PicoCTF
picoCTF hold periodic CTF events and provide a practice CTF environment called picoGym to allow individuals to work on their CTF skills outside of a formal CTF event.
Contents
- PicoGym Web Exploitation
- PicoGym Cryptography
- PicoGym Reverse Engineering
- PicoGym Forensics ✓
- PicoGym General Skills ✓
- PicoGym Binary Exploitation
PicoCTF | Home
PicoGym Web Exploitation (40/45)
Web Exploitation entails the manipulation of websites and web hosted services using vulnerabilities in the interactive elements of a website.
Challenges
- Insp3ct0r (2019) ✓
- logon (2019) ✓
- where are the robots (2019) ✓
- dont-use-client-side (2019) ✓
- picobrowser (2019) ✓
- Client-side-again (2019) ✓
- Irish-Name-Repo 1 (2019) ✓
- Irish-Name-Repo 2 (2019) ✓
- Irish-Name-Repo 3 (2019) ✓
- JaWT Scratchpad (2019) ✓
- Java Script Kiddie (2019) ✓
- Java Script Kiddie 2 (2019) ✓
- Web Gauntlet (2020) ✓
- GET aHEAD (2021) ✓
- Cookies (2021) ✓
- Scavenger Hunt (2021) ✓
- Some Assembly Required 1 (2021) ✓
- More Cookies (2021) ✓
- It is my Birthday (2021) ✓
- Who are you? (2021) ✓
- Some Assembly Required 2 (2021) ✓
- Super Serial (2021) ✓
- Most Cookies (2021) ✓
- Some Assembly Required 3 (2021) ✓
- Web Gauntlet 2 (2021) ✓
- Some Assembly Required 4 (2021) ✓
- X marks the spot (2021) ✓
- Web Gauntlet 3 (2021) ✓
- Bithug (2021)
- login (2021) ✓
- caas (2021) ✓
- notepad (2021)
- JAuth (2021)
- Includes (2022) ✓
- Inspect HTML (2022) ✓
- Local Authority (2022) ✓
- Search Source (2022) ✓
- Forbidden Paths (2022) ✓
- Power Cookie (2022) ✓
- Roboto Sans (2022) ✓
- Secrets (2022) ✓
- SQL Direct (2022) ✓
- SQLiLite (2022) ✓
- Live Art (2022)
- Noted (2022)
PicoCTF | Home
PicoGym Cryptography (46/50)
Cryptography is essential to many models of cyber security. Cryptography applies algorithms to shuffle the bits that represent data in such a way that only authorized users can unshuffle them to obtain the original data.
Challenges
- The Numbers (2019) ✓
- caesar (2019) ✓
- Easy1 (2019) ✓
- 13 (2019) ✓
- la cifra de (2019) ✓
- rsa-pop-quiz (2019) ✓
- Tapping (2019) ✓
- Mr-Worldwide (2019) ✓
- Flags (2019) ✓
- waves over lambda (2019) ✓
- miniRSA (2019) ✓
- b00tl3gRSA2 (2019) ✓
- AES-ABC (2019) ✓
- b00tl3gRSA3 (2019) ✓
- john_pollard (2019) ✓
- Mod 26 (2021) ✓
- Mind your Ps and Qs (2021) ✓
- Easy Peasy (2021) ✓
- New Caesar (2021) ✓
- Mini RSA (2021) ✓
- Dachshund Attacks (2021) ✓
- No Padding, No Problem (2021) ✓
- Pixelated (2021) ✓
- Play Nice (2021) ✓
- Double DES (2021) ✓
- Compress and Attack (2021) ✓
- Scrambled: RSA (2021) ✓
- It's Not My Fault 1 (2021) ✓
- New Vignere (2021) ✓
- Clouds (2021)
- Spelling-Quiz (2021) ✓
- XtraORdinary (2021) ✓
- Triple-Secure (2021) ✓
- College-Rowing-Team (2021) ✓
- Corrupt-key-1 (2021)
- Corrupt-key-2 (2021)
- basic-mod1 (2022) ✓
- basic-mod2 (2022) ✓
- credstuff (2022) ✓
- morse-code (2022) ✓
- rail-fence (2022) ✓
- substitution0 (2022) ✓
- substitution1 (2022) ✓
- substitution2 (2022) ✓
- transposition-trial (2022) ✓
- Vigenere (2022) ✓
- Very Smooth (2022) ✓
- Sequences (2022) ✓
- Sum-O-Primes (2022) ✓
- NSA Backdoor (2022)
PicoCTF | Home
PicoGym Reverse Engineering (48/55)
Reverse engineering entails taking a software system and analyzing it to trace it back to the original design and implementation information. It is used to fix certain bugs in software as well as to enhance product features in both hardware and software.
Challenges
- vault-door-training (2019) ✓
- vault-door-1 (2019) ✓
- vault-door-3 (2019) ✓
- vault-door-4 (2019) ✓
- vault-door-5 (2019) ✓
- vault-door-6 (2019) ✓
- vault-door-7 (2019) ✓
- vault-door-8 (2019) ✓
- asm1 (2019) ✓
- asm2 (2019) ✓
- asm3 (2019) ✓
- asm4 (2019) ✓
- droids0 (2019) ✓
- droids1 (2019) ✓
- droids2 (2019) ✓
- droids3 (2019) ✓
- droids4 (2019) ✓
- revese_cipher (2019) ✓
- Need For Speed (2019) ✓
- B1ll_Gat35 (2019)
- Forky (2019) ✓
- OTP Implementation (2020) ✓
- Transformation (2021) ✓
- Keygenme-py (2021) ✓
- crackme-py (2021) ✓
- ARMssembly 0 (2021) ✓
- speeds and feeds (2021) ✓
- Shop (2021) ✓
- ARMssembly 1 (2021) ✓
- ARMssembly 2 (2021) ✓
- Hurry up! Wait! (2021) ✓
- gogo (2021) ✓
- ARMssembly 3 (2021) ✓
- Let's get dynamic (2021) ✓
- Easy as GDB (2021) ✓
- ARMssembly 4 (2021) ✓
- Powershelly (2021)
- Rolling My Own (2021)
- Checkpass (2021)
- not crypto (2021) ✓
- breadth (2021)
- riscy business (2021)
- MATRIX (2021)
- file-run1 (2022) ✓
- file-run2 (2022) ✓
- GDB Test Drive (2022) ✓
- patchme.py (2022) ✓
- Safe Opener (2022) ✓
- unpackme.py (2022) ✓
- bloat.py (2022) ✓
- Fresh Java (2022) ✓
- Bbbbloat (2022) ✓
- unpackme (2022) ✓
- Keygenme (2022) ✓
- Wizardlike (2022) ✓
PicoCTF | Home
PicoGym Forensics (50/50)
"Forensics" challenges can include file format analysis, steganography, memory dump analysis, or network packet capture analysis.
Challenges
- Glory of the Garden (2019) ✓
- So Meta (2019) ✓
- extensions (2019) ✓
- shark on wire 1 (2019) ✓
- What Lies Within (2019) ✓
- c0rrupt (2019) ✓
- WhitePages (2019) ✓
- m00nwalk (2019) ✓
- like1000 (2019) ✓
- shark on wire 2 (2019) ✓
- m00nwalk2 (2019) ✓
- Investigative Reversing 0 (2019) ✓
- WebNet0 (2019) ✓
- Investigative Reversing 1 (2019) ✓
- Investigative Reversing 2 (2019) ✓
- Investigative Reversing 3 (2019) ✓
- Investigative Reversing 4 (2019) ✓
- investigation_encoded_1 (2019) ✓
- WebNet1 (2019) ✓
- investigation_encoded_2 (2019) ✓
- B1g_Mac (2019) ✓
- Pitter, Patter, Platters (2020) ✓
- Information (2021) ✓
- Matryoshka doll (2021) ✓
- tunn3l v1s10n (2021) ✓
- Wireshark doo dooo do doo (2021) ✓
- MacroHard WeakEdge (2021) ✓
- Trivial Flag Transfer Protocol (2021) ✓
- Wireshark twoo twooo two twoo (2021) ✓
- Disk, disk, sleuth! (2021) ✓
- Milkslap (2021) ✓
- Disk,disk, sleauth II (2021) ✓
- Surfing the Waves (2021) ✓
- Very very very Hidden (2021) ✓
- Advanced-potion-making (2021) ✓
- Scrambled-bytes (2021) ✓
- WPA-ing Out ✓
- Enhance! (2022) ✓
- File Types (2022) ✓
- Lookey Here (2022) ✓
- Packets Primer (2022) ✓
- Redaction Gone Wrong (2022) ✓
- Sleuthkit Intro (2022) ✓
- Sleuthkit Apprentice (2022) ✓
- Eavesdrop (2022) ✓
- Operation Oni (2022) ✓
- St3g0 (2022) ✓
- Operation Orchid (2022) ✓
- Sidechannel (2022) ✓
- Torrent Analyze (2022) ✓
PicoCTF | Home
PicoGym General Skills (34/34)
Challenges
- 2Warm (2019) ✓
- Warmed Up (2019) ✓
- Lets Warm Up (2019) ✓
- strings it (2019) ✓
- Bases (2019) ✓
- First Grep (2019) ✓
- what's a net cat? (2019) ✓
- plumbing (2019) ✓
- Based (2019) ✓
- flag_shop (2019) ✓
- mus1c (2019) ✓
- 1_wanna_b3_a_r0ck5tar (2019) ✓
- Obedient cat (2021) ✓
- Python Wrangling (2021) ✓
- Wave a flag (2021) ✓
- Nice netcat (2021) ✓
- Static aint always noise (2021) ✓
- Tab Tab Attack (2021) ✓
- Magikarp Ground Mission (2021) ✓
- Codebook ✓
- convertme.py ✓
- fixme1.py ✓
- fixme2.py ✓
- Glitch Cat ✓
- HashingJobApp ✓
- PW Crack 1 ✓
- PW Crack 2 ✓
- PW Crack 3 ✓
- PW Crack 4 ✓
- PW Crack 5 ✓
- runme.py ✓
- Serpentine ✓
- First Find ✓
- Big Zip ✓
PicoCTF | Home
PicoGym Binary Exploitation (13/37)
Binary exploitation is the process of subverting a compiled application such that it violates some trust boundary in a way that is advantageous to you, the attacker.
Challenges
- seed-sPRiNG (2019) 🗸
- sice_cream (2019)
- zero_to_hero (2019)
- messy-malloc (2019)
- Guessing Game 1 (2020) 🗸
- Guessing Game 2 (2020)
- Stonks (2021) 🗸
- Cache Me Outside (2021)
- Here's a LIBC (2021)
- Unsubscriptions Are Free (2021)
- filtered-shellcode (2021)
- Kit Engine (2021)
- Stonk Market (2021)
- Download Horsepower (2021)
- The Office (2021)
- Turboflan (2021)
- Bizz Fuzz (2021)
- cutter-overflow (2021) 🗸
- fermat-strings (2021)
- SaaS (2021)
- homework (2021)
- lockdown-horses (2021)
- vr-school (2021)
- basic-file-exploit (2022) 🗸
- buffer overflow 0 (2022) 🗸
- CVE-XXXX-XXXX (2022) 🗸
- buffer overflow 1 (2022) 🗸
- RPS (2022) 🗸
- x-sixty-what (2022) 🗸
- buffer overflow 2 (2022) 🗸
- buffer overflow 3 (2022) 🗸
- flag leak (2022) 🗸
- ropfu (2022)
- wine (2022)
- function overwrite (2022)
- stack cache (2022)
- solfire (2022)
PicoCTF | Home
This page was last updated May 22.