CodeCup CTF Challenges
Unmute
We created the following four exploitable web applications for CodeDay's open-source "CodeCup" beginner-friendly CTF:
Local File Inclusion Challenge: Get the environment file for the flag!
Cross Site Scripting Challenge: Get the browser cookies via XSS for the flag!
SQL Injection Challenge: We have access to their databases. Use SQLi to get the flag!
Server Side Request Forgery Challenge: Just a typical website screenshotter. There’s no place like home.
Local File Inclusion Challenge: Get the environment file for the flag!
Cross Site Scripting Challenge: Get the browser cookies via XSS for the flag!
SQL Injection Challenge: We have access to their databases. Use SQLi to get the flag!
Server Side Request Forgery Challenge: Just a typical website screenshotter. There’s no place like home.
What tools did you use to create your project?
How much experience does your group have? Does the project use anything (art, music, starter kits) you didn't create?
CodeDay Labs team in the advanced track, mentored by Fred Pinkett from Security Innovation.
Made with 💖 by robots running our open-source software and GraphQL APIs.