CHALLENGES
-
-
orw
100 pts
Solved 555 times. sces60107Read the flag from
/home/orw/flag.Only
openreadwritesyscall are allowed to use.nc chall.pwnable.tw 10001 -
-
-
-
-
applestore
200 pts
Solved 158 times. jinmo123tomcr00se rooted the galaxy S5, but we need you to jailbreak the iPhone8!
nc chall.pwnable.tw 10104 -
criticalheap
200 pts
Solved 25 times. xellosThere are some secrets . Try to capture
/home/critical_heap++/flag.We recommend you to use the provided docker environment to develop your exploit:
nc chall.pwnable.tw 10500 -
-
-
Starbound
250 pts
Solved 73 times. nneonneoLet's play starbound together!
multi-player features are disabled.
nc chall.pwnable.tw 10202 -
-
Spirited Away
300 pts
Solved 90 times. nneonneoThanks for watching Spirited Away !
Please leave some comments to help us improve our next movie !
nc chall.pwnable.tw 10204 -
-
-
BookWriter
350 pts
Solved 43 times. CharoI fixed some bug of memo from bkp CTF 2017 and modified some control flow, but it's still pwnable.
Can you pwn it again?
nc chall.pwnable.tw 10304 -
-
-
-
-
Ghost Party
450 pts
Solved 30 times. xellosWelcome to ghost island and enjoy the ghost party.
nc chall.pwnable.tw 10401 -
-
unexploitable
500 pts
Solved 116 times. xellosThe original challenge is on pwnable.kr and it is solvable.
This time we fix the vulnerability and now we promise that the service is unexploitable.
nc chall.pwnable.tw 10403 -
BabyAllocator
500 pts
Solved 11 times. xellosDo you like memory allocator?
Love, Service , Responsibility, Discipline !
nc chall.pwnable.tw 10404 -
OmegaGo
500 pts
Solved 7 times. xellosWant to fight with AlphaGo?
Beat OmegaGo first.
Note: The game rule has been simplified to make life easier.
nc chall.pwnable.tw 10405 -
criticalheap++
600 pts
Solved 16 times. lucasIt's very crazy ! Don't do it !!
You need to get a shell !!
We recommend you to use the provided docker environment to develop your exploit:
nc chall.pwnable.tw 10500 -
Digimon
600 pts
Solved 3 times. xellosWelcome to the world of digimon!
Try to catch as many as possible! :P
nc chall.pwnable.tw 10501