Root-Me/HTTP - Directory indexing·15ptsHTTP - Directory indexing — Root-MeServer-side web task HTTP - Directory indexing.Webmedium#web#root-me#mediumMay 26, 2026
Root-Me/Nginx - Alias Misconfiguration·15ptsNginx - Alias Misconfiguration — Root-MeFor Nginx - Alias Misconfiguration, the backend trusts headers and cookies too much.Webmedium#web#root-me#mediumMay 26, 2026
Root-Me/API - Broken Access·15ptsAPI - Broken Access — Root-MeServer-side web task API - Broken Access.Webmedium#web#root-me#mediumMay 26, 2026
Root-Me/HTTP - POST·15ptsHTTP - POST — Root-MeServer-side web task HTTP - POST.Webmedium#web#root-me#mediumMay 26, 2026
Root-Me/Backup file·15ptsBackup file — Root-MeServer-side web task Backup file.Webmedium#web#root-me#mediumMay 26, 2026
Root-Me/Javascript - Webpack·15ptsJavascript - Webpack — Root-MeFor Javascript - Webpack, the attack surface lives in front-end validation.Webmedium#web#root-me#mediumMay 26, 2026
Root-Me/EXIF - Thumbnail·20ptsEXIF - Thumbnail — Root-MeChallenge EXIF - Thumbnail: layered images and subtle LSB patterns.Forensicsmedium#root-me#medium#forensicsMay 26, 2026
Root-Me/WAV - Spectral analysis·20ptsWAV - Spectral analysis — Root-MeChallenge WAV - Spectral analysis: layered images and subtle LSB patterns.Forensicsmedium#root-me#medium#forensicsMay 26, 2026
Root-Me/Yellow dots·15ptsYellow dots — Root-MeStego task Yellow dots hiding data in media and metadata.Forensicsmedium#root-me#medium#forensicsMay 26, 2026
Root-Me/Poem from Space·15ptsPoem from Space — Root-MeChallenge Poem from Space: layered images and subtle LSB patterns.Forensicsmedium#root-me#medium#forensicsMay 26, 2026
Root-Me/P0wn3d·20ptsP0wn3d — Root-MeRealistic scenario P0wn3d blending multiple weak services.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/Windows - Kerberoast·20ptsWindows - Kerberoast — Root-MeOn Windows - Kerberoast, the path crosses web, network, and host layers.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/End Droid·15ptsEnd Droid — Root-MeOn End Droid, the path crosses web, network, and host layers.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/Deep Learning - Introduction·20ptsDeep Learning - Introduction — Root-MeWalkthrough for Deep Learning - Introduction: data structure tradeoffs, boundary cases, and how to derive the expected output without leaking full contest automation code..Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/CAPTCHA me if you can·20ptsCAPTCHA me if you can — Root-MeProgramming puzzle CAPTCHA me if you can focused on algorithmic constraints.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/Mathematic progression·20ptsMathematic progression — Root-MeFor Mathematic progression, the task tests API misuse and race windows.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/TCP - Uncompress Me·15ptsTCP - Uncompress Me — Root-MeWalkthrough for TCP - Uncompress Me: data structure tradeoffs, boundary cases, and how to derive the expected output without leaking full contest automation code..Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/RF - Key Fixed Code·15ptsRF - Key Fixed Code — Root-MeNetwork challenge RF - Key Fixed Code: packet captures and protocol oddities.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/Data extraction·20ptsData extraction — Root-MeFor Data extraction, traffic analysis reveals a covert channel.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/POP - APOP·15ptsPOP - APOP — Root-MeWalkthrough for POP - APOP — routing quirks, protocol state confusion, and turning a man-in-the-middle vantage into actionable host intelligence..Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/RF - FM Transmission·15ptsRF - FM Transmission — Root-MeNetwork challenge RF - FM Transmission: packet captures and protocol oddities.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/SIP - authentication·15ptsSIP - authentication — Root-MeNetwork challenge SIP - authentication: packet captures and protocol oddities.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/LDAP - null bind·15ptsLDAP - null bind — Root-MeNetwork challenge LDAP - null bind: packet captures and protocol oddities.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/Windows - NTDS Secret extraction·20ptsWindows - NTDS Secret extraction — Root-MeOn Windows - NTDS Secret extraction, investigators recover fragments from an image dump.Forensicsmedium#root-me#medium#forensicMay 26, 2026
Root-Me/Docker layers·20ptsDocker layers — Root-MeChallenge Docker layers: log triage and artifact correlation.Forensicsmedium#root-me#medium#forensicMay 26, 2026
Root-Me/ICMP exfiltration·20ptsICMP exfiltration — Root-MeOn ICMP exfiltration, investigators recover fragments from an image dump.Forensicsmedium#root-me#medium#forensicMay 26, 2026
Root-Me/Command & Control - level 2·15ptsCommand & Control - level 2 — Root-MeChallenge Command & Control - level 2: log triage and artifact correlation.Forensicsmedium#root-me#medium#forensicMay 26, 2026
Root-Me/Oh My Grub·15ptsOh My Grub — Root-MeOn Oh My Grub, investigators recover fragments from an image dump.Forensicsmedium#root-me#medium#forensicMay 26, 2026
Root-Me/Capture this·15ptsCapture this — Root-MeOn Capture this, investigators recover fragments from an image dump.Forensicsmedium#root-me#medium#forensicMay 26, 2026
Root-Me/Encoding - Codebook·20ptsEncoding - Codebook — Root-MeCryptanalysis path for Encoding - Codebook — algebraic manipulation, small subgroup checks, and a plausible attack narrative without dumping complete secret material..Cryptomedium#crypto#root-me#mediumMay 26, 2026
Root-Me/Circular Bit Shift·20ptsCircular Bit Shift — Root-MeFor Circular Bit Shift, ciphertext structure suggests hybrid encoding.Cryptomedium#crypto#root-me#mediumMay 26, 2026
Root-Me/Known plaintext - XOR·20ptsKnown plaintext - XOR — Root-MeFor Known plaintext - XOR, ciphertext structure suggests hybrid encoding.Cryptomedium#crypto#root-me#mediumMay 26, 2026
Root-Me/ELF64 - PID encryption·15ptsELF64 - PID encryption — Root-MeCrypto challenge ELF64 - PID encryption: classical cipher layers and modular arithmetic.Cryptomedium#crypto#root-me#mediumMay 26, 2026
Root-Me/File - PKZIP·15ptsFile - PKZIP — Root-MeCrypto challenge File - PKZIP: classical cipher layers and modular arithmetic.Cryptomedium#crypto#root-me#mediumMay 26, 2026
Root-Me/Pixel Madness·15ptsPixel Madness — Root-MeCrypto challenge Pixel Madness: classical cipher layers and modular arithmetic.Cryptomedium#crypto#root-me#mediumMay 26, 2026
Root-Me/Monoalphabetic substitution - Caesar·15ptsMonoalphabetic substitution - Caesar — Root-MeCrypto challenge Monoalphabetic substitution - Caesar: classical cipher layers and modular arithmetic.Cryptomedium#crypto#root-me#mediumMay 26, 2026
Root-Me/Unity3D Save handling·20ptsUnity3D Save handling — Root-MeReverse-oriented cracking task Unity3D Save handling.Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/APK - Flutter Debug·20ptsAPK - Flutter Debug — Root-MeOn APK - Flutter Debug, the notes explain tracing a license routine, defeating superficial packers, and extracting the comparison secret without publishing raw keys..Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/ELF ARM - Basic Crackme·20ptsELF ARM - Basic Crackme — Root-MeReverse-oriented cracking task ELF ARM - Basic Crackme.Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/PE DotNet - Basic Crackme·20ptsPE DotNet - Basic Crackme — Root-MeChallenge PE DotNet - Basic Crackme mixes obfuscation and anti-debug hints.Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/ELF x64 - Basic KeygenMe·20ptsELF x64 - Basic KeygenMe — Root-MeOn ELF x64 - Basic KeygenMe, the notes explain tracing a license routine, defeating superficial packers, and extracting the comparison secret without publishing raw keys..Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/Godot - Bytecode·15ptsGodot - Bytecode — Root-MeReverse-oriented cracking task Godot - Bytecode.Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/ELF x86 - Fake Instructions·15ptsELF x86 - Fake Instructions — Root-MeChallenge ELF x86 - Fake Instructions mixes obfuscation and anti-debug hints.Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/ELF MIPS - Basic Crackme·15ptsELF MIPS - Basic Crackme — Root-MeChallenge ELF MIPS - Basic Crackme mixes obfuscation and anti-debug hints.Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/WASM - Introduction·15ptsWASM - Introduction — Root-MeOn WASM - Introduction, the notes explain tracing a license routine, defeating superficial packers, and extracting the comparison secret without publishing raw keys..Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/APK - Introduction·15ptsAPK - Introduction — Root-MeReverse-oriented cracking task APK - Introduction.Reverse Engineeringmedium#root-me#medium#crackingMay 26, 2026
Root-Me/ELF ARM - Stack buffer overflow - basic·20ptsELF ARM - Stack buffer overflow - basic — Root-MeSystem-level challenge ELF ARM - Stack buffer overflow - basic on Linux/Windows boundaries.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/ELF x86 - Race condition·20ptsELF x86 - Race condition — Root-MeWalkthrough for ELF x86 - Race condition: namespace surprises, loose ACLs on config directories, and rooting via a maintenance task running outside its intended sandbox..Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/ELF x64 - Stack buffer overflow - basic·15ptsELF x64 - Stack buffer overflow - basic — Root-MeFor ELF x64 - Stack buffer overflow - basic, recon highlights weak file permissions and a setuid helper.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/ELF x86 - Format string bug basic 1·15ptsELF x86 - Format string bug basic 1 — Root-MeSystem-level challenge ELF x86 - Format string bug basic 1 on Linux/Windows boundaries.Miscmedium#root-me#misc#mediumMay 26, 2026
Root-Me/Python - pickle·25ptsPython - pickle — Root-MeScripting challenge Python - pickle: cron interactions, path hijacking, and turning a minor misconfiguration into a stable foothold..Miscmedium#root-me#app-script#miscMay 26, 2026
Root-Me/R: Code Execution·20ptsR: Code Execution — Root-MeShell automation and interpreter quirks on R: Code Execution.Miscmedium#root-me#app-script#miscMay 26, 2026
Root-Me/Python - input()·20ptsPython - input() — Root-MeScripting challenge Python - input(): cron interactions, path hijacking, and turning a minor misconfiguration into a stable foothold..Miscmedium#root-me#app-script#miscMay 26, 2026
Root-Me/Bash - cron·20ptsBash - cron — Root-MeNotes for Bash - cron cover parsing edge cases, environment leakage, and privilege changes through a helper binary invoked by a scheduled task..Miscmedium#root-me#app-script#miscMay 26, 2026
Hack The Box/SmartHireSmartHire — Hack The BoxRecon turns up a careers portal and a staging API behind the same cert.Miscmedium#linux#medium#hacktheboxMay 16, 2026
Hack The Box/HelixHelix — Hack The BoxAn exposed research site leaks version hints and a backup path.Miscmedium#linux#medium#hacktheboxMay 9, 2026
Hack The Box/LoggingLogging — Hack The BoxThe box centers on centralized log ingestion with weak boundaries between collectors and readers.Miscmedium#windows#medium#hacktheboxApr 18, 2026
Hack The Box/DevAreaDevArea — Hack The BoxDevelopers left a CI artifact and a sandbox API online longer than they should have.Miscmedium#linux#medium#hacktheboxMar 28, 2026
Hack The Box/VariaTypeVariaType — Hack The BoxTypography puns aside, the attack surface is a font preview service and an admin queue.Miscmedium#linux#medium#hacktheboxMar 14, 2026
Hack The Box/InterpreterInterpreter — Hack The BoxAn embedded scripting endpoint and a cron-fired interpreter binary set the tone.Miscmedium#linux#medium#hacktheboxFeb 21, 2026