CVE-2025-11582 (React2Shell)
Flag Red73
Port: 10001
Solution Guide
Deploy →
CTF Challenge Index
Classroom CyberSecurity Training. Deploy instantly with Docker.
This is War!
Deploy this container to practice specific exploitation techniques.
Port: 8080
Solution Guide
Deploy →
Next.js Deep Dive CVE-2025-29927
Solution Guide Included
Port: 9052
Solution Guide
Deploy →
PHP Filter Chain Lesson (Advanced Topic)
CTF Activity/Lesson: Understanding PHP Filter Chains. Solution Guide Included
Port: 9051
Solution Guide
Deploy →
Repair Shop
CTF Activity: CVE-2024-51793 (Wordpress). Black Box This Time. Solution Guide Release TBA
Port: 9050
Black Box!
Deploy →
Loot Box
CTF Activity: Can you reveal the flag? (Solution Guide Not Published Yet.) Live challenge!
Port: 9048
Black Box!
Deploy →
PHP Serialization Part 2 (Magic Methods)
CTF Activity: PHP Serialization Magic Methods Tutorial. (Solution Guide Included)
Port: 9047
Solution Guide
Deploy →
PHP Serialization Basics
CTF Activity: Learn the basics of PHP serialization. (Nothing Fancy!) Solution Guide Included.
Port: 9045
Solution Guide
Deploy →
WPQuery Exploit: CVE-2024-50498
CTF Activity: WPQuery CVE-2024-50498. Solution Guide Included
Port: 9043
Solution Guide
Deploy →
CVE-2026-24061 (telnetd)
CTF: CVE-2026-24061 (Telnetd) via USER Variable. Solution Guide Included.
Port: 23
Solution Guide
Deploy →
Examining Blind SQL Injection: Red61
CTF Activity: Blind SQL Injection. Solution Guide Included
Port: 9042
Solution Guide
Deploy →
SQL Injection Training. Beyond OR 1=1
CTF Activity: Advanced SQL Injection Training. Solution Guide Included
Port: 9041
Solution Guide
Deploy →
CVE-2018-12613: phpMyAdmin
CTF: Use CEWL and brute force phpmyadmin bypassing csrf. Solution Guide Included.
Port: 9040
Solution Guide
Deploy →
Wordpress Plugin: wpspritz 1.0
CTF Activity: Wordpress-wpspritz-1.0.0. Solution Guide Included.
Port: 9039
Solution Guide
Deploy →
Tick Tock Intrusion
CTF Activity: Timing attack, reverse shell, privesc. Solution Guide Included
Port: 9038
Solution Guide
Deploy →
TeamCity Takedown CVE-2023-42793
CTF Activity: cve-2023-42793 (TeamCity RPC2 Bypass). Solution Included
Port: 9036
Solution Guide
Deploy →
CVE-2024-23897 Jenkins
CTF Activity: cve-2024-23897 Jenkins LFI to RCE. Walkthrough Included
Port: 9035
Solution Guide
Deploy →
Grafana/Postgres RCE
CTF Activity: Exploit a server running postgres/grafana. (RCE). Solution guide included
Port: 9034
Solution Guide
Deploy →
Har Har Hijack
CTF Activity: What is a .har file anyway? --Solution Guide included
Port: 9033
Solution Guide
Deploy →
LInux PAM Exploit
CTF Activity: Exploit RFI. Use Linpeas. Identify pam permission issue. Solution Guide Included
Port: 9032
Solution Guide
Deploy →
Ghost Symlink (Red58)
CTF activity: Ghost Symlink File Disclosure. Solution Guide Included.
Port: 9031
Solution Guide
Deploy →
NextJS CVE (Red57)
CTF Activity: Nextjs. Solution Guide Included
Port: 9030
Solution Guide
Deploy →
XSS Bot (Red53)
Deploy this container to practice specific exploitation techniques.
Port: 9029
Solution Guide
Deploy →
Add Them Up
Stand up this server and challenge students to recover the flag.
Port: 80
Solution Guide
Deploy →
SQL Injection
This is an sql injection challenge.
Port: 5000
Solution Guide
Deploy →
Notes API
CTF Activity: The flag is the admin password!
Port: 9000
Solution Guide
Deploy →
OOB XXE
CTF Challenge. Can you reveal the flag! OOB XXE
Port: 9001
Solution Guide
Deploy →
JS Flag
This is an nginx server hosting a CTF activity. Can you uncover the flag?
Port: 9005
Solution Guide
Deploy →
Zip Slip
This is a CTF activity. Can you uncover the flag?
Port: 9006
Solution Guide
Deploy →
Numberizer
Can you sum up the values to produce a negative result and receive the flag?
Port: 9007
Solution Guide
Deploy →
Git Challenge
Deploy this container to practice specific exploitation techniques.
Port: 9030
Deploy →
Frontend Bypass
CTF Activity: Simple Webserver Can you find the flag?
Port: 9020
Solution Guide
Deploy →
Robots.txt
SImple CTF example. Students go to robots.txt, which leads to the next step.
Port: 9040
Solution Guide
Deploy →
Simple Math
Python nc server. Can you add them up to get the flag?
Port: 9050
Solution Guide
Deploy →
Numberizer
Can you sum up the values to produce a negative result and receive the flag?
Port: 9007
Solution Guide
Deploy →
Frontend Bypass
CTF Activity: Simple Webserver Can you find the flag?
Port: 9020
Solution Guide
Deploy →
Brute Force Login
Mary can't log into her account. Can you help? She uses a simple password
Port: 9898
Solution Guide
Deploy →
Cookie Overflow
CTF Challenge: Can you overflow the cookie jar of the admin bot.
Port: 3005
Solution Guide
Deploy →
Minecraft API Fuzzing
Can you fuzz the API endpoint to mine more that 100,000 coins to get the flag?
Port: 3010
Solution Guide
Deploy →
Magic Methods
CTF Challenge: Change the request method to get the flag.
Port: 3020
Solution Guide
Deploy →
403 Bypass
CTF Challenge: Can you bypass the 403 page and reveal the flag?
Port: 3030
Solution Guide
Deploy →
JS Number Guessing
Can you guess the correct number and reveal the flag?
Port: 9035
Black Box!
Deploy →
Local XXE (Pizza Planet)
Can you upload an XML file to reveal the flag at /flag/flag.txt?
Port: 9045
Solution Guide
Deploy →
Reverse Shell
Deploy this container to practice specific exploitation techniques.
Port: 9055
Deploy →
Prototype Pollution
CTF Activity: Provide the server.js source code to participants.
Port: 9066
Solution Guide
Deploy →
VSFTPD Backdoor
CTF Activity: Can you pop a shell. The flag is in /flag/Flag.txt
Port: 9077
Solution Guide
Deploy →
Negative Equity
CTF Challenge: Can you get more than 10,000 coins?
Port: 9099
Solution Guide
Deploy →
Websockets
CTF Activity: Can you get admin?> Provide the file passwords.txt to participants.
Port: 5055
Solution Guide
Deploy →
JSON POST Challenge
Can you post the correct data to this webserver to reveal the flag?
Port: 5666
Solution Guide
Deploy →
ASCII Reverse
CTF Activity: nc IP_ADDRESS 3111. Can you get the flag?
Port: 3111
Solution Guide
Deploy →
Wireshark
CTF: pcap analysis. Can you login as admin and get the flag?
Port: 3222
Solution Guide
Deploy →
Simple PHP Filter
CTF: Use phpfilter:// to obtain the flag.
Port: 3444
Solution Guide
Deploy →
Stored XSS (Admin Bot)
CTF: The admin bot checks your messages every minute. Can you exploit this behavior with XSS?
Port: 3555
Solution Guide
Deploy →
Alphabet Soup
CTF: Can you find the flag? (Developer tools!)
Port: 3777
Solution Guide
Deploy →
Redirection Challenge
CTF: Can you find the flag using Burp Suite.
Port: 3999
Solution Guide
Deploy →
File Upload Bypass (Red51)
Deploy this container to practice specific exploitation techniques.
Port: 9028
Solution Guide
Deploy →
XSS Null Byte (Red50)
Deploy this container to practice specific exploitation techniques.
Port: 9027
Solution Guide
Deploy →
Log4Shell (Red47)
Can you exploit this using a malicious LDAP server? Solution Guide Included.
Port: 9026
Solution Guide
Deploy →
DNS Firewall Bypass (Red46)
CTF: Bypass a firewall rule that only allows data to leave the machine on port 5353
Port: 5354
Solution Guide
Deploy →
Roundcube CVE (Red45)
CTF: Roundcube CVE-2017-16651
Port: 9024
Solution Guide
Deploy →
PHP Type Juggling (Red44)
CTF: PHP Type Juggling. Directions Included.
Port: 9023
Solution Guide
Deploy →
403 Bypass (Red25)
CTF Activity: 403 Bypass/SSH Key Exfil
Port: 9021
Solution Guide
Deploy →
Reverse Shell Lab
CTF: Can you pop a basic reverse shell and find the flag?
Port: 9000
Solution Guide
Deploy →
MIME Type Bypass Lab
CTF: Can you bypass the MIME type check to pop a reverse shell
Port: 9001
Solution Guide
Deploy →
Base64 Shell Encoding Lab
CTF Activity: Can you encode a reverse shell using Base64?
Port: 9002
Solution Guide
Deploy →
CGI Exploitation Lab
CTF: Can you pop a reverse shell?
Port: 9003
Solution Guide
Deploy →
SSTI (Flask) Lab
CTF: Can you exploit this using Server Side Template Injection
Port: 9004
Solution Guide
Deploy →
Burp Suite Basics
CTF: Can you use Burp to uncover the flags?
Port: 9005
Solution Guide
Deploy →
SQL Injection Lab
CTF Activity: Simple SQL Injection
Port: 9006
Solution Guide
Deploy →
Phar Deserialization Lab
CTF Activity: Can you craft a malicious phar file
Port: 9007
Solution Guide
Deploy →
Git Dumper Lab
CTF: Git Dumper Training. Solution Guide Included
Port: 9008
Solution Guide
Deploy →
Cookie Brute Force Lab
CTF: Brute force cookie values: Training
Port: 9009
Solution Guide
Deploy →
SSH Tunneling Lab
CTF Training: Using SSH -L to pivot. Directions included
Port: 9010
Solution Guide
Deploy →
DNS Zone Transfer Lab
CTF Training: dig axfr --Directions included
Port: 9011
Solution Guide
Deploy →
Encoded Cookie Lab
CTF Activity: Base64 encoded cookie challenge. Directions Included.
Port: 9013
Solution Guide
Deploy →
SSH Brute Force Lab
CTF Activity: SSH Brute Force Login. Directions Included
Port: 9014
Solution Guide
Deploy →
Python POST Variable Lab
CTF Activity: Using python to brute force POST parameters. Directions Included.
Port: 9016
Solution Guide
Deploy →
GET vs POST Lab
CTF Training: Use Burp Suite to modify a GET request to a POST request. Directions Included.
Port: 9017
Solution Guide
Deploy →
Weather API RCE Lab
CTF Activity: Obtain RCE through this handy weather API webpage. Directions Included
Port: 9018
Solution Guide
Deploy →
PHP Deserialization Lab
CTF Activity: PHP Deserialization Example. Directions Included.
Port: 9019
Solution Guide
Deploy →
SSRF Hex Bypass Lab
CTF: SSRF Bypass using Hexadecimal to bypass an IP filter. Directions included.
Port: 9020
Solution Guide
Deploy →
Dtmf Challenge
CTF Activity: Can you decode the audio file and find the flag?
Port: 9080
Solution Guide
Deploy →
No challenges found matching your search.