CHALLENGES
-
Start
100 pts
Solved 6730 times. sces60107Just a start.
Don't know how to start?
Check GEF 101 - Solving pwnable.tw/start by @_hugsy
nc chall.pwnable.tw 10000
-
orw
100 pts
Solved 5009 times. sces60107Read the flag from
/home/orw/flag
.Only
open
read
write
syscall are allowed to use.nc chall.pwnable.tw 10001
-
CVE-2018-1160
100 pts
Solved 116 times. c2w2m2There is an old version Netatalk with some vulnerabilities, such as CVE-2018-1160.
Can you develop a 1-day exploit for this challenge? :p
The Kernel version is:
Linux ubuntu 4.9.0-x86_64-linode79 #1 SMP Mon Dec 12 13:17:30 EST 2016 x86_64 x86_64 x86_64 GNU/Linux
Hint:
Notice, Kernel version may be changed after the environment updated.
You can get the current version from the the other challenge.nc chall.pwnable.tw 10002
-
-
-
-
-
-
applestore
200 pts
Solved 1130 times. jinmo123tomcr00se rooted the galaxy S5, but we need you to jailbreak the iPhone8!
nc chall.pwnable.tw 10104
-
-
-
-
-
Starbound
250 pts
Solved 552 times. nneonneoLet's play starbound together!
multi-player features are disabled.
nc chall.pwnable.tw 10202
-
Spirited Away
300 pts
Solved 706 times. nneonneoThanks for watching Spirited Away !
Please leave some comments to help us improve our next movie !
nc chall.pwnable.tw 10204
-
-
CVE-2018-10387
250 pts
Solved 92 times. NextLineSingled-threaded TFTP Server Open Source Freeware Windows/Unix for PXEBOOT, firmware load, support tsize, blksize, timeout, server port ranges, block number rollover for large files, and remote code execution.
nc chall.pwnable.tw 10206
-
Bounty Program α
300 pts
Solved 62 times. NextLineOnly PPP got a bounty in HITCON CTF final 2019. :p
flag:
/home/bounty_program/flag
nc chall.pwnable.tw 10208
-
-
-
BookWriter
350 pts
Solved 516 times. CharoI fixed some bug of memo from bkp CTF 2017 and modified some control flow, but it's still pwnable.
Can you pwn it again?
nc chall.pwnable.tw 10304
-
-
-
-
-
-
-
WannaHeap
400 pts
Solved 124 times. CharoDo you like heap challege?
This challenge is running on Ubuntu 17.04
nc chall.pwnable.tw 10305
-
-
HITCON FTP
400 pts
Solved 28 times. perniciousNobody find all vulnerabilities in HITCON CTF final 2019. :'(
flag:/home/hitcon_ftp/flag
nc chall.pwnable.tw 10309
-
Stupid Robot
400 pts
Solved 17 times. RiatreCreate your own robot and capture the flag!
Note:
/tmp
will be cleaned up every 5 minutes.nc chall.pwnable.tw 10311
-
-
Ghost Party
450 pts
Solved 195 times. xellosWelcome to ghost island and enjoy the ghost party.
nc chall.pwnable.tw 10401
-
-
unexploitable
500 pts
Solved 495 times. xellosThe original challenge is on pwnable.kr and it is solvable.
This time we fix the vulnerability and now we promise that the service is unexploitable.
nc chall.pwnable.tw 10403
-
BabyAllocator
500 pts
Solved 66 times. xellosDo you like memory allocator?
Love, Service , Responsibility, Discipline !
nc chall.pwnable.tw 10404
-
OmegaGo
500 pts
Solved 74 times. xellosWant to fight with AlphaGo?
Beat OmegaGo first.
Note: The game rule has been simplified to make life easier.
nc chall.pwnable.tw 10405
-
Food Store
500 pts
Solved 42 times. l4w.ioWelcome to my food store!
This challenge is running on Ubuntu 17.04
nc chall.pwnable.tw 10406
-
Bounty Program β
500 pts
Solved 43 times. perniciousSome team and me patched some bug in
bounty program alpha
, but it's still pwnable :(Can you pwn it again?
flag:
/home/bounty_program/flag
nc chall.pwnable.tw 10410
-
-
Bash Revenge
500 pts
Solved 37 times. mrbaconguyThere is an old version bash with some vulnerabilities, such as CVE-2016-9401.
Can you develop a 1-day exploit for this challenge? :pnc chall.pwnable.tw 10407
-
-
-
criticalheap
200 pts
Solved 233 times. xellosThere are some secrets . Try to capture
/home/critical_heap++/flag
.We recommend you to use the provided docker environment to develop your exploit:
nc chall.pwnable.tw 10500
-
criticalheap++
600 pts
Solved 85 times. lucasIt's very crazy! Don't do it!!
You need to get a shell !!
We recommend you to use the provided docker environment to develop your exploit:
nc chall.pwnable.tw 10500
-
Digimon
600 pts
Solved 22 times. xellosWelcome to the world of digimon!
Try to catch as many as possible! :P
nc chall.pwnable.tw 10501
2024-09-16 02:30:40
c0ffee
Silver Bullet
2024-09-16 01:43:54
pekko
BabyStack
2024-09-15 20:28:21
vani5hing
Start
2024-09-15 15:39:14
Grass
Heap Paradise
2024-09-15 15:11:12
sunlife
Start
2024-09-15 13:04:27
c0ffee
hacknote
2024-09-15 12:56:14
734P07
hacknote
2024-09-15 06:02:42
pekko
Tcache Tear
2024-09-15 05:29:02
Grass
BookWriter
2024-09-14 22:13:20
nocnoc
Kidding
2024-09-14 21:43:19
nocnoc
Re-alloc Revenge
2024-09-14 21:36:26
pandapythoner
Silver Bullet
2024-09-14 20:58:49
dungwinux
orw
2024-09-14 11:23:48
smmmmmok3
seethefile
2024-09-14 09:51:18
hyprnir
Kidding
2024-09-14 09:44:11
z3r0x
Start
2024-09-14 02:09:55
ceokon1
Start
2024-09-13 13:56:07
pandapythoner
hacknote
2024-09-13 13:54:27
qorrnsmj
Start
2024-09-13 12:50:08
smmmmmok3
Death Note