my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/role?offset.

An annual online competition for hacking teams.

An intro to binary exploitation / reverse engineering course based around ctf challenges.


Lakera’s famous Gandalf reinvented for DEF CON. Trick Mosscap into revealing secret information and experience the security limitations of large language models firsthand.

This is a simple place where you can download crackmes to improve your reverse engineering skills. If you want to submit a crackme or a solution to one of them, you must register. But before that, I strongly recommend you to read the FAQ. If you have any kind of question regarding the website, a crackme, feel free to join the discord chat.

The cybersecurity upskilling platform. Hack The Box gives individuals, businesses and universities the tools they need to continuously improve their cybersecurity capabilities — all in one place.

All about CTF (Capture The Flag).

Do you want to challenge your vulnerability hunting skills? We created these CTF challenges to allow you to do exactly that, while helping you to quickly learn CodeQL.

AI Capture the Flag. Crucible is a "Capture the flag" platform made for security researchers, data scientists, and developers with an interest in AI security. You'll get access to a variety of challenges which are designed to build your skills in adversarial machine learning and model security. These challenges include dataset analysis, model inversion, adversarial attacks, code execution, and more.

Whether you've just started your hacker journey or you're just looking for some new challenges, the Hacker101 CTF has something for you.

A free computer security education program with original content built on a capture-the-flag framework created by security and privacy experts at Carnegie Mellon University.

Car Hacking Village is a non-profit organization providing education and awareness around security within the automotive industry.


Hacktoria creates CTF Games for OSINT and Digital Forensics enthusiasts. Overlaying fictional events and organizations over our real world, we create immersive games that make learning fun.

The Red Team Village is focused on training the art of critical thinking, collaboration, and strategy in offensive security. The RTV brings together information security professionals to share new tactics and techniques in offensive security. Attendees may spend all three days engaged in introductory workshops or challenge themselves in an immersive Capture the Flag competition to put their newly obtained skills to the test.

Trick Gandalf into revealing information and experience the limitations of large language models firsthand. Your goal is to make Gandalf reveal the secret password for each level. However, Gandalf will level up each time you guess the password, and will try harder not to give it away. Can you beat level 7? (There is a bonus level 8)

Security conference and hacking contest founded and organized by @orangecyberch since 2008.

The largest hacking and security conference with presentations, workshops, contests, villages and the premier Capture The Flag Contest.