Skip to content
CTF Writeups
WOW.... So Meta
Initializing search
GitHub
CTF Writeups
GitHub
Index
Arizona CTF 2025 (pwn.college)
Arizona CTF 2025 (pwn.college)
Linux
Linux
Hijack Me!
Web Security
Web Security
Cowherders 1
No Admin For You
BrunnerCTF 2025
BrunnerCTF 2025
Crypto
Crypto
Half-Baked
OSINT
OSINT
There Is a Lovely Land
Pwn
Pwn
Othello Villains
Reverse Engineering
Reverse Engineering
Grandma's Predictable Cookies
Trippi Troppa Chaos
Shake & Bake (Beginner)
Shake & Bake (Beginner)
BakeDown
Baker Brian
Based Brunner
Caffeine
Cookie Jar
Dat Overflow Dough
DoughBot
Online Cake Flavour Shop
Shaken, Not Stirred
The Great Mainframe Bake-Off
The Secret Brunsviger
Where Robots Cannot Search
Whisk
Web
Web
Baking Bad
Brunner's Bakery
CTFLearn
CTFLearn
Binary
Binary
Simple bof
RIP my bof
Shell time!
Leak me
Domain name resolver
Accumulator
Positive Challenge
Glob
secret
Favorite Color
Blackbox
Lazy Game Challenge
Cryptography
Cryptography
Character Encoding
RSA Noob
So many 64s
Hextroadinary
Base 2 2 the 6
BruXOR
Reverse Polarity
Substitution Cipher
5x5 Crypto
Vigenere Cipher
Morse Code
HyperStream Test #2
Suspecious message
Forensics
Forensics
Taking LS
Git Is Good
Binwalk
Corrupted File
Up For A Little Challenge?
Milk's Best Friend
Digital Camouflage
Exif
WOW.... So Meta
A CAPture of a Flag
I'm a dump
Simple Steganography
Rubber Duck
Snowboard
PikesPeak
Minions
PDF by fdpumyp
Blank Page
Forensics 101
07601
Pho is Tasty!
Chalkboard
Tux!
Miscellaneous
Miscellaneous
Where Can My Robot Go?
Time Traveller
Wikipedia
QR Code
Rock Paper Scissors
Programming
Programming
Adoni Assembler Chall
AndhraPradesh Assembler Chall
Programming a language
An Old Image
Simple Programming
Dawn's Lawn
Python Reversal
Image Magic
The Credit Card Fraudster
Reversing
Reversing
RE_verseDIS
PIN
Reykjavik
Riyadh
Web
Web
Don't Bump Your Head(er)
POST Practice
Inj3ction Time
Basic Injection
Cryptohack
Cryptohack
Crypto on the Web
Crypto on the Web
JSON Web Tokens
TLS Part 1: The Protocol
Diffie Hellman
Diffie Hellman
Starter
General
General
Data Formats
Encoding
XOR
RSA
RSA
Primes Part 1
Primes Part 2
Public Exponent
Starter
Signatures Part 1
Symmetric Ciphers
Symmetric Ciphers
Block Ciphers 1
How AES Works
Symmetric Starter
GoogleCTF Beginner's Quest 2024
GoogleCTF Beginner's Quest 2024
DialUp
Doors Everywhere
GoLogicFlaw
Infiltrate
Jotes
No refund
OldMeetsNew
PhantomSounds
Prototype's Fall
Redacted RSA 1
Rope Climb
Simple Echo
Hacker101 CTF
Hacker101 CTF
A little something to get you started
Micro-CMS v1
Postbook
OverTheWire
OverTheWire
Bandit
Pentathon25
Pentathon25
NCIIPC-AICTE Pentathon 2025
Beyond Borders
DES-Key-Quest
Last Transmission
Master of Minuscule
Mini-RSA
Prefixed
Ultra-Safe-Integers
Unblocker
TFC CTF 2025
TFC CTF 2025
Web
Web
KISSFIXESS REVENGE
KISSFIXESS
SLIPPY
TryHackMe
TryHackMe
Mr Robot
OhSINT
Pickle Rick
Sakura
picoCTF
picoCTF
Binary Exploitation
Binary Exploitation
CVE
PIE TIME
VNE
buffer overflow 0
buffer overflow 1
buffer overflow 2
flag leak
format string 0
format string 1
function overwrite
hash-only-1
heap 0
heap 1
heap 2
heap 3
ropfu
two-sum
Cryptography
Cryptography
13
Dachshund Attacks
EVEN RSA CAN BE BROKEN???
Flags
Guess My Cheese (Part 1)
HideToSee
Interencdec
Mind Your Ps and Qs
Mod 26
Mr-Worldwide
ReadMyCert
Tapping
The Numbers
Vigenere
basic-mod1
basic-mod2
credstuff
haschcrack
morse_code
rotation
rsa_oracle
substitution0
waves over lambda
Forensics
Forensics
CanYouSee
Event-Viewing
Glory of the Garden
Packets Primer
PcapPoisoning
Ph4nt0m 1ntrud3r
RED
Scan Surprise
Secret of the Polyglot
Verify
Wireshark doo dooo do doo
flags are stepic
information
General Skills
General Skills
Rust fixme 1
Rust fixme 2
Rust fixme 3
Reverse Engineering
Reverse Engineering
Classic Crackme 0x100
Flag Hunters
GDB baby step 1
GDB baby step 2
GDB baby step 3
GDB baby step 4
Quantum Scrambler
Tap into Hash
packer
reverse
packer
Web Exploitation
Web Exploitation
3v@l
Bookmarklet
Client-side-again
Cookie Monster Secret Recipe
Cookies
Forbidden Paths
GET aHEAD
Includes
Insp3ct0r
Inspect HTML
IntroToBurp
Irish-Name-Repo-1
Irish-Name-Repo-2
Irish-Name-Repo-3
It is my Birthday
Local Authority
MatchTheRegex
More SQLi
Most Cookies
No Sql Injection
Pachinko
Power Cookie
Roboto Sans
SOAP
SQL Direct
SQLiLite
SSTI1
SSTI 2
Scavenger Hunt
Search source
Secrets
Trickster
Unminify
Web Gauntlet 2
Web Gauntlet 3
Web Gauntlet
WebDecode
Who are you
caas
dont-use-client-side
findme
head-dump
login
logon
n0s4n1ty 1
picobrowser
where are the robots
Pwn.college
Pwn.college
Content Injection
Content Injection
CSV Injection
HTML/Javascript Injection
JSON Injection
XML Injection
YAML Injection
Intro to Cybersecurity
Intro to Cybersecurity
Binary Exploitation
Binary Exploitation
Basic Shellcode
Control Hijack
Hijack to (Mapped) Shellcode
Hijack to Shellcode
NOP Sleds
NULL-free Shellcode
PIEs
Precision
String Lengths
Tricky Control Hijack
Variable Control
Your First Overflow
Intercepting Communication
Intercepting Communication
Connect
Listen
Monitor
Scan
Web Security
Web Security
Authenication Bypass
CMDi
CSRF
Path Traversal
SQLi
XSS
Program Security
Program Security
Dynamic Allocator Misuse
Return Oriented Programming
Pwntools
Pwntools
Pwntools Tutorial
Software Exploitation
Software Exploitation
Format Strings Exploit
Pwnable.kr
Pwnable.kr
Toddler's Bottle
Toddler's Bottle
bof
collision
fd
flag
Xss game
Xss game
level 1
level 2
level 3
level 4
level 5
level 6
WOW.... So Meta
¶
exiftool
<image.jpg>