Skip to content

wonderkun/CTF_web

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

CTF-web

              _                                    _               ____ _____ _____                 _        
__      _____| | ___ ___  _ __ ___   ___          | |_ ___        / ___|_   _|  ___|  __      _____| |__     
\ \ /\ / / _ \ |/ __/ _ \| '_ ` _ \ / _ \         | __/ _ \      | |     | | | |_ ____\ \ /\ / / _ \ '_ \    
 \ V  V /  __/ | (_| (_) | | | | | |  __/         | || (_) |     | |___  | | |  _|_____\ V  V /  __/ |_) |   
  \_/\_/ \___|_|\___\___/|_| |_| |_|\___|          \__\___/       \____| |_| |_|        \_/\_/ \___|_.__/   

Backers on Open Collective Sponsors on Open Collective Build Status

Hello, everyone! I'am wonderkun.

I am intersted in web scurity and absorbed in web challenges of CTFS. Hence,I made this repo for the purpose of collecting some interesting web practises

and some ideas with expansions. I will provide with source codes downloaded from CTF or written by myself , writeups in detail and exps.

Aiming at giving some conveniences for beginers to start CTF and improving my personal ability , I spend a lot of time on doing this.

If you find some errors or want to give some advice, do not hesitate to contact me at follows ways :

Recommend to you an another repo which is better than this one . My-CTF-Web-Challenges

Thank you for the other contibuters:

Hope you will love it and if you think it is of value, please star it . Thank you !!!

Naming Rules :

A majority of the practises is named as webXXX-YY.

  • XXX represents the score of this subject. Obviously,the higher the score, the harder the subject.

  • YY represents the numbering of the subject,for instance , web100-2 is the second subject of the 100 points.

Other Naming Rules

  • sql_inject is the practises of sql inject collection

  • exec Arbitrary command execution.

  • NSq\og This is a CTF runed by CloverSec in Xian,Shanxi province.

  • shiyanba Those subject are collected from shiyanba,which is a good place to learn CTF.

  • php4fun Php4fun.

  • uncategorized Some uncategorized subjects.

Welcome to contribute to it.

Contributors

This project exists thanks to all the people who contribute. [Contribute].

Backers

Thank you to all our backers! 🙏 [Become a backer]

Sponsors

Support this project by becoming a sponsor. Your logo will show up here with a link to your website. [Become a sponsor]