRIBUTING.md for details on our code of conduct, and the process for submitting pull requests to us.