Offical URL: https://ctf.csaw.io/

CSAW CTF is a entry-level CTF, designed for undergraduate students who are trying to break into security. Challenges are specifically designed to point students in directions that will help them understand fundamental concepts and develop practical skills. Our sponsors are big players in the security field, who are serious about hiring the right people with the right skills. Our judges are world-renowned experts in the security field, who are dedicated to making sure that our challenges are designed to test these skills.

CTF events

NameWeight
CSAW CTF Qualification Round 20220.00
CSAW CTF Qualification Round 202123.70
CSAW CTF Qualification Round 202059.00
CSAW CTF Qualification Round 201943.00
CSAW CTF Qualification Round 201830.23
CSAW CTF Qualification Round 201724.61
CSAW CTF Qualification Round 201624.61
CSAW CTF Qualification Round 201540.00
CSAW CTF Qualification Round 201440.00
CSAW CTF Qualification Round 201340.00
CSAW CTF Qualification Round 201240.00
CSAW CTF Qualification Round 201145.00
Related tags: web pwn xss #web x86 php trivia bin crypto stego rop sqli hacking authentification forensics writeup base64 android perl python scripting net pcap xor des rsa penetration testing z3 bruteforce algebra c++ stack_pivot reverse engineering forensic logic unicode metasploit javascript puzzle technologies programming c ipv6 debugging engineering security aes arm java django .net haskell go vm rand exploitation node.js misc pwnable re mobile sql joy exploit stegano ppc admin steganography secure-coding things math sandbox nodejs obfuscated coding nothing networking ruby prng injection steg penetration malware shell cracking pentest msf bash sex xeger programing objective-c ios algorithms games windows format-string unix stuff network john fappin pentesting social engineering websec padding minecraft libc aslr string format html golf linux hash-collision recon wireshark analysis ida warm-up tetris sqlinjection lfi networks sql injection mysql pyjail morse image learning new things assembly factoring bitflipping code miscellaneous dictionary attack armitage mitm css script actionscript malware analysis reserver none sleeping blind execution remote rev got optimization competitive programming irc scans ekoparty2016 learning computers # command cisco network securtity nmap other kernel beginner aes-ctr analytical thinking crackme hardware maths traffic automation ascii enumeration language sysadmin wordpress fibonacci embedded hailstone volatility cubeing csp rubik hash smalltalk jwt spring jjwt radare2 angstromctf leak git lua jail bof race-condition bufferoverflow binaryexploitation java programing stack_canaries pwning bypass picoctf2017 design music powershell ida pro ollydbg nix sympy beer linuxbasic pivoting flask google windows exploitation forgery shellcode overflow pwntools arduino srop wiener guess sqlmap web300 decryption hashcat dns nessus cloud algorithmics physical radio cellular ciphertexts revesing disk off-by-one gdb fsb ldap cookies keygening algorithm oracle-padding submit-flag redirect ssti osint stack_overflow nosqli shellscript regex png reversing reverse_engineering oscp ropchain meet-in-the-middle fmtstr cryptography-rsa jit calculator netcat logs ip apps golang spi i2c owasp grabbag electronics switches routers websocket aws data structure researching enigma file md5 bmp stackcanary buffer security pentest crime systemverilog serialization mma passcracking vulnerability still nxenabled eric liang crytography nulltester ssrf encryption ciphers nintendo entertainment system nes heap overflow attacks ret2libc debug angr static autopsy elliptic trendmicro captcha ocr color tamperdata poison ivy vm aware session pdf combinatorics patching statistics cbc curves 64bit relro cipher race condition grep cissp infoleak mpdf geoip xforwardedfor x509 encoding pie uaf partial overwrite ppm big integer mono icmp libpcap tls length scada olly distinguish rc4 inclusion local coppersmith rabin oswp linux exploitation offensive will code golf devops rce motivation physical security twitter oauth apache2 heap-overflow physics path-traversal ecc computer capture the flag flash mbr airport league of legends pwn adventure write hardening word network hac network ana python3 crc esoteric-language c cryptography sage stack pickle pwn2win padding-oracle hash-length-extension computervision homework coder reverse csaw2017 cvv ecb csaw compression zip heap json zlib binary survey runtime.js 16-bit one-time-pad equationsolver rot13 elgamal templatefilters proxy uri-scheme blackberry dnsrebind browser ctr art rsa-like buffer-overflow formatstring mathematics equation template-injection debugmodeon aes-ecb netrwork secret-sharing chrome sha256 fastbin stackoverflow signature discrete-log jailbreak lsb-oracle one_gadget csp-bypass circuit react php-object-injection poisoning redis tcache unintended cache binary-exploitation overwrite nginx openyoureyes oauth2 single-byte singlebyte grepping ibe oauth2.0 csaw2018 ckeck pwntool relative jump list linked short diode dirty tromino polyomino avl-tree triominos raid5 cache-poisoning pyinstaller grille data-structure huffman-tree kvm control-flow blockcipher machine_learning general memory_dump ecdlp sanity serverless xxe emoji bash_jail tcache-poisoning reverse-engineering s3 network/pentest johntheripper ghidra linker ret2csu ucucuga length-extension-attack got-overwrite ellipticcurve usb-keyboard red team cpp qkd ghc waf-bypass tcache_perthread_struct signing pairings glob bain rot47 canary buffer_overflow sequence firebase hpp flutter fms webctrl uuencoding baudot int-underflow strtok reverse_shell 500 pcbc nahamcon primes decompilation pwnscripts presigned-url turn webrtc auto_pwn rtc widthless mission partial-private-key seriallogs salaea quantumcrypto aaaa wsgi ics csaw2021 2.33 elmagal mic